From 969b16a56321cded9f770fac5edd692bd11d6c8d Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 2 Jun 2018 21:32:26 +0000
Subject: [PATCH 01/62] Apply fixes from StyleCI

[ci skip] [skip ci]
---
 .../Repository/RepositoryInterface.php        |  2 +-
 .../Repository/ServerRepositoryInterface.php  |  2 +-
 .../Admin/StatisticsController.php            | 22 +++++++---------
 app/Http/Kernel.php                           |  2 +-
 .../Eloquent/EloquentRepository.php           |  2 +-
 .../Eloquent/ServerRepository.php             |  2 +-
 .../Controllers/PlainJavascriptInjection.php  |  8 +++---
 ..._05_04_123826_add_maintenance_to_nodes.php |  4 +--
 .../Admin/StatisticsControllerTest.php        | 25 ++++++++-----------
 9 files changed, 30 insertions(+), 39 deletions(-)

diff --git a/app/Contracts/Repository/RepositoryInterface.php b/app/Contracts/Repository/RepositoryInterface.php
index 1a26eed7e..4cdebf7bb 100644
--- a/app/Contracts/Repository/RepositoryInterface.php
+++ b/app/Contracts/Repository/RepositoryInterface.php
@@ -202,7 +202,7 @@ interface RepositoryInterface
     public function insertIgnore(array $values): bool;
 
     /**
-     * Get the amount of entries in the database
+     * Get the amount of entries in the database.
      *
      * @return int
      */
diff --git a/app/Contracts/Repository/ServerRepositoryInterface.php b/app/Contracts/Repository/ServerRepositoryInterface.php
index 344fa248c..6f392d05d 100644
--- a/app/Contracts/Repository/ServerRepositoryInterface.php
+++ b/app/Contracts/Repository/ServerRepositoryInterface.php
@@ -147,7 +147,7 @@ interface ServerRepositoryInterface extends RepositoryInterface, SearchableInter
     public function isUniqueUuidCombo(string $uuid, string $short): bool;
 
     /**
-     * Get the amount of servers that are suspended
+     * Get the amount of servers that are suspended.
      *
      * @return int
      */
diff --git a/app/Http/Controllers/Admin/StatisticsController.php b/app/Http/Controllers/Admin/StatisticsController.php
index 2327fd88d..1ae807565 100644
--- a/app/Http/Controllers/Admin/StatisticsController.php
+++ b/app/Http/Controllers/Admin/StatisticsController.php
@@ -2,16 +2,14 @@
 
 namespace Pterodactyl\Http\Controllers\Admin;
 
-use Illuminate\Http\Request;
-use Illuminate\Support\Facades\DB;
-use Pterodactyl\Contracts\Repository\AllocationRepositoryInterface;
-use Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface;
-use Pterodactyl\Contracts\Repository\EggRepositoryInterface;
-use Pterodactyl\Contracts\Repository\NodeRepositoryInterface;
-use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
-use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 use Pterodactyl\Http\Controllers\Controller;
+use Pterodactyl\Contracts\Repository\EggRepositoryInterface;
 use Pterodactyl\Traits\Controllers\PlainJavascriptInjection;
+use Pterodactyl\Contracts\Repository\NodeRepositoryInterface;
+use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
+use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
+use Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface;
+use Pterodactyl\Contracts\Repository\AllocationRepositoryInterface;
 
 class StatisticsController extends Controller
 {
@@ -29,15 +27,14 @@ class StatisticsController extends Controller
 
     private $userRepository;
 
-    function __construct(
+    public function __construct(
         AllocationRepositoryInterface $allocationRepository,
         DatabaseRepositoryInterface $databaseRepository,
         EggRepositoryInterface $eggRepository,
         NodeRepositoryInterface $nodeRepository,
         ServerRepositoryInterface $serverRepository,
         UserRepositoryInterface $userRepository
-    )
-    {
+    ) {
         $this->allocationRepository = $allocationRepository;
         $this->databaseRepository = $databaseRepository;
         $this->eggRepository = $eggRepository;
@@ -83,7 +80,7 @@ class StatisticsController extends Controller
             'nodes' => $nodes,
             'tokens' => $tokens,
         ]);
-        
+
         return view('admin.statistics', [
             'servers' => $servers,
             'nodes' => $nodes,
@@ -97,5 +94,4 @@ class StatisticsController extends Controller
             'totalAllocations' => $totalAllocations,
         ]);
     }
-
 }
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index d21c8d3c8..404c40ae9 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -2,7 +2,6 @@
 
 namespace Pterodactyl\Http;
 
-use Pterodactyl\Http\Middleware\MaintenanceMiddleware;
 use Pterodactyl\Models\ApiKey;
 use Illuminate\Auth\Middleware\Authorize;
 use Illuminate\Auth\Middleware\Authenticate;
@@ -21,6 +20,7 @@ use Illuminate\Routing\Middleware\SubstituteBindings;
 use Pterodactyl\Http\Middleware\AccessingValidServer;
 use Pterodactyl\Http\Middleware\Api\SetSessionDriver;
 use Illuminate\View\Middleware\ShareErrorsFromSession;
+use Pterodactyl\Http\Middleware\MaintenanceMiddleware;
 use Pterodactyl\Http\Middleware\RedirectIfAuthenticated;
 use Illuminate\Auth\Middleware\AuthenticateWithBasicAuth;
 use Pterodactyl\Http\Middleware\Api\AuthenticateIPAccess;
diff --git a/app/Repositories/Eloquent/EloquentRepository.php b/app/Repositories/Eloquent/EloquentRepository.php
index 64e7cfb60..cf0931799 100644
--- a/app/Repositories/Eloquent/EloquentRepository.php
+++ b/app/Repositories/Eloquent/EloquentRepository.php
@@ -298,7 +298,7 @@ abstract class EloquentRepository extends Repository implements RepositoryInterf
     }
 
     /**
-     * Get the amount of entries in the database
+     * Get the amount of entries in the database.
      *
      * @return int
      */
diff --git a/app/Repositories/Eloquent/ServerRepository.php b/app/Repositories/Eloquent/ServerRepository.php
index f448f0b78..e900c92dd 100644
--- a/app/Repositories/Eloquent/ServerRepository.php
+++ b/app/Repositories/Eloquent/ServerRepository.php
@@ -330,7 +330,7 @@ class ServerRepository extends EloquentRepository implements ServerRepositoryInt
     }
 
     /**
-     * Get the amount of servers that are suspended
+     * Get the amount of servers that are suspended.
      *
      * @return int
      */
diff --git a/app/Traits/Controllers/PlainJavascriptInjection.php b/app/Traits/Controllers/PlainJavascriptInjection.php
index eae53bfbc..f514eb1af 100644
--- a/app/Traits/Controllers/PlainJavascriptInjection.php
+++ b/app/Traits/Controllers/PlainJavascriptInjection.php
@@ -3,7 +3,7 @@
  * Created by PhpStorm.
  * User: Stan
  * Date: 26-5-2018
- * Time: 20:56
+ * Time: 20:56.
  */
 
 namespace Pterodactyl\Traits\Controllers;
@@ -12,13 +12,11 @@ use JavaScript;
 
 trait PlainJavascriptInjection
 {
-
     /**
-     * Injects statistics into javascript
+     * Injects statistics into javascript.
      */
     public function injectJavascript($data)
     {
         Javascript::put($data);
     }
-
-}
\ No newline at end of file
+}
diff --git a/database/migrations/2018_05_04_123826_add_maintenance_to_nodes.php b/database/migrations/2018_05_04_123826_add_maintenance_to_nodes.php
index 799f1df23..04fdf000f 100644
--- a/database/migrations/2018_05_04_123826_add_maintenance_to_nodes.php
+++ b/database/migrations/2018_05_04_123826_add_maintenance_to_nodes.php
@@ -14,7 +14,7 @@ class AddMaintenanceToNodes extends Migration
     public function up()
     {
         Schema::table('nodes', function (Blueprint $table) {
-           $table->boolean('maintenance_mode')->after('behind_proxy')->default(false);
+            $table->boolean('maintenance_mode')->after('behind_proxy')->default(false);
         });
     }
 
@@ -26,7 +26,7 @@ class AddMaintenanceToNodes extends Migration
     public function down()
     {
         Schema::table('nodes', function (Blueprint $table) {
-           $table->dropColumn('maintenance_mode');
+            $table->dropColumn('maintenance_mode');
         });
     }
 }
diff --git a/tests/Unit/Http/Controllers/Admin/StatisticsControllerTest.php b/tests/Unit/Http/Controllers/Admin/StatisticsControllerTest.php
index f3a20f8ac..fe41932bd 100644
--- a/tests/Unit/Http/Controllers/Admin/StatisticsControllerTest.php
+++ b/tests/Unit/Http/Controllers/Admin/StatisticsControllerTest.php
@@ -3,24 +3,22 @@
  * Created by PhpStorm.
  * User: Stan
  * Date: 26-5-2018
- * Time: 21:06
+ * Time: 21:06.
  */
 
 namespace Tests\Unit\Http\Controllers\Admin;
 
-use Illuminate\Database\Eloquent\Builder;
-use Illuminate\Routing\Controller;
 use Mockery as m;
-use Pterodactyl\Contracts\Repository\AllocationRepositoryInterface;
-use Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface;
-use Pterodactyl\Contracts\Repository\EggRepositoryInterface;
-use Pterodactyl\Contracts\Repository\NodeRepositoryInterface;
-use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
-use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
-use Pterodactyl\Http\Controllers\Admin\StatisticsController;
 use Pterodactyl\Models\Node;
 use Tests\Assertions\ControllerAssertionsTrait;
 use Tests\Unit\Http\Controllers\ControllerTestCase;
+use Pterodactyl\Contracts\Repository\EggRepositoryInterface;
+use Pterodactyl\Http\Controllers\Admin\StatisticsController;
+use Pterodactyl\Contracts\Repository\NodeRepositoryInterface;
+use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
+use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
+use Pterodactyl\Contracts\Repository\DatabaseRepositoryInterface;
+use Pterodactyl\Contracts\Repository\AllocationRepositoryInterface;
 
 class StatisticsControllerTest extends ControllerTestCase
 {
@@ -88,7 +86,7 @@ class StatisticsControllerTest extends ControllerTestCase
             'disk' => [
                 'value' => 1024,
                 'max' => 512,
-            ]
+            ],
         ]);
 
         $controller->shouldReceive('injectJavascript')->once();
@@ -106,8 +104,7 @@ class StatisticsControllerTest extends ControllerTestCase
             $this->eggRepository,
             $this->nodeRepository,
             $this->serverRepository,
-            $this->userRepository]
+            $this->userRepository, ]
         );
     }
-
-}
\ No newline at end of file
+}

From d73e5a2274a3bdf44821451c3ac51f1ab139da95 Mon Sep 17 00:00:00 2001
From: Jacob Gee-Clarke <jacobgc@users.noreply.github.com>
Date: Sat, 2 Jun 2018 22:34:01 +0100
Subject: [PATCH 02/62] Fixed my fix to fix the 500 error on
 /api/application/nodes when not specifying a daemon_base (#1182)

---
 app/Http/Requests/Api/Application/Nodes/StoreNodeRequest.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Requests/Api/Application/Nodes/StoreNodeRequest.php b/app/Http/Requests/Api/Application/Nodes/StoreNodeRequest.php
index 20a29f199..0f39fd2f8 100644
--- a/app/Http/Requests/Api/Application/Nodes/StoreNodeRequest.php
+++ b/app/Http/Requests/Api/Application/Nodes/StoreNodeRequest.php
@@ -74,7 +74,7 @@ class StoreNodeRequest extends ApplicationApiRequest
         $response = parent::validated();
         $response['daemonListen'] = $response['daemon_listen'];
         $response['daemonSFTP'] = $response['daemon_sftp'];
-        $response['daemonBase'] = $response['daemon_base'];
+        $response['daemonBase'] = $response['daemon_base'] ?? (new Node)->getAttribute('daemonBase');
 
         unset($response['daemon_base'], $response['daemon_listen'], $response['daemon_sftp']);
 

From 8f0c740a15e8b338c97b47277cdc9c71ca88a753 Mon Sep 17 00:00:00 2001
From: Lance Pioch <git@lance.sh>
Date: Sun, 3 Jun 2018 23:36:35 -0400
Subject: [PATCH 03/62] Update issue templates (#1188)

* Update issue templates

* Delete ISSUE_TEMPLATE.md
---
 .github/ISSUE_TEMPLATE.md                     | 26 ------------------
 .github/ISSUE_TEMPLATE/---bug-report.md       | 27 +++++++++++++++++++
 .github/ISSUE_TEMPLATE/---feature-request.md  | 17 ++++++++++++
 .github/ISSUE_TEMPLATE/--installation-help.md |  8 ++++++
 .github/ISSUE_TEMPLATE/bug-report.md          | 27 +++++++++++++++++++
 .github/ISSUE_TEMPLATE/feature-request.md     | 17 ++++++++++++
 6 files changed, 96 insertions(+), 26 deletions(-)
 delete mode 100644 .github/ISSUE_TEMPLATE.md
 create mode 100644 .github/ISSUE_TEMPLATE/---bug-report.md
 create mode 100644 .github/ISSUE_TEMPLATE/---feature-request.md
 create mode 100644 .github/ISSUE_TEMPLATE/--installation-help.md
 create mode 100644 .github/ISSUE_TEMPLATE/bug-report.md
 create mode 100644 .github/ISSUE_TEMPLATE/feature-request.md

diff --git a/.github/ISSUE_TEMPLATE.md b/.github/ISSUE_TEMPLATE.md
deleted file mode 100644
index 9b959e58f..000000000
--- a/.github/ISSUE_TEMPLATE.md
+++ /dev/null
@@ -1,26 +0,0 @@
-<!---
-Please take a little time to submit a good issue. It makes our life easier and the issue will be resolved quicker.
-
-!!! GitHub is NOT the place for difficulties setting up this software. Please use it for bugs and feature requests only. If you have issues setting up the panel or the daemon visit our Discord server: https://pterodactyl.io/discord
-
-If you are submitting a feature request please remove everything in here. Then give a detailed explanation what you want to have implemented and why that would be a good addition.
-
-Please also try to give the issue a good title: It should summarize your issue in a few words and help us see what the issue is about in a glance. Things like "Panel is not working" do not help.
-
---- You can delete everything above this line. --->
-
-<!--- Please fill in the following basic information --->
-* Panel or Daemon: 
-* Version of Panel/Daemon: 
-* Server's OS: 
-* Your Computer's OS & Browser: 
-
-------------------------
-
-<!---
-Please provide as much information about your issue as needed. Include precise steps to reproduce the issue and provide logs of the components that didn't work as expected.
-
-Please provide additional information, depending on what you have issues with:
-Panel: `php -v` (the php version in use).
-Daemon: `uname -a` and `docker info` (your kernel version and information regarding docker)
---->
diff --git a/.github/ISSUE_TEMPLATE/---bug-report.md b/.github/ISSUE_TEMPLATE/---bug-report.md
new file mode 100644
index 000000000..6d69080b1
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/---bug-report.md
@@ -0,0 +1,27 @@
+---
+name: "\U0001F41B Bug Report"
+about: Create a report to help us resolve a bug or error
+
+---
+
+**Background (please complete the following information):**
+* Panel or Daemon: 
+* Version of Panel/Daemon: 
+* Server's OS: 
+* Your Computer's OS & Browser: 
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+Please provide additional information too, depending on what you have issues with:
+Panel: `php -v` (the php version in use).
+Daemon: `uname -a` and `docker info` (your kernel version and information regarding docker)
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen. If applicable, add screenshots or a recording to help explain your problem.
diff --git a/.github/ISSUE_TEMPLATE/---feature-request.md b/.github/ISSUE_TEMPLATE/---feature-request.md
new file mode 100644
index 000000000..64fa679ba
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/---feature-request.md
@@ -0,0 +1,17 @@
+---
+name: "\U0001F680 Feature Request"
+about: Suggest an idea for this project
+
+---
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.
diff --git a/.github/ISSUE_TEMPLATE/--installation-help.md b/.github/ISSUE_TEMPLATE/--installation-help.md
new file mode 100644
index 000000000..fa10ca975
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/--installation-help.md
@@ -0,0 +1,8 @@
+---
+name: "⛔ Installation Help"
+about: 'Visit our Discord for installation help: https://pterodactyl.io/discord'
+
+---
+
+We use GitHub issues only to discuss about Pterodactyl bugs and new features. For
+this kind of questions about using Pterodactyl, please visit our Discord for assistance: https://pterodactyl.io/discord
diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md
new file mode 100644
index 000000000..5cb3eaef7
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/bug-report.md
@@ -0,0 +1,27 @@
+---
+name: Bug Report
+about: Create a report to help us resolve a bug or error
+
+---
+
+**Background (please complete the following information):**
+* Panel or Daemon: 
+* Version of Panel/Daemon: 
+* Server's OS: 
+* Your Computer's OS & Browser: 
+
+**Describe the bug**
+A clear and concise description of what the bug is.
+Please provide additional information too, depending on what you have issues with:
+Panel: `php -v` (the php version in use).
+Daemon: `uname -a` and `docker info` (your kernel version and information regarding docker)
+
+**To Reproduce**
+Steps to reproduce the behavior:
+1. Go to '...'
+2. Click on '....'
+3. Scroll down to '....'
+4. See error
+
+**Expected behavior**
+A clear and concise description of what you expected to happen. If applicable, add screenshots or a recording to help explain your problem.
diff --git a/.github/ISSUE_TEMPLATE/feature-request.md b/.github/ISSUE_TEMPLATE/feature-request.md
new file mode 100644
index 000000000..817c80c1f
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/feature-request.md
@@ -0,0 +1,17 @@
+---
+name: Feature Request
+about: Suggest an idea for this project
+
+---
+
+**Is your feature request related to a problem? Please describe.**
+A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
+
+**Describe the solution you'd like**
+A clear and concise description of what you want to happen.
+
+**Describe alternatives you've considered**
+A clear and concise description of any alternative solutions or features you've considered.
+
+**Additional context**
+Add any other context or screenshots about the feature request here.

From f54dc24cf440c769c1b913e4d360960644179367 Mon Sep 17 00:00:00 2001
From: Lance Pioch <git@lance.sh>
Date: Sun, 3 Jun 2018 23:40:38 -0400
Subject: [PATCH 04/62] Remove dupe issues thanks Microsoft (#1189)

* Delete bug-report.md

* Delete feature-request.md
---
 .github/ISSUE_TEMPLATE/bug-report.md      | 27 -----------------------
 .github/ISSUE_TEMPLATE/feature-request.md | 17 --------------
 2 files changed, 44 deletions(-)
 delete mode 100644 .github/ISSUE_TEMPLATE/bug-report.md
 delete mode 100644 .github/ISSUE_TEMPLATE/feature-request.md

diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md
deleted file mode 100644
index 5cb3eaef7..000000000
--- a/.github/ISSUE_TEMPLATE/bug-report.md
+++ /dev/null
@@ -1,27 +0,0 @@
----
-name: Bug Report
-about: Create a report to help us resolve a bug or error
-
----
-
-**Background (please complete the following information):**
-* Panel or Daemon: 
-* Version of Panel/Daemon: 
-* Server's OS: 
-* Your Computer's OS & Browser: 
-
-**Describe the bug**
-A clear and concise description of what the bug is.
-Please provide additional information too, depending on what you have issues with:
-Panel: `php -v` (the php version in use).
-Daemon: `uname -a` and `docker info` (your kernel version and information regarding docker)
-
-**To Reproduce**
-Steps to reproduce the behavior:
-1. Go to '...'
-2. Click on '....'
-3. Scroll down to '....'
-4. See error
-
-**Expected behavior**
-A clear and concise description of what you expected to happen. If applicable, add screenshots or a recording to help explain your problem.
diff --git a/.github/ISSUE_TEMPLATE/feature-request.md b/.github/ISSUE_TEMPLATE/feature-request.md
deleted file mode 100644
index 817c80c1f..000000000
--- a/.github/ISSUE_TEMPLATE/feature-request.md
+++ /dev/null
@@ -1,17 +0,0 @@
----
-name: Feature Request
-about: Suggest an idea for this project
-
----
-
-**Is your feature request related to a problem? Please describe.**
-A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
-
-**Describe the solution you'd like**
-A clear and concise description of what you want to happen.
-
-**Describe alternatives you've considered**
-A clear and concise description of any alternative solutions or features you've considered.
-
-**Additional context**
-Add any other context or screenshots about the feature request here.

From 5f90d841d063852b7e3692359a35deb8f5258e51 Mon Sep 17 00:00:00 2001
From: Jayden Downes <35357527+JaydenDownes@users.noreply.github.com>
Date: Tue, 5 Jun 2018 10:33:34 +0800
Subject: [PATCH 05/62] Fixed Search Bar Scaling in Firefox (#1187)

Fixed scaling issue with Firefox where it would scale the search bar to 30% of the width of the box-tools container instead of 30% of the row container. (Note this is not a fix for the issue with it appearing on a separate line on mobiles).
---
 public/themes/pterodactyl/css/pterodactyl.css     | 5 +++++
 resources/themes/pterodactyl/base/index.blade.php | 4 ++--
 2 files changed, 7 insertions(+), 2 deletions(-)

diff --git a/public/themes/pterodactyl/css/pterodactyl.css b/public/themes/pterodactyl/css/pterodactyl.css
index 41f163f3b..a4e4c4cf7 100644
--- a/public/themes/pterodactyl/css/pterodactyl.css
+++ b/public/themes/pterodactyl/css/pterodactyl.css
@@ -474,6 +474,11 @@ label.control-label > span.field-optional:before {
     width: auto;
 }
 
+.search01 {
+    width: 30%;
+}
+
 .number-info-box-content {
     padding: 15px 10px 0;
 }
+
diff --git a/resources/themes/pterodactyl/base/index.blade.php b/resources/themes/pterodactyl/base/index.blade.php
index 28f4c4d57..1fd44caa7 100644
--- a/resources/themes/pterodactyl/base/index.blade.php
+++ b/resources/themes/pterodactyl/base/index.blade.php
@@ -23,10 +23,10 @@
         <div class="box">
             <div class="box-header">
                 <h3 class="box-title">@lang('base.index.list')</h3>
-                <div class="box-tools">
+                <div class="box-tools search01">
                     <form action="{{ route('index') }}" method="GET">
                         <div class="input-group input-group-sm">
-                            <input type="text" name="query" class="form-control pull-right" style="width:30%;" value="{{ request()->input('query') }}" placeholder="@lang('strings.search')">
+                            <input type="text" name="query" class="form-control pull-right" value="{{ request()->input('query') }}" placeholder="@lang('strings.search')">
                             <div class="input-group-btn">
                                 <button type="submit" class="btn btn-default"><i class="fa fa-search"></i></button>
                             </div>

From e5e66fdb583f583839e23453a21a315336734d05 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Mon, 11 Jun 2018 20:42:01 -0700
Subject: [PATCH 06/62] Fix error handling in dashboard

---
 resources/assets/scripts/components/dashboard/Dashboard.vue | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/assets/scripts/components/dashboard/Dashboard.vue b/resources/assets/scripts/components/dashboard/Dashboard.vue
index ca3a5555a..575b77006 100644
--- a/resources/assets/scripts/components/dashboard/Dashboard.vue
+++ b/resources/assets/scripts/components/dashboard/Dashboard.vue
@@ -98,7 +98,7 @@
                         console.error(err);
                         const response = err.response;
                         if (response.data && _.isObject(response.data.errors)) {
-                            response.data.errors.forEach(function (error) {
+                            response.data.errors.forEach(error => {
                                 this.error(error.detail);
                             });
                         }

From 14927c3e7ebff2d2935f50b1a70625520706e9a1 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Mon, 11 Jun 2018 22:36:43 -0700
Subject: [PATCH 07/62] Add base UI for account management

---
 package.json                                  |  2 +-
 .../scripts/components/dashboard/Account.vue  | 50 +++++++++--
 .../dashboard/account/UpdateEmail.vue         | 88 +++++++++++++++++++
 .../assets/scripts/store/modules/auth.js      | 50 ++++++++++-
 .../assets/styles/components/buttons.css      | 12 +++
 resources/assets/styles/components/forms.css  | 21 +++++
 routes/api-client.php                         |  1 +
 routes/base.php                               | 10 +--
 8 files changed, 220 insertions(+), 14 deletions(-)
 create mode 100644 resources/assets/scripts/components/dashboard/account/UpdateEmail.vue

diff --git a/package.json b/package.json
index 45f995c34..a11bf7ee6 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,7 @@
         "watch": "NODE_ENV=development ./node_modules/.bin/webpack --watch --progress",
         "build": "NODE_ENV=development ./node_modules/.bin/webpack --progress",
         "build:production": "NODE_ENV=production ./node_modules/.bin/webpack",
-        "serve": "webpack-serve --hot --config ./webpack.config.js",
+        "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js",
         "v:serve": "PUBLIC_PATH=http://192.168.50.2:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.50.2 --no-clipboard"
     }
 }
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index 281ce77b9..655acfb63 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -1,13 +1,51 @@
 <template>
-
+    <div>
+        <navigation/>
+        <div class="container animate fadein mt-6">
+            <flash container="mt-6 mb-2 mx-4"/>
+            <div class="flex">
+                <update-email class="flex-1 m-4"/>
+                <div class="flex-1 m-4">
+                    <form action="" method="post">
+                        <div class="bg-white p-6 border border-grey-light rounded rounded-1">
+                            <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
+                            <div class="mt-6">
+                                <label for="grid-password-current" class="input-label">Current password</label>
+                                <input id="grid-password-current" name="password" type="password" class="input" required>
+                            </div>
+                            <div class="mt-6">
+                                <label for="grid-password-new" class="input-label">New password</label>
+                                <input id="grid-password-new" name="password" type="password" class="input" required>
+                                <p class="input-help">Your new password should be at least 8 characters in length, contain one number, and be mixed case.</p>
+                            </div>
+                            <div class="mt-6">
+                                <label for="grid-password-new-confirm" class="input-label">Confirm new password</label>
+                                <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required>
+                            </div>
+                            <div class="mt-6 text-right">
+                                <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
+                            </div>
+                        </div>
+                    </form>
+                </div>
+            </div>
+        </div>
+    </div>
 </template>
 
 <script>
+    import Navigation from '../core/Navigation';
+    import Flash from '../Flash';
+    import { mapState } from 'vuex';
+    import UpdateEmail from './account/UpdateEmail';
+
     export default {
-        name: 'account'
+        name: 'account',
+        components: {UpdateEmail, Flash, Navigation},
+        computed: {
+            ...mapState({
+                user: state => state.auth.user,
+            })
+        },
     };
 </script>
-
-<style scoped>
-
-</style>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
new file mode 100644
index 000000000..5f06ac77c
--- /dev/null
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -0,0 +1,88 @@
+<template>
+    <div :class>
+        <form method="post" v-on:submit.prevent="submitForm">
+            <div class="bg-white p-6 border border-grey-light rounded rounded-1">
+                <h2 class="mb-6 text-grey-darkest font-medium">Update your email</h2>
+                <div>
+                    <label for="grid-email" class="input-label">Email address</label>
+                    <input id="grid-email" name="email" type="email" class="input" required
+                        v-model="email"
+                    >
+                    <p class="input-help">If your email is no longer {{ user.email }} enter a new email in the field above.</p>
+                </div>
+                <div class="mt-6">
+                    <label for="grid-password" class="input-label">Password</label>
+                    <input id="grid-password" name="password" type="password" class="input" required
+                        v-model="password"
+                    >
+                </div>
+                <div class="mt-6">
+                    <label for="grid-password-confirm" class="input-label">Confirm password</label>
+                    <input id="grid-password-confirm" name="password_confirmation" type="password" class="input" required
+                        v-model="confirm"
+                    >
+                </div>
+                <div class="mt-6 text-right">
+                    <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
+                </div>
+            </div>
+        </form>
+    </div>
+</template>
+
+<script>
+    import { mapState, mapActions } from 'vuex';
+
+    export default {
+        name: 'update-email',
+        data: function () {
+            return {
+                email: '',
+                password: '',
+                confirm: '',
+            };
+        },
+        computed: {
+            ...mapState({
+                user: state => state.auth.user,
+            })
+        },
+
+        methods: {
+            /**
+             * Update a user's email address on the Panel.
+             */
+            submitForm: function () {
+                this.clearFlashes();
+                this.updateEmail({
+                    email: this.$data.email,
+                    password: this.$data.password,
+                    confirm: this.$data.confirm,
+                })
+                    .then(() => {
+                        this.success('Your email address has been updated.');
+                    })
+                    .catch(error => {
+                        if (!error.response) {
+                            return console.error(error);
+                        }
+
+                        const response = error.response;
+                        if (response.data && _.isObject(response.data.errors)) {
+                            response.data.errors.forEach(e => {
+                                this.error(e.detail);
+                            });
+                        }
+                    });
+            },
+
+            ...mapActions('auth', [
+                'updateEmail',
+            ])
+        }
+    };
+</script>
+
+<style scoped>
+
+</style>
diff --git a/resources/assets/scripts/store/modules/auth.js b/resources/assets/scripts/store/modules/auth.js
index 7ccd43721..6999f652f 100644
--- a/resources/assets/scripts/store/modules/auth.js
+++ b/resources/assets/scripts/store/modules/auth.js
@@ -13,12 +13,20 @@ export default {
          * @param state
          * @returns {User|null}
          */
-        currentUser: function (state) {
+        getUser: function (state) {
             return state.user;
-        }
+        },
     },
     setters: {},
     actions: {
+        /**
+         * Log a user into the Panel.
+         *
+         * @param commit
+         * @param {String} user
+         * @param {String} password
+         * @returns {Promise<any>}
+         */
         login: ({commit}, {user, password}) => {
             return new Promise((resolve, reject) => {
                 window.axios.post(route('auth.login'), {user, password})
@@ -47,6 +55,13 @@ export default {
                     .catch(reject);
             });
         },
+
+        /**
+         * Log a user out of the Panel.
+         *
+         * @param commit
+         * @returns {Promise<any>}
+         */
         logout: function ({commit}) {
             return new Promise((resolve, reject) => {
                 window.axios.get(route('auth.logout'))
@@ -57,8 +72,39 @@ export default {
                     .catch(reject);
             })
         },
+
+        /**
+         * Update a user's email address on the Panel and store the updated result in Vuex.
+         *
+         * @param commit
+         * @param {String} email
+         * @param {String} password
+         * @param {String} confirm
+         * @return {Promise<any>}
+         */
+        updateEmail: function ({commit}, {email, password, confirm}) {
+            return new Promise((resolve, reject) => {
+                window.axios.put(route('api.client.account.update-email'), {
+                    email, password, password_confirmation: confirm
+                })
+                    .then(response => {
+                        // If there is a 302 redirect or some other odd behavior (basically, response that isnt
+                        // in JSON format) throw an error and don't try to continue with the login.
+                        if (!(response.data instanceof Object)) {
+                            return reject(new Error('An error was encountered while processing this request.'));
+                        }
+
+                        commit('setEmail', response.data.email);
+                        return resolve();
+                    })
+                    .catch(reject);
+            });
+        },
     },
     mutations: {
+        setEmail: function (state, email) {
+            state.user.email = email;
+        },
         login: function (state, {jwt}) {
             localStorage.setItem('token', jwt);
             state.user = User.fromToken(jwt);
diff --git a/resources/assets/styles/components/buttons.css b/resources/assets/styles/components/buttons.css
index d2721777f..bc14f09d4 100644
--- a/resources/assets/styles/components/buttons.css
+++ b/resources/assets/styles/components/buttons.css
@@ -12,6 +12,14 @@
     }
   }
 
+  &.btn-secondary {
+    @apply .border .border-grey-light .text-grey-dark;
+
+    &:hover:enabled {
+      @apply .border-grey .text-grey-darker;
+    }
+  }
+
   /**
    * Button Sizes
    */
@@ -19,6 +27,10 @@
     @apply .p-4 .w-full .uppercase .tracking-wide .text-sm;
   }
 
+  &.btn-sm {
+    @apply .px-6 .py-3 .uppercase .tracking-wide .text-sm;
+  }
+
   &:disabled, &.disabled {
     opacity: 0.55;
     cursor: default;
diff --git a/resources/assets/styles/components/forms.css b/resources/assets/styles/components/forms.css
index f9de27916..9d87c79a7 100644
--- a/resources/assets/styles/components/forms.css
+++ b/resources/assets/styles/components/forms.css
@@ -30,3 +30,24 @@
     top: 14px;
     transition: transform 200ms ease-out;
 }
+
+.input {
+    @apply .appearance-none .p-3 .rounded .border .text-grey-darker .w-full;
+    transition: all 100ms linear;
+
+    &:focus {
+        @apply .border-blue-light;
+    }
+
+    &:required, &:invalid {
+        box-shadow: none;
+    }
+}
+
+.input-label {
+    @apply .block .uppercase .tracking-wide .text-grey-darkest .text-xs .font-bold .mb-1;
+}
+
+.input-help {
+    @apply .text-xs .text-grey .pt-2;
+}
diff --git a/routes/api-client.php b/routes/api-client.php
index 72be367f7..afee2defd 100644
--- a/routes/api-client.php
+++ b/routes/api-client.php
@@ -14,6 +14,7 @@ Route::get('/', 'ClientController@index')->name('api.client.index');
 
 Route::group(['prefix' => '/account'], function () {
     Route::get('/', 'AccountController@index')->name('api.client.account');
+    Route::put('/email', 'AccountController@updateEmail')->name('api.client.account.update-email');
 });
 
 /*
diff --git a/routes/base.php b/routes/base.php
index 4d86bada9..4c8faa333 100644
--- a/routes/base.php
+++ b/routes/base.php
@@ -16,11 +16,11 @@ Route::get('/', 'IndexController@index')->name('index');
 | Endpoint: /account
 |
 */
-Route::group(['prefix' => 'account'], function () {
-    Route::get('/', 'AccountController@index')->name('account');
-
-    Route::post('/', 'AccountController@update');
-});
+//Route::group(['prefix' => 'account'], function () {
+//    Route::get('/', 'AccountController@index')->name('account');
+//
+//    Route::post('/', 'AccountController@update');
+//});
 
 /*
 |--------------------------------------------------------------------------

From b8b9acd0e695fea143815fe42a61f297e94c5310 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Mon, 11 Jun 2018 22:56:57 -0700
Subject: [PATCH 08/62] Get the base email update working through the API.

Still going to need to determine the best course of action to update the token on the client side.
---
 .../Api/Client/AccountController.php          | 43 +++++++++++++++++++
 .../Api/Client/Account/UpdateEmailRequest.php | 42 ++++++++++++++++++
 .../dashboard/account/UpdateEmail.vue         |  2 +-
 routes/api-client.php                         |  1 +
 4 files changed, 87 insertions(+), 1 deletion(-)
 create mode 100644 app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php

diff --git a/app/Http/Controllers/Api/Client/AccountController.php b/app/Http/Controllers/Api/Client/AccountController.php
index e683d3a0b..fc0f22ecd 100644
--- a/app/Http/Controllers/Api/Client/AccountController.php
+++ b/app/Http/Controllers/Api/Client/AccountController.php
@@ -3,14 +3,57 @@
 namespace Pterodactyl\Http\Controllers\Api\Client;
 
 use Illuminate\Http\Request;
+use Pterodactyl\Services\Users\UserUpdateService;
 use Pterodactyl\Transformers\Api\Client\AccountTransformer;
+use Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest;
 
 class AccountController extends ClientApiController
 {
+    /**
+     * @var \Pterodactyl\Services\Users\UserUpdateService
+     */
+    private $updateService;
+
+    /**
+     * AccountController constructor.
+     *
+     * @param \Pterodactyl\Services\Users\UserUpdateService $updateService
+     */
+    public function __construct(UserUpdateService $updateService)
+    {
+        parent::__construct();
+
+        $this->updateService = $updateService;
+    }
+
+    /**
+     * @param Request $request
+     * @return array
+     */
     public function index(Request $request): array
     {
         return $this->fractal->item($request->user())
             ->transformWith($this->getTransformer(AccountTransformer::class))
             ->toArray();
     }
+
+    /**
+     * Update the authenticated user's email address if their password matches.
+     *
+     * @param UpdateEmailRequest $request
+     * @return array
+     *
+     * @throws \Pterodactyl\Exceptions\Model\DataValidationException
+     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
+     */
+    public function updateEmail(UpdateEmailRequest $request): array
+    {
+        $updated = $this->updateService->handle($request->user(), [
+            'email' => $request->input('email'),
+        ]);
+
+        return $this->fractal->item($updated->get('model'))
+            ->transformWith($this->getTransformer(AccountTransformer::class))
+            ->toArray();
+    }
 }
diff --git a/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
new file mode 100644
index 000000000..f354d120a
--- /dev/null
+++ b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
@@ -0,0 +1,42 @@
+<?php
+
+namespace Pterodactyl\Http\Requests\Api\Client\Account;
+
+use Pterodactyl\Models\User;
+use Pterodactyl\Http\Requests\Api\Client\ClientApiRequest;
+use Pterodactyl\Exceptions\Http\Base\InvalidPasswordProvidedException;
+
+class UpdateEmailRequest extends ClientApiRequest
+{
+    /**
+     * @return bool
+     *
+     * @throws \Pterodactyl\Exceptions\Http\Base\InvalidPasswordProvidedException
+     */
+    public function authorize(): bool
+    {
+        if (! parent::authorize()) {
+            return false;
+        }
+
+        // Verify password matches when changing password or email.
+        if (! password_verify($this->input('password'), $this->user()->password)) {
+            throw new InvalidPasswordProvidedException(trans('base.account.invalid_password'));
+        }
+
+        return true;
+    }
+
+    /**
+     * @return array
+     */
+    public function rules(): array
+    {
+        $rules = User::getUpdateRulesForId($this->user()->id);
+
+        return [
+            'email' => $rules['email'],
+            'password' => array_merge($rules['password'], ['confirmed']),
+        ];
+    }
+}
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index 5f06ac77c..0e4d82b69 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -64,7 +64,7 @@
                     })
                     .catch(error => {
                         if (!error.response) {
-                            return console.error(error);
+                            this.error(error.message);
                         }
 
                         const response = error.response;
diff --git a/routes/api-client.php b/routes/api-client.php
index afee2defd..77aeac295 100644
--- a/routes/api-client.php
+++ b/routes/api-client.php
@@ -14,6 +14,7 @@ Route::get('/', 'ClientController@index')->name('api.client.index');
 
 Route::group(['prefix' => '/account'], function () {
     Route::get('/', 'AccountController@index')->name('api.client.account');
+
     Route::put('/email', 'AccountController@updateEmail')->name('api.client.account.update-email');
 });
 

From 24bb8da43dcc3bf7f01628d84361d6cff6becd5e Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 12:43:32 -0700
Subject: [PATCH 09/62] Fix CSS issue with login page due to input classes

---
 app/Services/Helpers/AssetHashService.php                 | 1 +
 package.json                                              | 2 +-
 resources/assets/scripts/app.js                           | 5 ++---
 .../assets/scripts/components/auth/ForgotPassword.vue     | 2 +-
 resources/assets/scripts/components/auth/LoginForm.vue    | 4 ++--
 .../assets/scripts/components/auth/ResetPassword.vue      | 6 +++---
 .../assets/scripts/components/auth/TwoFactorForm.vue      | 2 +-
 resources/assets/scripts/store/index.js                   | 8 ++++++--
 resources/assets/styles/components/forms.css              | 2 +-
 9 files changed, 18 insertions(+), 14 deletions(-)

diff --git a/app/Services/Helpers/AssetHashService.php b/app/Services/Helpers/AssetHashService.php
index 771516c29..33945578c 100644
--- a/app/Services/Helpers/AssetHashService.php
+++ b/app/Services/Helpers/AssetHashService.php
@@ -91,6 +91,7 @@ class AssetHashService
     {
         return '<link href="' . $this->url($resource) . '"
                     rel="stylesheet preload"
+                    as="style"
                     crossorigin="anonymous"
                     integrity="' . $this->integrity($resource) . '"
                     referrerpolicy="no-referrer">';
diff --git a/package.json b/package.json
index a11bf7ee6..c918bc618 100644
--- a/package.json
+++ b/package.json
@@ -57,7 +57,7 @@
         "watch": "NODE_ENV=development ./node_modules/.bin/webpack --watch --progress",
         "build": "NODE_ENV=development ./node_modules/.bin/webpack --progress",
         "build:production": "NODE_ENV=production ./node_modules/.bin/webpack",
-        "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js",
+        "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --no-clipboard",
         "v:serve": "PUBLIC_PATH=http://192.168.50.2:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.50.2 --no-clipboard"
     }
 }
diff --git a/resources/assets/scripts/app.js b/resources/assets/scripts/app.js
index 704f3d4ef..fe58baf9f 100644
--- a/resources/assets/scripts/app.js
+++ b/resources/assets/scripts/app.js
@@ -3,6 +3,7 @@ import Vuex from 'vuex';
 import vuexI18n from 'vuex-i18n';
 import VueRouter from 'vue-router';
 
+Vue.config.productionTip = false;
 require('./bootstrap');
 
 // Helpers
@@ -10,15 +11,13 @@ import { Ziggy } from './helpers/ziggy';
 import Locales from './../../../resources/lang/locales';
 import { flash } from './mixins/flash';
 import { routes } from './routes';
-import storeData from './store/index.js';
+import store from './store/index.js';
 
 window.events = new Vue;
 window.Ziggy = Ziggy;
 
-Vue.config.productionTip = false;
 Vue.use(Vuex);
 
-const store = new Vuex.Store(storeData);
 const route = require('./../../../vendor/tightenco/ziggy/src/js/route').default;
 
 Vue.mixin({ methods: { route } });
diff --git a/resources/assets/scripts/components/auth/ForgotPassword.vue b/resources/assets/scripts/components/auth/ForgotPassword.vue
index 5a5dc42b8..ce43609da 100644
--- a/resources/assets/scripts/components/auth/ForgotPassword.vue
+++ b/resources/assets/scripts/components/auth/ForgotPassword.vue
@@ -5,7 +5,7 @@
         >
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-email" type="email" aria-labelledby="grid-email-label" required
+                    <input class="input open-label" id="grid-email" type="email" aria-labelledby="grid-email-label" required
                            ref="email"
                            v-bind:class="{ 'has-content': email.length > 0 }"
                            v-bind:readonly="showSpinner"
diff --git a/resources/assets/scripts/components/auth/LoginForm.vue b/resources/assets/scripts/components/auth/LoginForm.vue
index af63c101c..59c80cef3 100644
--- a/resources/assets/scripts/components/auth/LoginForm.vue
+++ b/resources/assets/scripts/components/auth/LoginForm.vue
@@ -5,7 +5,7 @@
         >
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-username" type="text" name="user" aria-labelledby="grid-username-label" required
+                    <input class="input open-label" id="grid-username" type="text" name="user" aria-labelledby="grid-username-label" required
                            ref="email"
                            :class="{ 'has-content' : user.email.length > 0 }"
                            :readonly="showSpinner"
@@ -17,7 +17,7 @@
             </div>
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-password" type="password" name="password" aria-labelledby="grid-password-label" required
+                    <input class="input open-label" id="grid-password" type="password" name="password" aria-labelledby="grid-password-label" required
                            ref="password"
                            :class="{ 'has-content' : user.password && user.password.length > 0 }"
                            :readonly="showSpinner"
diff --git a/resources/assets/scripts/components/auth/ResetPassword.vue b/resources/assets/scripts/components/auth/ResetPassword.vue
index cda6716ac..0d44f2240 100644
--- a/resources/assets/scripts/components/auth/ResetPassword.vue
+++ b/resources/assets/scripts/components/auth/ResetPassword.vue
@@ -5,7 +5,7 @@
         >
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-email" type="email" aria-labelledby="grid-email" required
+                    <input class="input open-label" id="grid-email" type="email" aria-labelledby="grid-email" required
                            ref="email"
                            :class="{ 'has-content': email.length > 0 }"
                            :readonly="showSpinner"
@@ -16,7 +16,7 @@
             </div>
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-password" type="password" aria-labelledby="grid-password" required
+                    <input class="input open-label" id="grid-password" type="password" aria-labelledby="grid-password" required
                            ref="password"
                            :class="{ 'has-content' : password.length > 0 }"
                            :readonly="showSpinner"
@@ -28,7 +28,7 @@
             </div>
             <div class="flex flex-wrap -mx-3 mb-6">
                 <div class="input-open">
-                    <input class="input" id="grid-password-confirmation" type="password" aria-labelledby="grid-password-confirmation" required
+                    <input class="input open-label" id="grid-password-confirmation" type="password" aria-labelledby="grid-password-confirmation" required
                            :class="{ 'has-content' : passwordConfirmation.length > 0 }"
                            :readonly="showSpinner"
                            v-model="passwordConfirmation"
diff --git a/resources/assets/scripts/components/auth/TwoFactorForm.vue b/resources/assets/scripts/components/auth/TwoFactorForm.vue
index 21f9cddfe..94d6de6cb 100644
--- a/resources/assets/scripts/components/auth/TwoFactorForm.vue
+++ b/resources/assets/scripts/components/auth/TwoFactorForm.vue
@@ -4,7 +4,7 @@
     >
         <div class="flex flex-wrap -mx-3 mb-6">
             <div class="input-open">
-                <input class="input" id="grid-code" type="number" name="token" aria-labelledby="grid-username" required
+                <input class="input open-label" id="grid-code" type="number" name="token" aria-labelledby="grid-username" required
                        ref="code"
                        :class="{ 'has-content' : code.length > 0 }"
                        v-model="code"
diff --git a/resources/assets/scripts/store/index.js b/resources/assets/scripts/store/index.js
index 44c02653b..7c7d87cbb 100644
--- a/resources/assets/scripts/store/index.js
+++ b/resources/assets/scripts/store/index.js
@@ -1,6 +1,10 @@
+import Vue from 'vue';
+import Vuex from 'vuex';
 import auth from './modules/auth';
 
-export default {
+Vue.use(Vuex);
+
+export default new Vuex.Store({
     strict: process.env.NODE_ENV !== 'production',
     modules: { auth },
-};
+});
diff --git a/resources/assets/styles/components/forms.css b/resources/assets/styles/components/forms.css
index 9d87c79a7..5e03a3153 100644
--- a/resources/assets/styles/components/forms.css
+++ b/resources/assets/styles/components/forms.css
@@ -31,7 +31,7 @@
     transition: transform 200ms ease-out;
 }
 
-.input {
+.input:not(.open-label) {
     @apply .appearance-none .p-3 .rounded .border .text-grey-darker .w-full;
     transition: all 100ms linear;
 

From e7faf979a11ac94cc5f5cf29186b842b3f0e685c Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 14:05:39 -0700
Subject: [PATCH 10/62] Change login handling to automatically redirect a user
 if their session will need renewal.

---
 .../Auth/AbstractLoginController.php          |  8 +-
 app/Http/Middleware/Api/AuthenticateKey.php   | 10 ++-
 config/jwt.php                                |  1 +
 resources/assets/scripts/app.js               | 11 +--
 resources/assets/scripts/models/user.js       | 22 +++--
 resources/assets/scripts/router.js            | 81 +++++++++++++++++++
 resources/assets/scripts/store/index.js       | 14 +++-
 routes/auth.php                               |  2 +-
 8 files changed, 126 insertions(+), 23 deletions(-)
 create mode 100644 resources/assets/scripts/router.js

diff --git a/app/Http/Controllers/Auth/AbstractLoginController.php b/app/Http/Controllers/Auth/AbstractLoginController.php
index de8e275d3..02f425216 100644
--- a/app/Http/Controllers/Auth/AbstractLoginController.php
+++ b/app/Http/Controllers/Auth/AbstractLoginController.php
@@ -155,13 +155,15 @@ abstract class AbstractLoginController extends Controller
      */
     protected function createJsonWebToken(User $user): string
     {
+        $now = Chronos::now('utc');
+
         $token = $this->builder
             ->setIssuer('Pterodactyl Panel')
             ->setAudience(config('app.url'))
             ->setId(str_random(16), true)
-            ->setIssuedAt(Chronos::now()->getTimestamp())
-            ->setNotBefore(Chronos::now()->getTimestamp())
-            ->setExpiration(Chronos::now()->addSeconds(config('session.lifetime'))->getTimestamp())
+            ->setIssuedAt($now->getTimestamp())
+            ->setNotBefore($now->getTimestamp())
+            ->setExpiration($now->addSeconds(config('jwt.lifetime'))->getTimestamp())
             ->set('user', (new AccountTransformer())->transform($user))
             ->sign($this->getJWTSigner(), $this->getJWTSigningKey())
             ->getToken();
diff --git a/app/Http/Middleware/Api/AuthenticateKey.php b/app/Http/Middleware/Api/AuthenticateKey.php
index 0b6b23f7f..4b8156dd1 100644
--- a/app/Http/Middleware/Api/AuthenticateKey.php
+++ b/app/Http/Middleware/Api/AuthenticateKey.php
@@ -98,13 +98,17 @@ class AuthenticateKey
         }
 
         // Run through the token validation and throw an exception if the token is not valid.
+        //
+        // The issued_at time is used for verification in order to allow rapid changing of session
+        // length on the Panel without having to wait on existing tokens to first expire.
+        $now = Chronos::now('utc');
         if (
-            $token->getClaim('nbf') > Chronos::now()->getTimestamp()
+            Chronos::createFromTimestampUTC($token->getClaim('nbf'))->gt($now)
             || $token->getClaim('iss') !== 'Pterodactyl Panel'
             || $token->getClaim('aud') !== config('app.url')
-            || $token->getClaim('exp') <= Chronos::now()->getTimestamp()
+            || Chronos::createFromTimestampUTC($token->getClaim('iat'))->addMinutes(config('jwt.lifetime'))->lte($now)
         ) {
-            throw new AccessDeniedHttpException;
+            throw new AccessDeniedHttpException('The authentication parameters provided are not valid for accessing this resource.');
         }
 
         return (new ApiKey)->forceFill([
diff --git a/config/jwt.php b/config/jwt.php
index 6bd04a635..d51a7fae9 100644
--- a/config/jwt.php
+++ b/config/jwt.php
@@ -12,6 +12,7 @@ return [
     |
     */
     'key' => env('APP_JWT_KEY'),
+    'lifetime' => env('APP_JWT_LIFETIME', 1440),
 
     'signer' => \Lcobucci\JWT\Signer\Hmac\Sha256::class,
 ];
diff --git a/resources/assets/scripts/app.js b/resources/assets/scripts/app.js
index fe58baf9f..6048cc5aa 100644
--- a/resources/assets/scripts/app.js
+++ b/resources/assets/scripts/app.js
@@ -10,22 +10,21 @@ require('./bootstrap');
 import { Ziggy } from './helpers/ziggy';
 import Locales from './../../../resources/lang/locales';
 import { flash } from './mixins/flash';
-import { routes } from './routes';
 import store from './store/index.js';
+import router from './router';
 
 window.events = new Vue;
 window.Ziggy = Ziggy;
 
 Vue.use(Vuex);
+Vue.use(VueRouter);
+Vue.use(vuexI18n.plugin, store);
 
 const route = require('./../../../vendor/tightenco/ziggy/src/js/route').default;
 
 Vue.mixin({ methods: { route } });
 Vue.mixin(flash);
 
-Vue.use(VueRouter);
-Vue.use(vuexI18n.plugin, store);
-
 Vue.i18n.add('en', Locales.en);
 Vue.i18n.set('en');
 
@@ -33,8 +32,4 @@ if (module.hot) {
     module.hot.accept();
 }
 
-const router = new VueRouter({
-    mode: 'history', routes
-});
-
 const app = new Vue({ store, router }).$mount('#pterodactyl');
diff --git a/resources/assets/scripts/models/user.js b/resources/assets/scripts/models/user.js
index 149afd818..d4b338d95 100644
--- a/resources/assets/scripts/models/user.js
+++ b/resources/assets/scripts/models/user.js
@@ -9,17 +9,19 @@ export default class User {
      */
     static fromToken(token) {
         if (!isString(token)) {
-            token = localStorage.getItem('token');
+            token = this.getToken();
         }
 
         if (!isString(token) || token.length < 1) {
             return null;
         }
 
-        const data = jwtDecode(token);
-        if (data.user) {
-            return new User(data.user);
-        }
+        try {
+            const data = jwtDecode(token);
+            if (data.user) {
+                return new User(data.user);
+            }
+        } catch (ex) {}
 
         return null;
     }
@@ -29,8 +31,7 @@ export default class User {
      *
      * @returns {string | null}
      */
-    static getToken()
-    {
+    static getToken() {
         return localStorage.getItem('token');
     }
 
@@ -60,4 +61,11 @@ export default class User {
         this.last_name = last_name;
         this.language = language;
     }
+
+    /**
+     * Returns the JWT belonging to the current user.
+     */
+    getJWT() {
+        return jwtDecode(User.getToken());
+    }
 }
diff --git a/resources/assets/scripts/router.js b/resources/assets/scripts/router.js
new file mode 100644
index 000000000..2eaff883c
--- /dev/null
+++ b/resources/assets/scripts/router.js
@@ -0,0 +1,81 @@
+import VueRouter from 'vue-router';
+import store from './store/index';
+import compareDate from 'date-fns/compare_asc'
+import addHours from 'date-fns/add_hours'
+import dateParse from 'date-fns/parse'
+const route = require('./../../../vendor/tightenco/ziggy/src/js/route').default;
+
+// Base Vuejs Templates
+import Login from './components/auth/Login';
+import Dashboard from './components/dashboard/Dashboard';
+import Account from './components/dashboard/Account';
+import ResetPassword from './components/auth/ResetPassword';
+
+const routes = [
+    { name: 'login', path: '/auth/login', component: Login },
+    { name: 'forgot-password', path: '/auth/password', component: Login },
+    { name: 'checkpoint', path: '/auth/checkpoint', component: Login },
+    {
+        name: 'reset-password',
+        path: '/auth/password/reset/:token',
+        component: ResetPassword,
+        props: function (route) {
+            return { token: route.params.token, email: route.query.email || '' };
+        }
+    },
+
+    { name : 'dashboard', path: '/', component: Dashboard },
+    { name : 'account', path: '/account', component: Account },
+    { name : 'account.api', path: '/account/api', component: Account },
+    { name : 'account.security', path: '/account/security', component: Account },
+
+    {
+        name: 'server',
+        path: '/server/:id',
+        // component: Server,
+        // children: [
+        //     { path: 'files', component: ServerFileManager }
+        // ],
+    }
+];
+
+const router = new VueRouter({
+    mode: 'history', routes
+});
+
+// Redirect the user to the login page if they try to access a protected route and
+// have no JWT or the JWT is expired and wouldn't be accepted by the Panel.
+router.beforeEach((to, from, next) => {
+    if (to.path === route('auth.logout')) {
+        return window.location = route('auth.logout');
+    }
+
+    const user = store.getters['auth/getUser'];
+
+    // If user is trying to access the authentication endpoints but is already authenticated
+    // don't try to load them, just send the user to the dashboard.
+    if (to.path.startsWith('/auth')) {
+        if (user !== null && compareDate(addHours(dateParse(user.getJWT().iat * 1000), 12), new Date()) >= 0) {
+            return window.location = '/';
+        }
+
+        return next();
+    }
+
+    // If user is trying to access any of the non-authentication endpoints ensure that they have
+    // a valid, non-expired JWT.
+    if (!to.path.startsWith('/auth')) {
+        // Check if the JWT has expired. Don't use the exp field, but rather that issued at time
+        // so that we can adjust how long we want to wait for expiration on both server-side and
+        // client side without having to wait for older tokens to pass their expiration time if
+        // we lower it.
+        if (user === null || compareDate(addHours(dateParse(user.getJWT().iat * 1000), 12), new Date()) < 0) {
+            return window.location = route('auth.login');
+        }
+    }
+
+    // Continue on through the pipeline.
+    return next();
+});
+
+export default router;
diff --git a/resources/assets/scripts/store/index.js b/resources/assets/scripts/store/index.js
index 7c7d87cbb..09c707244 100644
--- a/resources/assets/scripts/store/index.js
+++ b/resources/assets/scripts/store/index.js
@@ -4,7 +4,19 @@ import auth from './modules/auth';
 
 Vue.use(Vuex);
 
-export default new Vuex.Store({
+const store = new Vuex.Store({
     strict: process.env.NODE_ENV !== 'production',
     modules: { auth },
 });
+
+if (module.hot) {
+    module.hot.accept(['./modules/auth'], () => {
+        const newAuthModule = require('./modules/auth').default;
+
+        store.hotUpdate({
+            modules: { newAuthModule },
+        });
+    });
+}
+
+export default store;
diff --git a/routes/auth.php b/routes/auth.php
index a6038447b..3ae4967be 100644
--- a/routes/auth.php
+++ b/routes/auth.php
@@ -8,7 +8,7 @@
 | Endpoint: /auth
 |
 */
-Route::group(['middleware' => 'guest'], function () {
+Route::group([], function () {
     // These routes are defined so that we can continue to reference them programatically.
     // They all route to the same controller function which passes off to Vuejs.
     Route::get('/login', 'LoginController@index')->name('auth.login');

From 1acedc2de2664d71e2b7ef84d39a5ed0d6d29318 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 14:11:58 -0700
Subject: [PATCH 11/62] Remove luxon completely.

---
 package.json                                           |  2 +-
 .../assets/scripts/components/dashboard/Dashboard.vue  | 10 +++++-----
 yarn.lock                                              |  8 ++++----
 3 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/package.json b/package.json
index c918bc618..a727e3fa1 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,7 @@
 {
     "name": "pterodactyl-panel",
     "dependencies": {
+        "date-fns": "^1.29.0",
         "vue": "^2.5.7",
         "vue-axios": "^2.1.1",
         "vue-router": "^3.0.1",
@@ -27,7 +28,6 @@
         "jquery": "^3.3.1",
         "jwt-decode": "^2.2.0",
         "lodash": "^4.17.5",
-        "luxon": "^1.2.1",
         "postcss": "^6.0.21",
         "postcss-import": "^11.1.0",
         "postcss-loader": "^2.1.5",
diff --git a/resources/assets/scripts/components/dashboard/Dashboard.vue b/resources/assets/scripts/components/dashboard/Dashboard.vue
index 575b77006..479cf4bbc 100644
--- a/resources/assets/scripts/components/dashboard/Dashboard.vue
+++ b/resources/assets/scripts/components/dashboard/Dashboard.vue
@@ -28,9 +28,9 @@
 </template>
 
 <script>
-    import { DateTime } from 'luxon';
     import Server from '../../models/server';
     import _ from 'lodash';
+    import differenceInSeconds from 'date-fns/difference_in_seconds';
     import Flash from '../Flash';
     import ServerBox from './ServerBox';
     import Navigation from '../core/Navigation';
@@ -40,7 +40,7 @@
         components: { Navigation, ServerBox, Flash },
         data: function () {
             return {
-                backgroundedAt: DateTime.local(),
+                backgroundedAt: new Date(),
                 documentVisible: true,
                 loading: true,
                 search: '',
@@ -156,14 +156,14 @@
              */
             _handleDocumentVisibilityChange: function (isVisible) {
                 if (!isVisible) {
-                    this.backgroundedAt = DateTime.local();
+                    this.backgroundedAt = new Date();
                     return;
                 }
 
                 // If it has been more than 30 seconds since this window was put into the background
                 // lets go ahead and refresh all of the listed servers so that they have fresh stats.
-                const diff = DateTime.local().diff(this.backgroundedAt, 'seconds');
-                this._iterateServerResourceUse(diff.seconds > 30 ? 1 : 5000);
+                const diff = differenceInSeconds(new Date(), this.backgroundedAt);
+                this._iterateServerResourceUse(diff > 30 ? 1 : 5000);
             },
         }
     };
diff --git a/yarn.lock b/yarn.lock
index f083f602e..318e08707 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2032,6 +2032,10 @@ d@1:
   dependencies:
     es5-ext "^0.10.9"
 
+date-fns@^1.29.0:
+  version "1.29.0"
+  resolved "https://registry.yarnpkg.com/date-fns/-/date-fns-1.29.0.tgz#12e609cdcb935127311d04d33334e2960a2a54e6"
+
 date-now@^0.1.4:
   version "0.1.4"
   resolved "https://registry.yarnpkg.com/date-now/-/date-now-0.1.4.tgz#eaf439fd4d4848ad74e5cc7dbef200672b9e345b"
@@ -3662,10 +3666,6 @@ lru-cache@^4.0.1, lru-cache@^4.1.1:
     pseudomap "^1.0.2"
     yallist "^2.1.2"
 
-luxon@^1.2.1:
-  version "1.2.1"
-  resolved "https://registry.yarnpkg.com/luxon/-/luxon-1.2.1.tgz#5c4948d141939c2b2820f0c3a99276932245efb1"
-
 make-dir@^1.0.0:
   version "1.3.0"
   resolved "https://registry.yarnpkg.com/make-dir/-/make-dir-1.3.0.tgz#79c1033b80515bd6d24ec9933e860ca75ee27f0c"

From ca0c35bf826e950f80c3c128b40b1ffd98f4e456 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 14:27:23 -0700
Subject: [PATCH 12/62] Avoid getting stuck in an endless redirect loop...

---
 resources/assets/scripts/router.js | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/resources/assets/scripts/router.js b/resources/assets/scripts/router.js
index 2eaff883c..fc86b4a6e 100644
--- a/resources/assets/scripts/router.js
+++ b/resources/assets/scripts/router.js
@@ -52,16 +52,6 @@ router.beforeEach((to, from, next) => {
 
     const user = store.getters['auth/getUser'];
 
-    // If user is trying to access the authentication endpoints but is already authenticated
-    // don't try to load them, just send the user to the dashboard.
-    if (to.path.startsWith('/auth')) {
-        if (user !== null && compareDate(addHours(dateParse(user.getJWT().iat * 1000), 12), new Date()) >= 0) {
-            return window.location = '/';
-        }
-
-        return next();
-    }
-
     // If user is trying to access any of the non-authentication endpoints ensure that they have
     // a valid, non-expired JWT.
     if (!to.path.startsWith('/auth')) {

From fce394f6bd7b70f33491ce34db271eca40f14784 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 14:30:20 -0700
Subject: [PATCH 13/62] Change email handling and logout function

---
 .../Api/Client/AccountController.php          |  6 ++---
 .../Api/Client/Account/UpdateEmailRequest.php |  5 +---
 .../scripts/components/core/Navigation.vue    | 10 ++++++--
 .../dashboard/account/UpdateEmail.vue         | 12 +++------
 .../assets/scripts/store/modules/auth.js      | 25 +++----------------
 routes/auth.php                               |  2 +-
 6 files changed, 18 insertions(+), 42 deletions(-)

diff --git a/app/Http/Controllers/Api/Client/AccountController.php b/app/Http/Controllers/Api/Client/AccountController.php
index fc0f22ecd..84ec07e3a 100644
--- a/app/Http/Controllers/Api/Client/AccountController.php
+++ b/app/Http/Controllers/Api/Client/AccountController.php
@@ -40,7 +40,7 @@ class AccountController extends ClientApiController
     /**
      * Update the authenticated user's email address if their password matches.
      *
-     * @param UpdateEmailRequest $request
+     * @param \Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest $request
      * @return array
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
@@ -48,9 +48,7 @@ class AccountController extends ClientApiController
      */
     public function updateEmail(UpdateEmailRequest $request): array
     {
-        $updated = $this->updateService->handle($request->user(), [
-            'email' => $request->input('email'),
-        ]);
+        $updated = $this->updateService->handle($request->user(), $request->validated());
 
         return $this->fractal->item($updated->get('model'))
             ->transformWith($this->getTransformer(AccountTransformer::class))
diff --git a/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
index f354d120a..0d8f9ea74 100644
--- a/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
+++ b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
@@ -34,9 +34,6 @@ class UpdateEmailRequest extends ClientApiRequest
     {
         $rules = User::getUpdateRulesForId($this->user()->id);
 
-        return [
-            'email' => $rules['email'],
-            'password' => array_merge($rules['password'], ['confirmed']),
-        ];
+        return ['email' => $rules['email']];
     }
 }
diff --git a/resources/assets/scripts/components/core/Navigation.vue b/resources/assets/scripts/components/core/Navigation.vue
index 701fada65..5939355a4 100644
--- a/resources/assets/scripts/components/core/Navigation.vue
+++ b/resources/assets/scripts/components/core/Navigation.vue
@@ -23,7 +23,7 @@
                     </a>
                 </li>
                 <li>
-                    <a :href="this.route('auth.logout')">
+                    <a :href="this.route('auth.logout')" v-on:click.prevent="doLogout">
                         <log-out-icon aria-label="Sign out"/>
                     </a>
                 </li>
@@ -37,6 +37,12 @@
 
     export default {
         name: 'navigation',
-        components: { LogOutIcon, ServerIcon, SettingsIcon, UserIcon }
+        components: { LogOutIcon, ServerIcon, SettingsIcon, UserIcon },
+        methods: {
+            doLogout: function () {
+                this.$store.commit('auth/logout');
+                return window.location = this.route('auth.logout');
+            },
+        }
     };
 </script>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index 0e4d82b69..d8932c973 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -16,12 +16,6 @@
                         v-model="password"
                     >
                 </div>
-                <div class="mt-6">
-                    <label for="grid-password-confirm" class="input-label">Confirm password</label>
-                    <input id="grid-password-confirm" name="password_confirmation" type="password" class="input" required
-                        v-model="confirm"
-                    >
-                </div>
                 <div class="mt-6 text-right">
                     <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
                 </div>
@@ -31,6 +25,7 @@
 </template>
 
 <script>
+    import _ from 'lodash';
     import { mapState, mapActions } from 'vuex';
 
     export default {
@@ -39,7 +34,6 @@
             return {
                 email: '',
                 password: '',
-                confirm: '',
             };
         },
         computed: {
@@ -56,11 +50,11 @@
                 this.clearFlashes();
                 this.updateEmail({
                     email: this.$data.email,
-                    password: this.$data.password,
-                    confirm: this.$data.confirm,
+                    password: this.$data.password
                 })
                     .then(() => {
                         this.success('Your email address has been updated.');
+                        this.$data.password = '';
                     })
                     .catch(error => {
                         if (!error.response) {
diff --git a/resources/assets/scripts/store/modules/auth.js b/resources/assets/scripts/store/modules/auth.js
index 6999f652f..04c679700 100644
--- a/resources/assets/scripts/store/modules/auth.js
+++ b/resources/assets/scripts/store/modules/auth.js
@@ -1,4 +1,5 @@
 import User from './../../models/user';
+
 const route = require('./../../../../../vendor/tightenco/ziggy/src/js/route').default;
 
 export default {
@@ -56,37 +57,17 @@ export default {
             });
         },
 
-        /**
-         * Log a user out of the Panel.
-         *
-         * @param commit
-         * @returns {Promise<any>}
-         */
-        logout: function ({commit}) {
-            return new Promise((resolve, reject) => {
-                window.axios.get(route('auth.logout'))
-                    .then(() => {
-                        commit('logout');
-                        return resolve();
-                    })
-                    .catch(reject);
-            })
-        },
-
         /**
          * Update a user's email address on the Panel and store the updated result in Vuex.
          *
          * @param commit
          * @param {String} email
          * @param {String} password
-         * @param {String} confirm
          * @return {Promise<any>}
          */
-        updateEmail: function ({commit}, {email, password, confirm}) {
+        updateEmail: function ({commit}, {email, password}) {
             return new Promise((resolve, reject) => {
-                window.axios.put(route('api.client.account.update-email'), {
-                    email, password, password_confirmation: confirm
-                })
+                window.axios.put(route('api.client.account.update-email'), {email, password})
                     .then(response => {
                         // If there is a 302 redirect or some other odd behavior (basically, response that isnt
                         // in JSON format) throw an error and don't try to continue with the login.
diff --git a/routes/auth.php b/routes/auth.php
index 3ae4967be..a6038447b 100644
--- a/routes/auth.php
+++ b/routes/auth.php
@@ -8,7 +8,7 @@
 | Endpoint: /auth
 |
 */
-Route::group([], function () {
+Route::group(['middleware' => 'guest'], function () {
     // These routes are defined so that we can continue to reference them programatically.
     // They all route to the same controller function which passes off to Vuejs.
     Route::get('/login', 'LoginController@index')->name('auth.login');

From 84fecb7a928c25a1d9542df7d9e4b72eb84cb112 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 15:05:36 -0700
Subject: [PATCH 14/62] Import only the needed things from lodash

---
 resources/assets/scripts/components/dashboard/Dashboard.vue   | 4 ++--
 .../scripts/components/dashboard/account/UpdateEmail.vue      | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/resources/assets/scripts/components/dashboard/Dashboard.vue b/resources/assets/scripts/components/dashboard/Dashboard.vue
index 479cf4bbc..0943f30a6 100644
--- a/resources/assets/scripts/components/dashboard/Dashboard.vue
+++ b/resources/assets/scripts/components/dashboard/Dashboard.vue
@@ -29,7 +29,7 @@
 
 <script>
     import Server from '../../models/server';
-    import _ from 'lodash';
+    import debounce from 'lodash/debounce';
     import differenceInSeconds from 'date-fns/difference_in_seconds';
     import Flash from '../Flash';
     import ServerBox from './ServerBox';
@@ -112,7 +112,7 @@
              * Handle a search for servers but only call the search function every 500ms
              * at the fastest.
              */
-            onChange: _.debounce(function () {
+            onChange: debounce(function () {
                 this.loadServers(this.$data.search);
             }, 500),
 
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index d8932c973..5ad0089f2 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -25,7 +25,7 @@
 </template>
 
 <script>
-    import _ from 'lodash';
+    import isObject from 'lodash/isObject';
     import { mapState, mapActions } from 'vuex';
 
     export default {
@@ -62,7 +62,7 @@
                         }
 
                         const response = error.response;
-                        if (response.data && _.isObject(response.data.errors)) {
+                        if (response.data && isObject(response.data.errors)) {
                             response.data.errors.forEach(e => {
                                 this.error(e.detail);
                             });

From d6959ea3ddfc1df9ea1bb70eef144c325b471de5 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 16:25:26 -0700
Subject: [PATCH 15/62] Add a basic modal template to be used

---
 .../assets/scripts/components/core/Modal.vue  | 40 ++++++++++++++++
 .../scripts/components/dashboard/Account.vue  | 46 +++++++------------
 .../dashboard/account/ChangePassword.vue      | 31 +++++++++++++
 .../account/TwoFactorAuthentication.vue       | 11 +++++
 .../assets/styles/components/animations.css   | 12 +++++
 .../assets/styles/components/buttons.css      |  8 ++++
 resources/assets/styles/components/modal.css  | 10 ++++
 resources/assets/styles/main.css              |  1 +
 8 files changed, 130 insertions(+), 29 deletions(-)
 create mode 100644 resources/assets/scripts/components/core/Modal.vue
 create mode 100644 resources/assets/scripts/components/dashboard/account/ChangePassword.vue
 create mode 100644 resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
 create mode 100644 resources/assets/styles/components/modal.css

diff --git a/resources/assets/scripts/components/core/Modal.vue b/resources/assets/scripts/components/core/Modal.vue
new file mode 100644
index 000000000..586b18f06
--- /dev/null
+++ b/resources/assets/scripts/components/core/Modal.vue
@@ -0,0 +1,40 @@
+<template>
+    <transition name="modal">
+        <div class="modal-mask" v-show="show" v-on:click="close">
+            <div class="modal-container" @click.stop>
+                <x-icon class="absolute pin-r pin-t m-2 text-grey cursor-pointer" aria-label="Close modal"
+                        v-on:click="close"
+                />
+                <slot/>
+            </div>
+        </div>
+    </transition>
+</template>
+
+<script>
+    import { XIcon } from 'vue-feather-icons';
+    export default {
+        name: 'modal',
+        components: { XIcon },
+        props: {
+            modalName: { type: String, default: 'modal' },
+            show: { type: Boolean, default: false },
+            closeOnEsc: { type: Boolean, default: true },
+        },
+        mounted: function () {
+            if (this.$props.closeOnEsc) {
+                document.addEventListener('keydown', e => {
+                    if (this.show && e.key === 'Escape') {
+                        this.close();
+                    }
+                })
+            }
+        },
+
+        methods: {
+            close: function () {
+                this.$emit('close', this.$props.modalName);
+            }
+        }
+    };
+</script>
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index 655acfb63..3b481a817 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -2,32 +2,18 @@
     <div>
         <navigation/>
         <div class="container animate fadein mt-6">
+            <modal :show="modalVisible" v-on:close="modalVisible = false">
+                <TwoFactorAuthentication/>
+            </modal>
             <flash container="mt-6 mb-2 mx-4"/>
             <div class="flex">
-                <update-email class="flex-1 m-4"/>
-                <div class="flex-1 m-4">
-                    <form action="" method="post">
-                        <div class="bg-white p-6 border border-grey-light rounded rounded-1">
-                            <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
-                            <div class="mt-6">
-                                <label for="grid-password-current" class="input-label">Current password</label>
-                                <input id="grid-password-current" name="password" type="password" class="input" required>
-                            </div>
-                            <div class="mt-6">
-                                <label for="grid-password-new" class="input-label">New password</label>
-                                <input id="grid-password-new" name="password" type="password" class="input" required>
-                                <p class="input-help">Your new password should be at least 8 characters in length, contain one number, and be mixed case.</p>
-                            </div>
-                            <div class="mt-6">
-                                <label for="grid-password-new-confirm" class="input-label">Confirm new password</label>
-                                <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required>
-                            </div>
-                            <div class="mt-6 text-right">
-                                <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
-                            </div>
-                        </div>
-                    </form>
+                <div class="flex-1 m-4 ml-0">
+                    <update-email class="mb-8"/>
+                    <div class="bg-white p-6 border border-grey-light rounded rounded-1 text-center">
+                        <button class="btn btn-green btn-sm" type="submit" v-on:click="modalVisible = true">Configure 2-Factor Authentication</button>
+                    </div>
                 </div>
+                <change-password class="flex-1 m-4 mr-0"/>
             </div>
         </div>
     </div>
@@ -36,16 +22,18 @@
 <script>
     import Navigation from '../core/Navigation';
     import Flash from '../Flash';
-    import { mapState } from 'vuex';
     import UpdateEmail from './account/UpdateEmail';
+    import ChangePassword from './account/ChangePassword';
+    import Modal from '../core/Modal';
+    import TwoFactorAuthentication from './account/TwoFactorAuthentication';
 
     export default {
         name: 'account',
-        components: {UpdateEmail, Flash, Navigation},
-        computed: {
-            ...mapState({
-                user: state => state.auth.user,
-            })
+        components: {TwoFactorAuthentication, Modal, ChangePassword, UpdateEmail, Flash, Navigation},
+        data: function () {
+            return {
+                modalVisible: false,
+            };
         },
     };
 </script>
diff --git a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
new file mode 100644
index 000000000..52ad65a95
--- /dev/null
+++ b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
@@ -0,0 +1,31 @@
+<template>
+    <div>
+        <form action="" method="post">
+            <div class="bg-white p-6 border border-grey-light rounded rounded-1">
+                <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
+                <div class="mt-6">
+                    <label for="grid-password-current" class="input-label">Current password</label>
+                    <input id="grid-password-current" name="password" type="password" class="input" required>
+                </div>
+                <div class="mt-6">
+                    <label for="grid-password-new" class="input-label">New password</label>
+                    <input id="grid-password-new" name="password" type="password" class="input" required>
+                    <p class="input-help">Your new password should be at least 8 characters in length, contain one number, and be mixed case.</p>
+                </div>
+                <div class="mt-6">
+                    <label for="grid-password-new-confirm" class="input-label">Confirm new password</label>
+                    <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required>
+                </div>
+                <div class="mt-6 text-right">
+                    <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
+                </div>
+            </div>
+        </form>
+    </div>
+</template>
+
+<script>
+    export default {
+        name: 'change-password'
+    };
+</script>
diff --git a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
new file mode 100644
index 000000000..6899e305b
--- /dev/null
+++ b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
@@ -0,0 +1,11 @@
+<template>
+    <div>
+        Todo: put the 2FA magic here!
+    </div>
+</template>
+
+<script>
+    export default {
+        name: 'TwoFactorAuthentication'
+    };
+</script>
diff --git a/resources/assets/styles/components/animations.css b/resources/assets/styles/components/animations.css
index a081fb4f7..a3daa6722 100644
--- a/resources/assets/styles/components/animations.css
+++ b/resources/assets/styles/components/animations.css
@@ -34,3 +34,15 @@
     @apply .bg-red-dark;
   }
 }
+
+/*
+ * transition="modal"
+ */
+.modal-enter, .modal-leave-active {
+  opacity: 0;
+}
+
+.modal-enter .modal-container,
+.modal-leave-active .modal-container {
+  animation: opacity 250ms linear;
+}
diff --git a/resources/assets/styles/components/buttons.css b/resources/assets/styles/components/buttons.css
index bc14f09d4..733efc0a5 100644
--- a/resources/assets/styles/components/buttons.css
+++ b/resources/assets/styles/components/buttons.css
@@ -12,6 +12,14 @@
     }
   }
 
+  &.btn-green {
+    @apply .bg-green .border-green-dark .border .text-white;
+
+    &:hover:enabled {
+      @apply .bg-green-dark .border-green-darker;
+    }
+  }
+
   &.btn-secondary {
     @apply .border .border-grey-light .text-grey-dark;
 
diff --git a/resources/assets/styles/components/modal.css b/resources/assets/styles/components/modal.css
new file mode 100644
index 000000000..8a36e9592
--- /dev/null
+++ b/resources/assets/styles/components/modal.css
@@ -0,0 +1,10 @@
+.modal-mask {
+  @apply .fixed .pin .z-50 .overflow-auto .flex;
+  background: rgba(0, 0, 0, 0.7);
+  transition: opacity 250ms ease;
+
+  & > .modal-container {
+    @apply .relative .p-8 .bg-white .w-full .max-w-md .m-auto .flex-col .flex;
+    transition: all 250ms ease;
+  }
+}
diff --git a/resources/assets/styles/main.css b/resources/assets/styles/main.css
index 4a42cd267..0af5be78b 100644
--- a/resources/assets/styles/main.css
+++ b/resources/assets/styles/main.css
@@ -12,6 +12,7 @@
 @import "components/buttons.css";
 @import "components/forms.css";
 @import "components/miscellaneous.css";
+@import "components/modal.css";
 @import "components/navigation.css";
 @import "components/notifications.css";
 @import "components/spinners.css";

From 4e4a183f48b732eaac880cccaddfcb7ca8ed5bb2 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 16:27:53 -0700
Subject: [PATCH 16/62] Put the modal more at the top, looks funky in middle

---
 resources/assets/styles/components/modal.css | 1 +
 1 file changed, 1 insertion(+)

diff --git a/resources/assets/styles/components/modal.css b/resources/assets/styles/components/modal.css
index 8a36e9592..5146021eb 100644
--- a/resources/assets/styles/components/modal.css
+++ b/resources/assets/styles/components/modal.css
@@ -6,5 +6,6 @@
   & > .modal-container {
     @apply .relative .p-8 .bg-white .w-full .max-w-md .m-auto .flex-col .flex;
     transition: all 250ms ease;
+    margin-top: 15%;
   }
 }

From ac7cefb83f9d6f3c5602716f61c406c932516d85 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 16:43:52 -0700
Subject: [PATCH 17/62] Make the account page mobile friendly

---
 .../scripts/components/dashboard/Account.vue     | 16 ++++++++++------
 .../dashboard/account/ChangePassword.vue         |  2 +-
 .../components/dashboard/account/UpdateEmail.vue |  2 +-
 .../assets/styles/components/miscellaneous.css   |  7 +++++++
 4 files changed, 19 insertions(+), 8 deletions(-)

diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index 3b481a817..b764dc1c6 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -6,14 +6,18 @@
                 <TwoFactorAuthentication/>
             </modal>
             <flash container="mt-6 mb-2 mx-4"/>
-            <div class="flex">
-                <div class="flex-1 m-4 ml-0">
-                    <update-email class="mb-8"/>
-                    <div class="bg-white p-6 border border-grey-light rounded rounded-1 text-center">
-                        <button class="btn btn-green btn-sm" type="submit" v-on:click="modalVisible = true">Configure 2-Factor Authentication</button>
+            <div class="flex flex-wrap">
+                <div class="w-full md:w-1/2">
+                    <div class="m-4 md:ml-0">
+                        <update-email class="mb-8"/>
+                        <div class="content-box text-center">
+                            <button class="btn btn-green btn-sm" type="submit" v-on:click="modalVisible = true">Configure 2-Factor Authentication</button>
+                        </div>
                     </div>
                 </div>
-                <change-password class="flex-1 m-4 mr-0"/>
+                <div class="w-full md:w-1/2">
+                    <change-password class="m-4 md:mr-0"/>
+                </div>
             </div>
         </div>
     </div>
diff --git a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
index 52ad65a95..c9f8944a7 100644
--- a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
+++ b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
@@ -1,7 +1,7 @@
 <template>
     <div>
         <form action="" method="post">
-            <div class="bg-white p-6 border border-grey-light rounded rounded-1">
+            <div class="content-box">
                 <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
                 <div class="mt-6">
                     <label for="grid-password-current" class="input-label">Current password</label>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index 5ad0089f2..8ff9543a4 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -1,7 +1,7 @@
 <template>
     <div :class>
         <form method="post" v-on:submit.prevent="submitForm">
-            <div class="bg-white p-6 border border-grey-light rounded rounded-1">
+            <div class="content-box">
                 <h2 class="mb-6 text-grey-darkest font-medium">Update your email</h2>
                 <div>
                     <label for="grid-email" class="input-label">Email address</label>
diff --git a/resources/assets/styles/components/miscellaneous.css b/resources/assets/styles/components/miscellaneous.css
index ad52cbbb5..fffc6205e 100644
--- a/resources/assets/styles/components/miscellaneous.css
+++ b/resources/assets/styles/components/miscellaneous.css
@@ -42,6 +42,13 @@ code {
     }
 }
 
+/**
+ * Styling for elements that contain the core page content.
+ */
+.content-box {
+    @apply .bg-white .p-6 .border .border-grey-light .rounded;
+}
+
 /**
  * Flex boxes for server listing on user dashboard.
  */

From 462e59e33072e1018ee45cc0adfd4451c73a2247 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 16:50:18 -0700
Subject: [PATCH 18/62] Make modals look sane on phones

---
 resources/assets/styles/components/modal.css | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/resources/assets/styles/components/modal.css b/resources/assets/styles/components/modal.css
index 5146021eb..9c81e79c1 100644
--- a/resources/assets/styles/components/modal.css
+++ b/resources/assets/styles/components/modal.css
@@ -7,5 +7,14 @@
     @apply .relative .p-8 .bg-white .w-full .max-w-md .m-auto .flex-col .flex;
     transition: all 250ms ease;
     margin-top: 15%;
+
+    /**
+     * On tiny phone screens make sure there is a margin on the sides and also
+     * center the modal rather than putting it towards the top of the screen.
+     */
+    @screen smx {
+      margin-top: auto;
+      width: 90%;
+    }
   }
 }

From 7d509e8ae5efb9f12de98265b8a2175f68b58e1b Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 17:00:35 -0700
Subject: [PATCH 19/62] Remove the glow on inputs in Safari/Chrome

---
 resources/assets/styles/components/forms.css | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/resources/assets/styles/components/forms.css b/resources/assets/styles/components/forms.css
index 5e03a3153..687f1bb59 100644
--- a/resources/assets/styles/components/forms.css
+++ b/resources/assets/styles/components/forms.css
@@ -1,3 +1,7 @@
+textarea, select, input, button {
+    outline: none;
+}
+
 /**
  * Styles for the login form open input boxes. Label floats up above it when content
  * is input and then sinks back down into the field if left empty.
@@ -31,6 +35,9 @@
     transition: transform 200ms ease-out;
 }
 
+/**
+ * Styling for other forms throughout the Panel.
+ */
 .input:not(.open-label) {
     @apply .appearance-none .p-3 .rounded .border .text-grey-darker .w-full;
     transition: all 100ms linear;

From 074a929315d24aace9b01d57db332cd797c33fb8 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 17:05:06 -0700
Subject: [PATCH 20/62] Fix icon size in production compiled assets

---
 resources/assets/scripts/components/core/Navigation.vue | 8 ++++----
 resources/assets/styles/components/navigation.css       | 4 ----
 2 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/resources/assets/scripts/components/core/Navigation.vue b/resources/assets/scripts/components/core/Navigation.vue
index 5939355a4..30df87728 100644
--- a/resources/assets/scripts/components/core/Navigation.vue
+++ b/resources/assets/scripts/components/core/Navigation.vue
@@ -9,22 +9,22 @@
             <ul>
                 <li>
                     <router-link :to="{ name: 'dashboard' }">
-                        <server-icon aria-label="Server dashboard"/>
+                        <server-icon aria-label="Server dashboard" class="h-4"/>
                     </router-link>
                 </li>
                 <li>
                     <router-link :to="{ name: 'account' }">
-                        <user-icon aria-label="Profile management"/>
+                        <user-icon aria-label="Profile management" class="h-4"/>
                     </router-link>
                 </li>
                 <li>
                     <a :href="this.route('admin.index')">
-                        <settings-icon aria-label="Administrative controls"/>
+                        <settings-icon aria-label="Administrative controls" class="h-4"/>
                     </a>
                 </li>
                 <li>
                     <a :href="this.route('auth.logout')" v-on:click.prevent="doLogout">
-                        <log-out-icon aria-label="Sign out"/>
+                        <log-out-icon aria-label="Sign out" class="h-4"/>
                     </a>
                 </li>
             </ul>
diff --git a/resources/assets/styles/components/navigation.css b/resources/assets/styles/components/navigation.css
index 16f0f6dcc..e68326e6e 100644
--- a/resources/assets/styles/components/navigation.css
+++ b/resources/assets/styles/components/navigation.css
@@ -27,10 +27,6 @@
                     &:hover {
                         @apply .bg-blue-dark;
                     }
-
-                    & .feather {
-                        @apply .h-4;
-                    }
                 }
             }
         }

From 941c585c73a0c1aaa711771ea54938ba29139837 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 17:13:03 -0700
Subject: [PATCH 21/62] Fix animations being nuked on production compilation

---
 webpack.config.js | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/webpack.config.js b/webpack.config.js
index 00206a2df..816fba2f0 100644
--- a/webpack.config.js
+++ b/webpack.config.js
@@ -45,6 +45,10 @@ const productionPlugins = [
             path.join(__dirname, 'resources/assets/scripts/**/*.vue'),
             path.join(__dirname, 'resources/themes/pterodactyl/**/*.blade.php'),
         ]),
+        // Don't let PurgeCSS remove classes ending with -enter or -leave-active
+        // They're used by Vue transitions and are therefore not specifically defined
+        // in any of the files are are checked by PurgeCSS.
+        whitelistPatterns: [/-enter$/, /-leave-active$/],
         extractors: [
             {
                 extractor: TailwindExtractor,

From 5c3d3f6ce94159986dc01892d23139cac40d965e Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 16 Jun 2018 18:04:48 -0700
Subject: [PATCH 22/62] Better support for mobile devices on login and account
 pages

---
 .../scripts/components/auth/ForgotPassword.vue       |  2 +-
 .../assets/scripts/components/auth/LoginForm.vue     |  2 +-
 .../assets/scripts/components/auth/TwoFactorForm.vue |  2 +-
 .../assets/scripts/components/dashboard/Account.vue  | 12 ++++++------
 .../assets/styles/components/authentication.css      |  6 ++++++
 .../themes/pterodactyl/templates/auth/core.blade.php |  4 ++--
 .../themes/pterodactyl/templates/base/core.blade.php |  2 +-
 7 files changed, 18 insertions(+), 12 deletions(-)

diff --git a/resources/assets/scripts/components/auth/ForgotPassword.vue b/resources/assets/scripts/components/auth/ForgotPassword.vue
index ce43609da..6f40f2df8 100644
--- a/resources/assets/scripts/components/auth/ForgotPassword.vue
+++ b/resources/assets/scripts/components/auth/ForgotPassword.vue
@@ -1,6 +1,6 @@
 <template>
     <div>
-        <form class="bg-white shadow-lg rounded-lg pt-10 px-8 pb-6 mb-4 animate fadein" method="post"
+        <form class="login-box" method="post"
               v-on:submit.prevent="submitForm"
         >
             <div class="flex flex-wrap -mx-3 mb-6">
diff --git a/resources/assets/scripts/components/auth/LoginForm.vue b/resources/assets/scripts/components/auth/LoginForm.vue
index 59c80cef3..127343546 100644
--- a/resources/assets/scripts/components/auth/LoginForm.vue
+++ b/resources/assets/scripts/components/auth/LoginForm.vue
@@ -1,6 +1,6 @@
 <template>
     <div>
-        <form class="bg-white shadow-lg rounded-lg pt-10 px-8 pb-6 mb-4 animate fadein" method="post"
+        <form class="login-box" method="post"
               v-on:submit.prevent="submitForm"
         >
             <div class="flex flex-wrap -mx-3 mb-6">
diff --git a/resources/assets/scripts/components/auth/TwoFactorForm.vue b/resources/assets/scripts/components/auth/TwoFactorForm.vue
index 94d6de6cb..8c800af2d 100644
--- a/resources/assets/scripts/components/auth/TwoFactorForm.vue
+++ b/resources/assets/scripts/components/auth/TwoFactorForm.vue
@@ -1,5 +1,5 @@
 <template>
-    <form class="bg-white shadow-lg rounded-lg pt-10 px-8 pb-6 mb-4 animate fadein" method="post"
+    <form class="login-box" method="post"
           v-on:submit.prevent="submitToken"
     >
         <div class="flex flex-wrap -mx-3 mb-6">
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index b764dc1c6..8d8aa1dbb 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -1,22 +1,22 @@
 <template>
     <div>
         <navigation/>
-        <div class="container animate fadein mt-6">
+        <div class="container animate fadein mt-2 sm:mt-6">
             <modal :show="modalVisible" v-on:close="modalVisible = false">
                 <TwoFactorAuthentication/>
             </modal>
-            <flash container="mt-6 mb-2 mx-4"/>
+            <flash container="mt-2 sm:mt-6 mb-2 sm:mx-4"/>
             <div class="flex flex-wrap">
                 <div class="w-full md:w-1/2">
-                    <div class="m-4 md:ml-0">
-                        <update-email class="mb-8"/>
-                        <div class="content-box text-center">
+                    <div class="sm:m-4 md:ml-0">
+                        <update-email class="mb-4 sm:mb-8"/>
+                        <div class="content-box text-center mb-4 sm:mb-0">
                             <button class="btn btn-green btn-sm" type="submit" v-on:click="modalVisible = true">Configure 2-Factor Authentication</button>
                         </div>
                     </div>
                 </div>
                 <div class="w-full md:w-1/2">
-                    <change-password class="m-4 md:mr-0"/>
+                    <change-password class="sm:m-4 md:mr-0"/>
                 </div>
             </div>
         </div>
diff --git a/resources/assets/styles/components/authentication.css b/resources/assets/styles/components/authentication.css
index 63111a0d3..1f99a29f7 100644
--- a/resources/assets/styles/components/authentication.css
+++ b/resources/assets/styles/components/authentication.css
@@ -1,3 +1,9 @@
 .login-box {
   @apply .bg-white .shadow-lg .rounded-lg .pt-10 .px-8 .pb-6 .mb-4;
+
+  @screen xsx {
+    @apply .rounded-none;
+    margin-top: 25%;
+    box-shadow: 0 15px 30px 0 rgba(0, 0, 0, .2), 0 -15px 30px 0 rgba(0, 0, 0, .2);
+  }
 }
diff --git a/resources/themes/pterodactyl/templates/auth/core.blade.php b/resources/themes/pterodactyl/templates/auth/core.blade.php
index 58afc4876..2d592b4ee 100644
--- a/resources/themes/pterodactyl/templates/auth/core.blade.php
+++ b/resources/themes/pterodactyl/templates/auth/core.blade.php
@@ -3,8 +3,8 @@
 ])
 
 @section('container')
-    <div class="w-full max-w-xs sm:max-w-sm m-auto mt-8">
-        <div class="text-center">
+    <div class="w-full sm:max-w-sm m-auto mt-8">
+        <div class="text-center hidden sm:block">
             <img src="/favicons/android-chrome-512x512.png" class="max-w-xxs">
         </div>
         <router-view></router-view>
diff --git a/resources/themes/pterodactyl/templates/base/core.blade.php b/resources/themes/pterodactyl/templates/base/core.blade.php
index 14caa41fc..d184663dc 100644
--- a/resources/themes/pterodactyl/templates/base/core.blade.php
+++ b/resources/themes/pterodactyl/templates/base/core.blade.php
@@ -3,7 +3,7 @@
 @section('container')
     <router-view></router-view>
     <div class="w-full m-auto mt-0 container">
-        <p class="text-right text-grey-dark text-xs">
+        <p class="text-center sm:text-right text-grey-dark text-xs">
             {!! trans('strings.copyright', ['year' => date('Y')]) !!}
         </p>
     </div>

From 81da55d46b2dfa4221cfb1fab498523f3763c382 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 17 Jun 2018 15:06:34 -0700
Subject: [PATCH 23/62] Actually fix the endless redirect loop when the
 application needs a fresh JWT.

---
 config/session.php                 | 2 +-
 resources/assets/scripts/router.js | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/config/session.php b/config/session.php
index 4f3a2e6de..2007acb2e 100644
--- a/config/session.php
+++ b/config/session.php
@@ -28,7 +28,7 @@ return [
     |
     */
 
-    'lifetime' => env('SESSION_LIFETIME', 10080),
+    'lifetime' => env('SESSION_LIFETIME', 720),
 
     'expire_on_close' => false,
 
diff --git a/resources/assets/scripts/router.js b/resources/assets/scripts/router.js
index fc86b4a6e..422c8474e 100644
--- a/resources/assets/scripts/router.js
+++ b/resources/assets/scripts/router.js
@@ -60,7 +60,8 @@ router.beforeEach((to, from, next) => {
         // client side without having to wait for older tokens to pass their expiration time if
         // we lower it.
         if (user === null || compareDate(addHours(dateParse(user.getJWT().iat * 1000), 12), new Date()) < 0) {
-            return window.location = route('auth.login');
+            store.commit('auth/logout');
+            return window.location = route('auth.logout');
         }
     }
 

From 0cc895f2d53f05425ff81804222e3caa72e97618 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 17 Jun 2018 16:53:24 -0700
Subject: [PATCH 24/62] Finalize email/password changing in UI

---
 .../Api/Client/AccountController.php          | 30 ++++++--
 .../Client/Account/UpdatePasswordRequest.php  | 39 ++++++++++
 package.json                                  |  6 +-
 resources/assets/scripts/app.js               |  2 +
 .../scripts/components/dashboard/Account.vue  |  2 +-
 .../dashboard/account/ChangePassword.vue      | 72 +++++++++++++++++--
 .../dashboard/account/UpdateEmail.vue         | 15 ++--
 resources/assets/styles/components/forms.css  | 10 ++-
 routes/api-client.php                         |  1 +
 yarn.lock                                     |  4 ++
 10 files changed, 158 insertions(+), 23 deletions(-)
 create mode 100644 app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php

diff --git a/app/Http/Controllers/Api/Client/AccountController.php b/app/Http/Controllers/Api/Client/AccountController.php
index 84ec07e3a..965d01264 100644
--- a/app/Http/Controllers/Api/Client/AccountController.php
+++ b/app/Http/Controllers/Api/Client/AccountController.php
@@ -3,9 +3,11 @@
 namespace Pterodactyl\Http\Controllers\Api\Client;
 
 use Illuminate\Http\Request;
+use Illuminate\Http\Response;
 use Pterodactyl\Services\Users\UserUpdateService;
 use Pterodactyl\Transformers\Api\Client\AccountTransformer;
 use Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest;
+use Pterodactyl\Http\Requests\Api\Client\Account\UpdatePasswordRequest;
 
 class AccountController extends ClientApiController
 {
@@ -38,20 +40,34 @@ class AccountController extends ClientApiController
     }
 
     /**
-     * Update the authenticated user's email address if their password matches.
+     * Update the authenticated user's email address.
      *
      * @param \Pterodactyl\Http\Requests\Api\Client\Account\UpdateEmailRequest $request
-     * @return array
+     * @return \Illuminate\Http\Response
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      */
-    public function updateEmail(UpdateEmailRequest $request): array
+    public function updateEmail(UpdateEmailRequest $request): Response
     {
-        $updated = $this->updateService->handle($request->user(), $request->validated());
+        $this->updateService->handle($request->user(), $request->validated());
 
-        return $this->fractal->item($updated->get('model'))
-            ->transformWith($this->getTransformer(AccountTransformer::class))
-            ->toArray();
+        return response('', Response::HTTP_CREATED);
+    }
+
+    /**
+     * Update the authenticated user's password.
+     *
+     * @param \Pterodactyl\Http\Requests\Api\Client\Account\UpdatePasswordRequest $request
+     * @return \Illuminate\Http\Response
+     *
+     * @throws \Pterodactyl\Exceptions\Model\DataValidationException
+     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
+     */
+    public function updatePassword(UpdatePasswordRequest $request): Response
+    {
+        $this->updateService->handle($request->user(), $request->validated());
+
+        return response('', Response::HTTP_CREATED);
     }
 }
diff --git a/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php b/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php
new file mode 100644
index 000000000..2fe368f8c
--- /dev/null
+++ b/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php
@@ -0,0 +1,39 @@
+<?php
+
+namespace Pterodactyl\Http\Requests\Api\Client\Account;
+
+use Pterodactyl\Models\User;
+use Pterodactyl\Http\Requests\Api\Client\ClientApiRequest;
+use Pterodactyl\Exceptions\Http\Base\InvalidPasswordProvidedException;
+
+class UpdatePasswordRequest extends ClientApiRequest
+{
+    /**
+     * @return bool
+     *
+     * @throws \Pterodactyl\Exceptions\Http\Base\InvalidPasswordProvidedException
+     */
+    public function authorize(): bool
+    {
+        if (! parent::authorize()) {
+            return false;
+        }
+
+        // Verify password matches when changing password or email.
+        if (! password_verify($this->input('current_password'), $this->user()->password)) {
+            throw new InvalidPasswordProvidedException(trans('base.account.invalid_password'));
+        }
+
+        return true;
+    }
+
+    /**
+     * @return array
+     */
+    public function rules(): array
+    {
+        $rules = User::getUpdateRulesForId($this->user()->id);
+
+        return ['password' => array_merge($rules['password'], ['confirmed'])];
+    }
+}
diff --git a/package.json b/package.json
index a727e3fa1..4e672967b 100644
--- a/package.json
+++ b/package.json
@@ -2,6 +2,7 @@
     "name": "pterodactyl-panel",
     "dependencies": {
         "date-fns": "^1.29.0",
+        "vee-validate": "^2.1.0-beta.2",
         "vue": "^2.5.7",
         "vue-axios": "^2.1.1",
         "vue-router": "^3.0.1",
@@ -57,7 +58,8 @@
         "watch": "NODE_ENV=development ./node_modules/.bin/webpack --watch --progress",
         "build": "NODE_ENV=development ./node_modules/.bin/webpack --progress",
         "build:production": "NODE_ENV=production ./node_modules/.bin/webpack",
-        "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --no-clipboard",
-        "v:serve": "PUBLIC_PATH=http://192.168.50.2:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.50.2 --no-clipboard"
+        "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --no-clipboard --progress",
+        "v:serve": "PUBLIC_PATH=http://192.168.50.2:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.50.2 --no-clipboard",
+        "compile:assets": "php artisan vue-i18n:generate & php artisan ziggy:generate resources/assets/scripts/helpers/ziggy.js"
     }
 }
diff --git a/resources/assets/scripts/app.js b/resources/assets/scripts/app.js
index 6048cc5aa..044c392d2 100644
--- a/resources/assets/scripts/app.js
+++ b/resources/assets/scripts/app.js
@@ -2,6 +2,7 @@ import Vue from 'vue';
 import Vuex from 'vuex';
 import vuexI18n from 'vuex-i18n';
 import VueRouter from 'vue-router';
+import VeeValidate from 'vee-validate';
 
 Vue.config.productionTip = false;
 require('./bootstrap');
@@ -19,6 +20,7 @@ window.Ziggy = Ziggy;
 Vue.use(Vuex);
 Vue.use(VueRouter);
 Vue.use(vuexI18n.plugin, store);
+Vue.use(VeeValidate);
 
 const route = require('./../../../vendor/tightenco/ziggy/src/js/route').default;
 
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index 8d8aa1dbb..c40a63b4f 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -5,7 +5,7 @@
             <modal :show="modalVisible" v-on:close="modalVisible = false">
                 <TwoFactorAuthentication/>
             </modal>
-            <flash container="mt-2 sm:mt-6 mb-2 sm:mx-4"/>
+            <flash container="mt-2 sm:mt-6 mb-2"/>
             <div class="flex flex-wrap">
                 <div class="w-full md:w-1/2">
                     <div class="sm:m-4 md:ml-0">
diff --git a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
index c9f8944a7..d5793a07a 100644
--- a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
+++ b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
@@ -1,20 +1,34 @@
 <template>
     <div>
-        <form action="" method="post">
+        <form method="post" v-on:submit.prevent="submitForm">
             <div class="content-box">
                 <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
                 <div class="mt-6">
                     <label for="grid-password-current" class="input-label">Current password</label>
-                    <input id="grid-password-current" name="password" type="password" class="input" required>
+                    <input id="grid-password-current" name="current_password" type="password" class="input" required
+                           ref="current"
+                           v-model="current"
+                    >
                 </div>
                 <div class="mt-6">
                     <label for="grid-password-new" class="input-label">New password</label>
-                    <input id="grid-password-new" name="password" type="password" class="input" required>
-                    <p class="input-help">Your new password should be at least 8 characters in length, contain one number, and be mixed case.</p>
+                    <input id="grid-password-new" name="password" type="password" class="input" required
+                           :class="{ error: errors.has('password') }"
+                           v-model="newPassword"
+                           v-validate="'min:8'"
+                    >
+                    <p class="input-help error" v-show="errors.has('password')">{{ errors.first('password') }}</p>
+                    <p class="input-help">Your new password should be at least 8 characters in length.</p>
                 </div>
                 <div class="mt-6">
                     <label for="grid-password-new-confirm" class="input-label">Confirm new password</label>
-                    <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required>
+                    <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required
+                           :class="{ error: errors.has('password_confirmation') }"
+                           v-model="confirmNew"
+                           v-validate="{is: newPassword}"
+                           data-vv-as="password"
+                    >
+                    <p class="input-help error" v-show="errors.has('password_confirmation')">{{ errors.first('password_confirmation') }}</p>
                 </div>
                 <div class="mt-6 text-right">
                     <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
@@ -25,7 +39,53 @@
 </template>
 
 <script>
+    import isObject from 'lodash/isObject';
+
     export default {
-        name: 'change-password'
+        name: 'change-password',
+        data: function () {
+            return {
+                current: '',
+                newPassword: '',
+                confirmNew: '',
+            };
+        },
+
+        methods: {
+            submitForm: function () {
+                window.axios.put(this.route('api.client.account.update-password'), {
+                    current_password: this.$data.current,
+                    password: this.$data.newPassword,
+                    password_confirmation: this.$data.confirmNew,
+                })
+                    .finally(() => {
+                        this.clearFlashes();
+                        this.$validator.pause();
+                        this.$data.current = '';
+                        this.$refs.current.focus();
+                    })
+                    .then(() => {
+                        this.$data.newPassword = '';
+                        this.$data.confirmNew = '';
+
+                        this.success('Your password has been updated.');
+                    })
+                    .catch(err => {
+                        if (!err.response) {
+                            return console.error(err);
+                        }
+
+                        const response = err.response;
+                        if (response.data && isObject(response.data.errors)) {
+                            response.data.errors.forEach(error => {
+                                this.error(error.detail);
+                            });
+                        }
+                    })
+                    .finally(() => {
+                        this.$validator.resume();
+                    })
+            }
+        }
     };
 </script>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index 8ff9543a4..27a61b8de 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -6,9 +6,11 @@
                 <div>
                     <label for="grid-email" class="input-label">Email address</label>
                     <input id="grid-email" name="email" type="email" class="input" required
-                        v-model="email"
+                           :class="{ error: errors.has('email') }"
+                           v-validate
+                           v-model="email"
                     >
-                    <p class="input-help">If your email is no longer {{ user.email }} enter a new email in the field above.</p>
+                    <p class="input-help error" v-show="errors.has('email')">{{ errors.first('email') }}</p>
                 </div>
                 <div class="mt-6">
                     <label for="grid-password" class="input-label">Password</label>
@@ -25,14 +27,14 @@
 </template>
 
 <script>
-    import isObject from 'lodash/isObject';
+    import { isObject, get } from 'lodash';
     import { mapState, mapActions } from 'vuex';
 
     export default {
         name: 'update-email',
         data: function () {
             return {
-                email: '',
+                email: get(this.$store.state, 'auth.user.email', ''),
                 password: '',
             };
         },
@@ -41,7 +43,6 @@
                 user: state => state.auth.user,
             })
         },
-
         methods: {
             /**
              * Update a user's email address on the Panel.
@@ -52,9 +53,11 @@
                     email: this.$data.email,
                     password: this.$data.password
                 })
+                    .finally(() => {
+                        this.$data.password = '';
+                    })
                     .then(() => {
                         this.success('Your email address has been updated.');
-                        this.$data.password = '';
                     })
                     .catch(error => {
                         if (!error.response) {
diff --git a/resources/assets/styles/components/forms.css b/resources/assets/styles/components/forms.css
index 687f1bb59..ee934c59a 100644
--- a/resources/assets/styles/components/forms.css
+++ b/resources/assets/styles/components/forms.css
@@ -49,12 +49,20 @@ textarea, select, input, button {
     &:required, &:invalid {
         box-shadow: none;
     }
+
+    &.error {
+        @apply .text-red-dark .border-red;
+    }
 }
 
 .input-label {
-    @apply .block .uppercase .tracking-wide .text-grey-darkest .text-xs .font-bold .mb-1;
+    @apply .block .uppercase .tracking-wide .text-grey-darkest .text-xs .font-bold .mb-2;
 }
 
 .input-help {
     @apply .text-xs .text-grey .pt-2;
+
+    &.error {
+        @apply .text-red-dark;
+    }
 }
diff --git a/routes/api-client.php b/routes/api-client.php
index 77aeac295..4c84405c2 100644
--- a/routes/api-client.php
+++ b/routes/api-client.php
@@ -16,6 +16,7 @@ Route::group(['prefix' => '/account'], function () {
     Route::get('/', 'AccountController@index')->name('api.client.account');
 
     Route::put('/email', 'AccountController@updateEmail')->name('api.client.account.update-email');
+    Route::put('/password', 'AccountController@updatePassword')->name('api.client.account.update-password');
 });
 
 /*
diff --git a/yarn.lock b/yarn.lock
index 318e08707..36b084a64 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -6170,6 +6170,10 @@ vary@^1.0.0:
   version "1.1.2"
   resolved "https://registry.yarnpkg.com/vary/-/vary-1.1.2.tgz#2299f02c6ded30d4a5961b0b9f74524a18f634fc"
 
+vee-validate@^2.1.0-beta.2:
+  version "2.1.0-beta.2"
+  resolved "https://registry.yarnpkg.com/vee-validate/-/vee-validate-2.1.0-beta.2.tgz#b4a15f7aa0c4b1a9c78132d649b72a4dd4e2fa61"
+
 vendors@^1.0.0:
   version "1.0.2"
   resolved "https://registry.yarnpkg.com/vendors/-/vendors-1.0.2.tgz#7fcb5eef9f5623b156bcea89ec37d63676f21801"

From 7711b697ada423893d5c26e2e9b051f6ea787674 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 20 Jun 2018 23:05:35 -0700
Subject: [PATCH 25/62] Finalize two-factor handling on account.

---
 .../Controllers/Base/SecurityController.php   |  75 +++----
 app/Services/Users/TwoFactorSetupService.php  |  23 +--
 .../scripts/components/dashboard/Account.vue  |  10 +-
 .../dashboard/account/ChangePassword.vue      |  14 +-
 .../account/TwoFactorAuthentication.vue       | 184 +++++++++++++++++-
 .../dashboard/account/UpdateEmail.vue         |  14 +-
 .../assets/styles/components/buttons.css      |   8 +
 resources/assets/styles/components/forms.css  |  10 +
 .../assets/styles/components/spinners.css     |   4 +-
 resources/lang/en/base.php                    |  31 ---
 resources/lang/en/dashboard/account.php       |  28 +++
 resources/lang/en/strings.php                 |   9 +-
 routes/base.php                               |  26 +--
 13 files changed, 299 insertions(+), 137 deletions(-)
 create mode 100644 resources/lang/en/dashboard/account.php

diff --git a/app/Http/Controllers/Base/SecurityController.php b/app/Http/Controllers/Base/SecurityController.php
index 3bb85a0b5..8b5971418 100644
--- a/app/Http/Controllers/Base/SecurityController.php
+++ b/app/Http/Controllers/Base/SecurityController.php
@@ -3,6 +3,7 @@
 namespace Pterodactyl\Http\Controllers\Base;
 
 use Illuminate\Http\Request;
+use Illuminate\Http\JsonResponse;
 use Prologue\Alerts\AlertsMessageBag;
 use Pterodactyl\Http\Controllers\Controller;
 use Pterodactyl\Services\Users\TwoFactorSetupService;
@@ -62,36 +63,28 @@ class SecurityController extends Controller
     }
 
     /**
-     * Returns Security Management Page.
-     *
-     * @param \Illuminate\Http\Request $request
-     * @return \Illuminate\View\View
-     */
-    public function index(Request $request)
-    {
-        if ($this->config->get('session.driver') === 'database') {
-            $activeSessions = $this->repository->getUserSessions($request->user()->id);
-        }
-
-        return view('base.security', [
-            'sessions' => $activeSessions ?? null,
-        ]);
-    }
-
-    /**
-     * Generates TOTP Secret and returns popup data for user to verify
-     * that they can generate a valid response.
+     * Return information about the user's two-factor authentication status. If not enabled setup their
+     * secret and return information to allow the user to proceede with setup.
      *
      * @param \Illuminate\Http\Request $request
      * @return \Illuminate\Http\JsonResponse
-     *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      */
-    public function generateTotp(Request $request)
+    public function index(Request $request): JsonResponse
     {
-        return response()->json([
-            'qrImage' => $this->twoFactorSetupService->handle($request->user()),
+        if ($request->user()->use_totp) {
+            return JsonResponse::create([
+                'enabled' => true,
+            ]);
+        }
+
+        $response = $this->twoFactorSetupService->handle($request->user());
+
+        return JsonResponse::create([
+            'enabled' => false,
+            'qr_image' => $response->get('image'),
+            'secret' => $response->get('secret'),
         ]);
     }
 
@@ -99,53 +92,43 @@ class SecurityController extends Controller
      * Verifies that 2FA token received is valid and will work on the account.
      *
      * @param \Illuminate\Http\Request $request
-     * @return \Illuminate\Http\Response
+     * @return \Illuminate\Http\JsonResponse
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      */
-    public function setTotp(Request $request)
+    public function store(Request $request): JsonResponse
     {
         try {
             $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '');
-
-            return response('true');
         } catch (TwoFactorAuthenticationTokenInvalid $exception) {
-            return response('false');
+            $error = true;
         }
+
+        return JsonResponse::create([
+            'success' => ! isset($error),
+        ]);
     }
 
     /**
      * Disables TOTP on an account.
      *
      * @param \Illuminate\Http\Request $request
-     * @return \Illuminate\Http\RedirectResponse
+     * @return \Illuminate\Http\JsonResponse
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      */
-    public function disableTotp(Request $request)
+    public function delete(Request $request): JsonResponse
     {
         try {
             $this->toggleTwoFactorService->handle($request->user(), $request->input('token') ?? '', false);
         } catch (TwoFactorAuthenticationTokenInvalid $exception) {
-            $this->alert->danger(trans('base.security.2fa_disable_error'))->flash();
+            $error = true;
         }
 
-        return redirect()->route('account.security');
-    }
-
-    /**
-     * Revokes a user session.
-     *
-     * @param \Illuminate\Http\Request $request
-     * @param string                   $id
-     * @return \Illuminate\Http\RedirectResponse
-     */
-    public function revoke(Request $request, string $id)
-    {
-        $this->repository->deleteUserSession($request->user()->id, $id);
-
-        return redirect()->route('account.security');
+        return JsonResponse::create([
+            'success' => ! isset($error),
+        ]);
     }
 }
diff --git a/app/Services/Users/TwoFactorSetupService.php b/app/Services/Users/TwoFactorSetupService.php
index 4d2ecff8a..6c8de157c 100644
--- a/app/Services/Users/TwoFactorSetupService.php
+++ b/app/Services/Users/TwoFactorSetupService.php
@@ -11,17 +11,12 @@ namespace Pterodactyl\Services\Users;
 
 use Pterodactyl\Models\User;
 use PragmaRX\Google2FA\Google2FA;
+use Illuminate\Support\Collection;
 use Illuminate\Contracts\Encryption\Encrypter;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
-use Illuminate\Contracts\Config\Repository as ConfigRepository;
 
 class TwoFactorSetupService
 {
-    /**
-     * @var \Illuminate\Contracts\Config\Repository
-     */
-    private $config;
-
     /**
      * @var \Illuminate\Contracts\Encryption\Encrypter
      */
@@ -40,18 +35,15 @@ class TwoFactorSetupService
     /**
      * TwoFactorSetupService constructor.
      *
-     * @param \Illuminate\Contracts\Config\Repository                   $config
      * @param \Illuminate\Contracts\Encryption\Encrypter                $encrypter
      * @param \PragmaRX\Google2FA\Google2FA                             $google2FA
      * @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface $repository
      */
     public function __construct(
-        ConfigRepository $config,
         Encrypter $encrypter,
         Google2FA $google2FA,
         UserRepositoryInterface $repository
     ) {
-        $this->config = $config;
         $this->encrypter = $encrypter;
         $this->google2FA = $google2FA;
         $this->repository = $repository;
@@ -62,20 +54,23 @@ class TwoFactorSetupService
      * QR code image.
      *
      * @param \Pterodactyl\Models\User $user
-     * @return string
+     * @return \Illuminate\Support\Collection
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      */
-    public function handle(User $user): string
+    public function handle(User $user): Collection
     {
-        $secret = $this->google2FA->generateSecretKey($this->config->get('pterodactyl.auth.2fa.bytes'));
-        $image = $this->google2FA->getQRCodeGoogleUrl($this->config->get('app.name'), $user->email, $secret);
+        $secret = $this->google2FA->generateSecretKey(config('pterodactyl.auth.2fa.bytes'));
+        $image = $this->google2FA->getQRCodeGoogleUrl(config('app.name'), $user->email, $secret);
 
         $this->repository->withoutFreshModel()->update($user->id, [
             'totp_secret' => $this->encrypter->encrypt($secret),
         ]);
 
-        return $image;
+        return new Collection([
+            'image' => $image,
+            'secret' => $secret,
+        ]);
     }
 }
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index c40a63b4f..0f2d882b7 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -3,7 +3,7 @@
         <navigation/>
         <div class="container animate fadein mt-2 sm:mt-6">
             <modal :show="modalVisible" v-on:close="modalVisible = false">
-                <TwoFactorAuthentication/>
+                <TwoFactorAuthentication v-on:close="modalVisible = false"/>
             </modal>
             <flash container="mt-2 sm:mt-6 mb-2"/>
             <div class="flex flex-wrap">
@@ -11,7 +11,7 @@
                     <div class="sm:m-4 md:ml-0">
                         <update-email class="mb-4 sm:mb-8"/>
                         <div class="content-box text-center mb-4 sm:mb-0">
-                            <button class="btn btn-green btn-sm" type="submit" v-on:click="modalVisible = true">Configure 2-Factor Authentication</button>
+                            <button class="btn btn-green btn-sm" type="submit" v-on:click="openModal">Configure 2-Factor Authentication</button>
                         </div>
                     </div>
                 </div>
@@ -39,5 +39,11 @@
                 modalVisible: false,
             };
         },
+        methods: {
+            openModal: function () {
+                this.$data.modalVisible = true;
+                window.events.$emit('two_factor:open');
+            },
+        }
     };
 </script>
diff --git a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
index d5793a07a..02b2f2e71 100644
--- a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
+++ b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
@@ -2,26 +2,26 @@
     <div>
         <form method="post" v-on:submit.prevent="submitForm">
             <div class="content-box">
-                <h2 class="mb-6 text-grey-darkest font-medium">Change your password</h2>
+                <h2 class="mb-6 text-grey-darkest font-medium">{{ $t('dashboard.account.password.title') }}</h2>
                 <div class="mt-6">
-                    <label for="grid-password-current" class="input-label">Current password</label>
+                    <label for="grid-password-current" class="input-label">{{ $t('strings.password') }}</label>
                     <input id="grid-password-current" name="current_password" type="password" class="input" required
                            ref="current"
                            v-model="current"
                     >
                 </div>
                 <div class="mt-6">
-                    <label for="grid-password-new" class="input-label">New password</label>
+                    <label for="grid-password-new" class="input-label">{{ $t('strings.new_password') }}</label>
                     <input id="grid-password-new" name="password" type="password" class="input" required
                            :class="{ error: errors.has('password') }"
                            v-model="newPassword"
                            v-validate="'min:8'"
                     >
                     <p class="input-help error" v-show="errors.has('password')">{{ errors.first('password') }}</p>
-                    <p class="input-help">Your new password should be at least 8 characters in length.</p>
+                    <p class="input-help">{{ $t('dashboard.account.password.requirements') }}</p>
                 </div>
                 <div class="mt-6">
-                    <label for="grid-password-new-confirm" class="input-label">Confirm new password</label>
+                    <label for="grid-password-new-confirm" class="input-label">{{ $t('strings.confirm_password') }}</label>
                     <input id="grid-password-new-confirm" name="password_confirmation" type="password" class="input" required
                            :class="{ error: errors.has('password_confirmation') }"
                            v-model="confirmNew"
@@ -31,7 +31,7 @@
                     <p class="input-help error" v-show="errors.has('password_confirmation')">{{ errors.first('password_confirmation') }}</p>
                 </div>
                 <div class="mt-6 text-right">
-                    <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
+                    <button class="btn btn-blue btn-sm text-right" type="submit">{{ $t('strings.save') }}</button>
                 </div>
             </div>
         </form>
@@ -68,7 +68,7 @@
                         this.$data.newPassword = '';
                         this.$data.confirmNew = '';
 
-                        this.success('Your password has been updated.');
+                        this.success(this.$t('dashboard.account.password.updated'));
                     })
                     .catch(err => {
                         if (!err.response) {
diff --git a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
index 6899e305b..a6b8b38da 100644
--- a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
+++ b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
@@ -1,11 +1,191 @@
 <template>
     <div>
-        Todo: put the 2FA magic here!
+        <div class="h-16 text-center" v-show="spinner">
+            <span class="spinner spinner-xl text-blue"></span>
+        </div>
+        <div v-if="response.enabled" v-show="!spinner">
+            <h2 class="font-medium text-grey-darkest">{{ $t('dashboard.account.two_factor.disable.title') }}</h2>
+            <div class="mt-6">
+                <label class="input-label" for="grid-two-factor-token-disable">{{ $t('dashboard.account.two_factor.disable.field') }}</label>
+                <input id="grid-two-factor-token-disable" type="number" class="input"
+                       name="token"
+                       v-model="token"
+                       ref="token"
+                       v-validate="'length:6'"
+                       :class="{ error: errors.has('token') }"
+                >
+                <p class="input-help error" v-show="errors.has('token')">{{ errors.first('token') }}</p>
+            </div>
+            <div class="mt-6 w-full text-right">
+                <button class="btn btn-sm btn-secondary mr-4" v-on:click="$emit('close')">
+                    Cancel
+                </button>
+                <button class="btn btn-sm btn-red" type="submit"
+                        :disabled="submitDisabled"
+                        v-on:click.prevent="disableTwoFactor"
+                >{{ $t('strings.disable') }}</button>
+            </div>
+        </div>
+        <div v-else v-show="!spinner">
+            <h2 class="font-medium text-grey-darkest">{{ $t('dashboard.account.two_factor.setup.title') }}</h2>
+            <div class="flex mt-6">
+                <div class="flex-none w-full sm:w-1/2 text-center">
+                    <div>
+                        <img :src="response.qr_image" alt="Two-factor qr image" class="w-3/4">
+                    </div>
+                    <div>
+                        <p class="text-xs text-grey-darker mb-2">{{ $t('dashboard.account.two_factor.setup.help') }}</p>
+                        <p class="text-xs"><code>{{response.secret}}</code></p>
+                    </div>
+                </div>
+                <div class="flex-none w-full sm:w-1/2">
+                    <div>
+                        <label class="input-label" for="grid-two-factor-token">{{ $t('dashboard.account.two_factor.setup.field') }}</label>
+                        <input id="grid-two-factor-token" type="number" class="input"
+                               name="token"
+                               v-model="token"
+                               ref="token"
+                               v-validate="'length:6'"
+                               :class="{ error: errors.has('token') }"
+                        >
+                        <p class="input-help error" v-show="errors.has('token')">{{ errors.first('token') }}</p>
+                    </div>
+                    <div class="mt-6">
+                        <button class="btn btn-blue btn-jumbo" type="submit"
+                                :disabled="submitDisabled"
+                                v-on:click.prevent="enableTwoFactor"
+                        >{{ $t('strings.enable') }}</button>
+                    </div>
+                </div>
+            </div>
+        </div>
     </div>
 </template>
 
 <script>
+    import Vue from 'vue';
+    import isObject from 'lodash/isObject';
+
     export default {
-        name: 'TwoFactorAuthentication'
+        name: 'TwoFactorAuthentication',
+        data: function () {
+            return {
+                spinner: true,
+                token: '',
+                submitDisabled: true,
+                response: {
+                    enabled: false,
+                    qr_image: '',
+                    secret: '',
+                },
+            };
+        },
+
+        /**
+         * Before the component is mounted setup the event listener. This event is fired when a user
+         * presses the 'Configure 2-Factor' button on their account page. Once this happens we fire off
+         * a HTTP request to get their information.
+         */
+        mounted: function () {
+            window.events.$on('two_factor:open', () => {
+                this.prepareModalContent();
+            });
+        },
+
+        watch: {
+            token: function (value) {
+                this.$data.submitDisabled = value.length !== 6;
+            },
+        },
+
+        methods: {
+            /**
+             * Determine the correct content to show in the modal.
+             */
+            prepareModalContent: function () {
+                // Reset the data object when the modal is opened again.
+                Object.assign(this.$data, this.$options.data());
+
+                window.axios.get(this.route('account.two_factor'))
+                    .finally(() => {
+                        this.clearFlashes();
+                    })
+                    .then(response => {
+                        this.$data.response = response.data;
+                        this.$data.spinner = false;
+                        Vue.nextTick().then(() => {
+                            this.$refs.token.focus();
+                        })
+                    })
+                    .catch(error => {
+                        if (!error.response) {
+                            this.error(error.message);
+                        }
+
+                        const response = error.response;
+                        if (response.data && isObject(response.data.errors)) {
+                            response.data.errors.forEach(e => {
+                                this.error(e.detail);
+                            });
+                        }
+
+                        this.$emit('close');
+                    });
+            },
+
+            /**
+             * Enable two-factor authentication on the account by validating the token provided by the user.
+             * Close the modal once the request completes so that the success or error message can be shown
+             * to the user.
+             */
+            enableTwoFactor: function () {
+                return this._callInternalApi('account.two_factor.enable', 'enabled');
+            },
+
+            /**
+             * Disables two-factor authentication for the client account and closes the modal.
+             */
+            disableTwoFactor: function () {
+                return this._callInternalApi('account.two_factor.disable', 'disabled');
+            },
+
+            /**
+             * Call the Panel API endpoint and handle errors.
+             *
+             * @param {String} route
+             * @param {String} langKey
+             * @private
+             */
+            _callInternalApi: function (route, langKey) {
+                window.axios.post(this.route(route), {
+                    token: this.$data.token,
+                })
+                    .finally(() => {
+                        this.clearFlashes();
+                    })
+                    .then(response => {
+                        if (response.data.success) {
+                            this.success(this.$t(`dashboard.account.two_factor.${langKey}`));
+                        } else {
+                            this.error(this.$t('dashboard.account.two_factor.invalid'));
+                        }
+                    })
+                    .catch(error => {
+                        if (!error.response) {
+                            this.error(error.message);
+                        }
+
+                        const response = error.response;
+                        if (response.data && isObject(response.data.errors)) {
+                            response.data.errors.forEach(e => {
+                                this.error(e.detail);
+                            });
+                        }
+                    })
+                    .finally(() => {
+                        this.$emit('close');
+                    })
+            }
+        },
     };
 </script>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index 27a61b8de..b3e0de476 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -2,9 +2,9 @@
     <div :class>
         <form method="post" v-on:submit.prevent="submitForm">
             <div class="content-box">
-                <h2 class="mb-6 text-grey-darkest font-medium">Update your email</h2>
+                <h2 class="mb-6 text-grey-darkest font-medium">{{ $t('dashboard.account.email.title') }}</h2>
                 <div>
-                    <label for="grid-email" class="input-label">Email address</label>
+                    <label for="grid-email" class="input-label">{{ $t('strings.email_address') }}</label>
                     <input id="grid-email" name="email" type="email" class="input" required
                            :class="{ error: errors.has('email') }"
                            v-validate
@@ -13,13 +13,13 @@
                     <p class="input-help error" v-show="errors.has('email')">{{ errors.first('email') }}</p>
                 </div>
                 <div class="mt-6">
-                    <label for="grid-password" class="input-label">Password</label>
+                    <label for="grid-password" class="input-label">{{ $t('strings.password') }}</label>
                     <input id="grid-password" name="password" type="password" class="input" required
                         v-model="password"
                     >
                 </div>
                 <div class="mt-6 text-right">
-                    <button class="btn btn-blue btn-sm text-right" type="submit">Save</button>
+                    <button class="btn btn-blue btn-sm text-right" type="submit">{{ $t('strings.save') }}</button>
                 </div>
             </div>
         </form>
@@ -57,7 +57,7 @@
                         this.$data.password = '';
                     })
                     .then(() => {
-                        this.success('Your email address has been updated.');
+                        this.success(this.$t('dashboard.account.email.updated'));
                     })
                     .catch(error => {
                         if (!error.response) {
@@ -79,7 +79,3 @@
         }
     };
 </script>
-
-<style scoped>
-
-</style>
diff --git a/resources/assets/styles/components/buttons.css b/resources/assets/styles/components/buttons.css
index 733efc0a5..085d5d067 100644
--- a/resources/assets/styles/components/buttons.css
+++ b/resources/assets/styles/components/buttons.css
@@ -20,6 +20,14 @@
     }
   }
 
+  &.btn-red {
+    @apply .bg-red .border-red-dark .border .text-white;
+
+    &:hover:enabled {
+      @apply .bg-red-dark .border-red-darker;
+    }
+  }
+
   &.btn-secondary {
     @apply .border .border-grey-light .text-grey-dark;
 
diff --git a/resources/assets/styles/components/forms.css b/resources/assets/styles/components/forms.css
index ee934c59a..85fe6cf64 100644
--- a/resources/assets/styles/components/forms.css
+++ b/resources/assets/styles/components/forms.css
@@ -2,6 +2,16 @@ textarea, select, input, button {
     outline: none;
 }
 
+input[type=number]::-webkit-outer-spin-button,
+input[type=number]::-webkit-inner-spin-button {
+    -webkit-appearance: none !important;
+    margin: 0;
+}
+
+input[type=number] {
+    -moz-appearance: textfield !important;
+}
+
 /**
  * Styles for the login form open input boxes. Label floats up above it when content
  * is input and then sinks back down into the field if left empty.
diff --git a/resources/assets/styles/components/spinners.css b/resources/assets/styles/components/spinners.css
index b509c5a4c..d55c8e350 100644
--- a/resources/assets/styles/components/spinners.css
+++ b/resources/assets/styles/components/spinners.css
@@ -31,11 +31,11 @@
   /**
    * Spinner Colors
    */
-  &.blue:after {
+  &.blue:after, &.text-blue:after {
     @apply .border-blue;
   }
 
-  &.white:after {
+  &.white:after, &.text-white:after {
     @apply .border-white;
   }
 
diff --git a/resources/lang/en/base.php b/resources/lang/en/base.php
index 01ac79b1e..2646dc4f1 100644
--- a/resources/lang/en/base.php
+++ b/resources/lang/en/base.php
@@ -54,35 +54,4 @@ return [
             ],
         ],
     ],
-    'account' => [
-        'details_updated' => 'Your account details have been successfully updated.',
-        'invalid_password' => 'The password provided for your account was not valid.',
-        'header' => 'Your Account',
-        'header_sub' => 'Manage your account details.',
-        'update_pass' => 'Update Password',
-        'update_email' => 'Update Email Address',
-        'current_password' => 'Current Password',
-        'new_password' => 'New Password',
-        'new_password_again' => 'Repeat New Password',
-        'new_email' => 'New Email Address',
-        'first_name' => 'First Name',
-        'last_name' => 'Last Name',
-        'update_identity' => 'Update Identity',
-        'username_help' => 'Your username must be unique to your account, and may only contain the following characters: :requirements.',
-    ],
-    'security' => [
-        'session_mgmt_disabled' => 'Your host has not enabled the ability to manage account sessions via this interface.',
-        'header' => 'Account Security',
-        'header_sub' => 'Control active sessions and 2-Factor Authentication.',
-        'sessions' => 'Active Sessions',
-        '2fa_header' => '2-Factor Authentication',
-        '2fa_token_help' => 'Enter the 2FA Token generated by your app (Google Authenticator, Authy, etc.).',
-        'disable_2fa' => 'Disable 2-Factor Authentication',
-        '2fa_enabled' => '2-Factor Authentication is enabled on this account and will be required in order to login to the panel. If you would like to disable 2FA, simply enter a valid token below and submit the form.',
-        '2fa_disabled' => '2-Factor Authentication is disabled on your account! You should enable 2FA in order to add an extra level of protection on your account.',
-        'enable_2fa' => 'Enable 2-Factor Authentication',
-        '2fa_qr' => 'Configure 2FA on Your Device',
-        '2fa_checkpoint_help' => 'Use the 2FA application on your phone to take a picture of the QR code to the left, or manually enter the code under it. Once you have done so, generate a token and enter it below.',
-        '2fa_disable_error' => 'The 2FA token provided was not valid. Protection has not been disabled for this account.',
-    ],
 ];
diff --git a/resources/lang/en/dashboard/account.php b/resources/lang/en/dashboard/account.php
new file mode 100644
index 000000000..85411ef65
--- /dev/null
+++ b/resources/lang/en/dashboard/account.php
@@ -0,0 +1,28 @@
+<?php
+
+return [
+    'email' => [
+        'title' => 'Update your email',
+        'updated' => 'Your email address has been updated.',
+    ],
+    'password' => [
+        'title' => 'Change your password',
+        'requirements' => 'Your new password should be at least 8 characters in length.',
+        'updated' => 'Your password has been updated.',
+    ],
+    'two_factor' => [
+        'button' => 'Configure 2-Factor Authentication',
+        'disabled' => 'Two-factor authentication has been disabled on your account. You will no longer be prompted to provide a token when logging in.',
+        'enabled' => 'Two-factor authentication has been enabled on your account! From now on, when logging in, you will be required to provide the code generated by your device.',
+        'invalid' => 'The token provided was invalid.',
+        'setup' => [
+            'title' => 'Setup two-factor authentication',
+            'help' => 'Can\'t scan the code? Enter the code below into your application:',
+            'field' => 'Enter token',
+        ],
+        'disable' => [
+            'title' => 'Disable two-factor authentication',
+            'field' => 'Enter token',
+        ],
+    ],
+];
diff --git a/resources/lang/en/strings.php b/resources/lang/en/strings.php
index ebdd60d23..c9fbb6349 100644
--- a/resources/lang/en/strings.php
+++ b/resources/lang/en/strings.php
@@ -2,9 +2,11 @@
 
 return [
     'email' => 'Email',
+    'email_address' => 'Email address',
     'user_identifier' => 'Username or Email',
     'password' => 'Password',
-    'confirm_password' => 'Confirm Password',
+    'new_password' => 'New password',
+    'confirm_password' => 'Confirm new password',
     'login' => 'Login',
     'home' => 'Home',
     'servers' => 'Servers',
@@ -85,7 +87,8 @@ return [
         'sat' => 'Saturday',
     ],
     'last_used' => 'Last Used',
-
-    // Copyright Line
+    'enable' => 'Enable',
+    'disable' => 'Disable',
+    'save' => 'Save',
     'copyright' => '&copy; 2015 - :year Pterodactyl Software',
 ];
diff --git a/routes/base.php b/routes/base.php
index 4c8faa333..3dc1aa672 100644
--- a/routes/base.php
+++ b/routes/base.php
@@ -1,11 +1,5 @@
 <?php
-/**
- * Pterodactyl - Panel
- * Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.
- *
- * This software is licensed under the terms of the MIT license.
- * https://opensource.org/licenses/MIT
- */
+
 Route::get('/', 'IndexController@index')->name('index');
 
 /*
@@ -16,11 +10,6 @@ Route::get('/', 'IndexController@index')->name('index');
 | Endpoint: /account
 |
 */
-//Route::group(['prefix' => 'account'], function () {
-//    Route::get('/', 'AccountController@index')->name('account');
-//
-//    Route::post('/', 'AccountController@update');
-//});
 
 /*
 |--------------------------------------------------------------------------
@@ -47,15 +36,10 @@ Route::group(['prefix' => 'account/api'], function () {
 | Endpoint: /account/security
 |
 */
-Route::group(['prefix' => 'account/security'], function () {
-    Route::get('/', 'SecurityController@index')->name('account.security');
-    Route::get('/revoke/{id}', 'SecurityController@revoke')->name('account.security.revoke');
-
-    Route::put('/totp', 'SecurityController@generateTotp')->name('account.security.totp');
-
-    Route::post('/totp', 'SecurityController@setTotp')->name('account.security.totp.set');
-
-    Route::delete('/totp', 'SecurityController@disableTotp')->name('account.security.totp.disable');
+Route::group(['prefix' => 'account/two_factor'], function () {
+    Route::get('/', 'SecurityController@index')->name('account.two_factor');
+    Route::post('/totp', 'SecurityController@store')->name('account.two_factor.enable');
+    Route::post('/totp/disable', 'SecurityController@delete')->name('account.two_factor.disable');
 });
 
 // Catch any other combinations of routes and pass them off to the Vuejs component.

From ad9ed5ea0049e9fd267648b5cafddd3b7123a6f5 Mon Sep 17 00:00:00 2001
From: Stan <stan@gabes.nl>
Date: Sat, 30 Jun 2018 22:23:48 +0200
Subject: [PATCH 26/62] Fixed the permission (#1217)

---
 CHANGELOG.md                                          | 1 +
 resources/themes/pterodactyl/layouts/master.blade.php | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 27eca5765..5b1142c87 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -11,6 +11,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 ### Fixed
 * Hitting Ctrl+Z when editing a file on the web now works as expected.
 * Logo now links to the correct location on all pages.
+* Permissions checking to determine if a user can see the task management page now works correctly.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/resources/themes/pterodactyl/layouts/master.blade.php b/resources/themes/pterodactyl/layouts/master.blade.php
index 644cb5bca..15d88b96b 100644
--- a/resources/themes/pterodactyl/layouts/master.blade.php
+++ b/resources/themes/pterodactyl/layouts/master.blade.php
@@ -146,7 +146,7 @@
                                     </a>
                                 </li>
                             @endcan
-                            @can('list-tasks', $server)
+                            @can('list-schedules', $server)
                                 <li
                                     @if(starts_with(Route::currentRouteName(), 'server.schedules'))
                                         class="active"

From bad9ae58e84bb37c2775b4ca1917b8ff57b2a07a Mon Sep 17 00:00:00 2001
From: Sergzy <Sergzy@users.noreply.github.com>
Date: Sat, 30 Jun 2018 22:25:40 +0200
Subject: [PATCH 27/62] Fix environment_variables name (#1212)

---
 CHANGELOG.md                                           | 1 +
 app/Services/Servers/EnvironmentService.php            | 2 +-
 tests/Unit/Services/Servers/EnvironmentServiceTest.php | 2 +-
 3 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 5b1142c87..0e397ace2 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -12,6 +12,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 * Hitting Ctrl+Z when editing a file on the web now works as expected.
 * Logo now links to the correct location on all pages.
 * Permissions checking to determine if a user can see the task management page now works correctly.
+* Fixed `pterodactyl.environment_variables` to be used correctly for global environment variables. The wrong config variable name was being using previously.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/app/Services/Servers/EnvironmentService.php b/app/Services/Servers/EnvironmentService.php
index 85eb69bb8..b17076e07 100644
--- a/app/Services/Servers/EnvironmentService.php
+++ b/app/Services/Servers/EnvironmentService.php
@@ -78,7 +78,7 @@ class EnvironmentService
         }
 
         // Process variables set in the configuration file.
-        foreach ($this->config->get('pterodactyl.environment_mappings', []) as $key => $object) {
+        foreach ($this->config->get('pterodactyl.environment_variables', []) as $key => $object) {
             if (is_callable($object)) {
                 $variables[$key] = call_user_func($object, $server);
             } else {
diff --git a/tests/Unit/Services/Servers/EnvironmentServiceTest.php b/tests/Unit/Services/Servers/EnvironmentServiceTest.php
index 0f7000209..acce1c683 100644
--- a/tests/Unit/Services/Servers/EnvironmentServiceTest.php
+++ b/tests/Unit/Services/Servers/EnvironmentServiceTest.php
@@ -12,7 +12,7 @@ use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
 
 class EnvironmentServiceTest extends TestCase
 {
-    const CONFIG_MAPPING = 'pterodactyl.environment_mappings';
+    const CONFIG_MAPPING = 'pterodactyl.environment_variables';
 
     /**
      * @var \Illuminate\Contracts\Config\Repository|\Mockery\Mock

From 1da05a2ee26b917efa3e470103e3ac89dfc55faa Mon Sep 17 00:00:00 2001
From: Matthew Penner <me@matthewp.io>
Date: Sat, 30 Jun 2018 14:25:51 -0600
Subject: [PATCH 28/62] Fix typo (#1210)

---
 .../themes/pterodactyl/admin/servers/view/delete.blade.php      | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/themes/pterodactyl/admin/servers/view/delete.blade.php b/resources/themes/pterodactyl/admin/servers/view/delete.blade.php
index ec1ccaebe..ec33ef037 100644
--- a/resources/themes/pterodactyl/admin/servers/view/delete.blade.php
+++ b/resources/themes/pterodactyl/admin/servers/view/delete.blade.php
@@ -62,7 +62,7 @@
                 <h3 class="box-title">Force Delete Server</h3>
             </div>
             <div class="box-body">
-                <p>This action will attempt to delete the server from both the panel and daemon. The the daemon does not respond, or reports an error the deletion will continue.</p>
+                <p>This action will attempt to delete the server from both the panel and daemon. If the daemon does not respond, or reports an error the deletion will continue.</p>
                 <p class="text-danger small">Deleting a server is an irreversible action. <strong>All server data</strong> (including files and users) will be removed from the system. This method may leave dangling files on your daemon if it reports an error.</p>
             </div>
             <div class="box-footer">

From 974318ffb4ed276db2c51b5fbd2e69f0032f03db Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 17:50:58 -0700
Subject: [PATCH 29/62] Logout other sessions when password is changed

closes #1222
---
 CHANGELOG.md                                  |  1 +
 .../Controllers/Base/AccountController.php    | 34 +++++++++++++------
 app/Http/Kernel.php                           |  2 ++
 .../Base/AccountControllerTest.php            | 22 +++++++++---
 4 files changed, 45 insertions(+), 14 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0e397ace2..c8459c46f 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -16,6 +16,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
+* Changing your account password will now log out all other sessions that currently exist for that user.
 
 ## v0.7.7 (Derelict Dermodactylus)
 ### Fixed
diff --git a/app/Http/Controllers/Base/AccountController.php b/app/Http/Controllers/Base/AccountController.php
index b6a433bb4..90d590ff2 100644
--- a/app/Http/Controllers/Base/AccountController.php
+++ b/app/Http/Controllers/Base/AccountController.php
@@ -3,7 +3,9 @@
 namespace Pterodactyl\Http\Controllers\Base;
 
 use Pterodactyl\Models\User;
+use Illuminate\Auth\AuthManager;
 use Prologue\Alerts\AlertsMessageBag;
+use Illuminate\Contracts\Session\Session;
 use Pterodactyl\Http\Controllers\Controller;
 use Pterodactyl\Services\Users\UserUpdateService;
 use Pterodactyl\Http\Requests\Base\AccountDataFormRequest;
@@ -15,6 +17,11 @@ class AccountController extends Controller
      */
     protected $alert;
 
+    /**
+     * @var \Illuminate\Auth\SessionGuard
+     */
+    protected $sessionGuard;
+
     /**
      * @var \Pterodactyl\Services\Users\UserUpdateService
      */
@@ -24,12 +31,14 @@ class AccountController extends Controller
      * AccountController constructor.
      *
      * @param \Prologue\Alerts\AlertsMessageBag             $alert
+     * @param \Illuminate\Auth\AuthManager                  $authManager
      * @param \Pterodactyl\Services\Users\UserUpdateService $updateService
      */
-    public function __construct(AlertsMessageBag $alert, UserUpdateService $updateService)
+    public function __construct(AlertsMessageBag $alert, AuthManager $authManager, UserUpdateService $updateService)
     {
         $this->alert = $alert;
         $this->updateService = $updateService;
+        $this->sessionGuard = $authManager->guard();
     }
 
     /**
@@ -50,21 +59,26 @@ class AccountController extends Controller
      *
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
-     * @throws \Pterodactyl\Exceptions\Http\Connection\DaemonConnectionException
      */
     public function update(AccountDataFormRequest $request)
     {
-        $data = [];
+        // Prevent logging this specific session out when the password is changed. This will
+        // automatically update the user's password anyways, so no need to do anything else here.
         if ($request->input('do_action') === 'password') {
-            $data['password'] = $request->input('new_password');
-        } elseif ($request->input('do_action') === 'email') {
-            $data['email'] = $request->input('new_email');
-        } elseif ($request->input('do_action') === 'identity') {
-            $data = $request->only(['name_first', 'name_last', 'username']);
+            $this->sessionGuard->logoutOtherDevices($request->input('new_password'));
+        } else {
+            if ($request->input('do_action') === 'email') {
+                $data = ['email' => $request->input('new_email')];
+            } elseif ($request->input('do_action') === 'identity') {
+                $data = $request->only(['name_first', 'name_last', 'username']);
+            } else {
+                $data = [];
+            }
+
+            $this->updateService->setUserLevel(User::USER_LEVEL_USER);
+            $this->updateService->handle($request->user(), $data);
         }
 
-        $this->updateService->setUserLevel(User::USER_LEVEL_USER);
-        $this->updateService->handle($request->user(), $data);
         $this->alert->success(trans('base.account.details_updated'))->flash();
 
         return redirect()->route('account');
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index 404c40ae9..5a5b9d2b4 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -19,6 +19,7 @@ use Pterodactyl\Http\Middleware\Api\AuthenticateKey;
 use Illuminate\Routing\Middleware\SubstituteBindings;
 use Pterodactyl\Http\Middleware\AccessingValidServer;
 use Pterodactyl\Http\Middleware\Api\SetSessionDriver;
+use Illuminate\Session\Middleware\AuthenticateSession;
 use Illuminate\View\Middleware\ShareErrorsFromSession;
 use Pterodactyl\Http\Middleware\MaintenanceMiddleware;
 use Pterodactyl\Http\Middleware\RedirectIfAuthenticated;
@@ -64,6 +65,7 @@ class Kernel extends HttpKernel
             EncryptCookies::class,
             AddQueuedCookiesToResponse::class,
             StartSession::class,
+            AuthenticateSession::class,
             ShareErrorsFromSession::class,
             VerifyCsrfToken::class,
             SubstituteBindings::class,
diff --git a/tests/Unit/Http/Controllers/Base/AccountControllerTest.php b/tests/Unit/Http/Controllers/Base/AccountControllerTest.php
index 968019ad7..2b3fc674a 100644
--- a/tests/Unit/Http/Controllers/Base/AccountControllerTest.php
+++ b/tests/Unit/Http/Controllers/Base/AccountControllerTest.php
@@ -4,6 +4,8 @@ namespace Tests\Unit\Http\Controllers\Base;
 
 use Mockery as m;
 use Pterodactyl\Models\User;
+use Illuminate\Auth\AuthManager;
+use Illuminate\Auth\SessionGuard;
 use Prologue\Alerts\AlertsMessageBag;
 use Pterodactyl\Services\Users\UserUpdateService;
 use Tests\Unit\Http\Controllers\ControllerTestCase;
@@ -17,6 +19,16 @@ class AccountControllerTest extends ControllerTestCase
      */
     protected $alert;
 
+    /**
+     * @var \Illuminate\Auth\AuthManager|\Mockery\Mock
+     */
+    protected $authManager;
+
+    /**
+     * @var \Illuminate\Auth\SessionGuard|\Mockery\Mock
+     */
+    protected $sessionGuard;
+
     /**
      * @var \Pterodactyl\Services\Users\UserUpdateService|\Mockery\Mock
      */
@@ -31,6 +43,10 @@ class AccountControllerTest extends ControllerTestCase
 
         $this->alert = m::mock(AlertsMessageBag::class);
         $this->updateService = m::mock(UserUpdateService::class);
+        $this->authManager = m::mock(AuthManager::class);
+        $this->sessionGuard = m::mock(SessionGuard::class);
+
+        $this->authManager->shouldReceive('guard')->once()->andReturn($this->sessionGuard);
     }
 
     /**
@@ -50,13 +66,11 @@ class AccountControllerTest extends ControllerTestCase
     public function testUpdateControllerForPassword()
     {
         $this->setRequestMockClass(AccountDataFormRequest::class);
-        $user = $this->generateRequestUserModel();
 
         $this->request->shouldReceive('input')->with('do_action')->andReturn('password');
         $this->request->shouldReceive('input')->with('new_password')->once()->andReturn('test-password');
+        $this->sessionGuard->shouldReceive('logoutOtherDevices')->once()->with('test-password')->andReturnSelf();
 
-        $this->updateService->shouldReceive('setUserLevel')->with(User::USER_LEVEL_USER)->once()->andReturnNull();
-        $this->updateService->shouldReceive('handle')->with($user, ['password' => 'test-password'])->once()->andReturn(collect());
         $this->alert->shouldReceive('success->flash')->once()->andReturnNull();
 
         $response = $this->getController()->update($this->request);
@@ -113,6 +127,6 @@ class AccountControllerTest extends ControllerTestCase
      */
     private function getController(): AccountController
     {
-        return new AccountController($this->alert, $this->updateService);
+        return new AccountController($this->alert, $this->authManager, $this->updateService);
     }
 }

From 5a97f5401339f43b8419eb9d4d1958f773b6a000 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 17:55:41 -0700
Subject: [PATCH 30/62] Try concurrent build process for travis

---
 .travis.yml | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/.travis.yml b/.travis.yml
index 4ed53fd7f..7eb6bfb5e 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,5 +1,11 @@
 language: php
 dist: trusty
+git:
+  depth: 3
+  quiet: true
+env:
+  - TEST_SUITE=Unit
+  - TEST_SUITE=Integration
 php:
   - 7.2
 sudo: false
@@ -15,8 +21,8 @@ before_script:
   - cp .env.travis .env
   - travis_retry composer install --no-interaction --prefer-dist --no-suggest
 script:
-  - vendor/bin/phpunit --bootstrap vendor/autoload.php --coverage-clover coverage.xml tests/Unit
-  - vendor/bin/phpunit tests/Integration
+  - if [ "$TEST_SUITE" = "Unit" ]; then vendor/bin/phpunit --bootstrap vendor/autoload.php --coverage-clover coverage.xml tests/Unit; fi;
+  - if [ "$TEST_SUITE" = "Integration" ]; then vendor/bin/phpunit tests/Integration; fi;
 notifications:
   email: false
   webhooks:

From 59730dcbc917e2e27a3bfa047b92300f7c9726bb Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 18:01:23 -0700
Subject: [PATCH 31/62] Speed up tests, allow coverage to fail since thats a
 slow process

---
 .travis.yml | 13 ++++++++++---
 1 file changed, 10 insertions(+), 3 deletions(-)

diff --git a/.travis.yml b/.travis.yml
index 7eb6bfb5e..ff915fa1e 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -3,9 +3,15 @@ dist: trusty
 git:
   depth: 3
   quiet: true
+matrix:
+  fast_finish: true
+  allow_failures:
+    - env: TEST_SUITE=Coverage
 env:
-  - TEST_SUITE=Unit
-  - TEST_SUITE=Integration
+  matrix:
+    - TEST_SUITE=Unit
+    - TEST_SUITE=Coverage
+    - TEST_SUITE=Integration
 php:
   - 7.2
 sudo: false
@@ -21,7 +27,8 @@ before_script:
   - cp .env.travis .env
   - travis_retry composer install --no-interaction --prefer-dist --no-suggest
 script:
-  - if [ "$TEST_SUITE" = "Unit" ]; then vendor/bin/phpunit --bootstrap vendor/autoload.php --coverage-clover coverage.xml tests/Unit; fi;
+  - if [ "$TEST_SUITE" = "Unit" ]; then vendor/bin/phpunit --bootstrap vendor/autoload.php tests/Unit; fi;
+  - if [ "$TEST_SUITE" = "Coverage" ]; then vendor/bin/phpunit --bootstrap vendor/autoload.php --coverage-clover coverage.xml tests/Unit; fi;
   - if [ "$TEST_SUITE" = "Integration" ]; then vendor/bin/phpunit tests/Integration; fi;
 notifications:
   email: false

From 96699b192e4d97411417aae947a011059db8092a Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 18:24:35 -0700
Subject: [PATCH 32/62] Don't verify SSL signatures in dev

[skip ci]
---
 app/Repositories/Daemon/BaseRepository.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app/Repositories/Daemon/BaseRepository.php b/app/Repositories/Daemon/BaseRepository.php
index e15b17ce1..186b5917d 100644
--- a/app/Repositories/Daemon/BaseRepository.php
+++ b/app/Repositories/Daemon/BaseRepository.php
@@ -144,6 +144,7 @@ abstract class BaseRepository implements BaseRepositoryInterface
         $headers['X-Access-Token'] = $this->getToken() ?? $this->getNode()->daemonSecret;
 
         return new Client([
+            'verify' => config('app.env') === 'production',
             'base_uri' => sprintf('%s://%s:%s/v1/', $this->getNode()->scheme, $this->getNode()->fqdn, $this->getNode()->daemonListen),
             'timeout' => config('pterodactyl.guzzle.timeout'),
             'connect_timeout' => config('pterodactyl.guzzle.connect_timeout'),

From 304d94753618a38dc66382e5e629ac253fb142ef Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 18:25:46 -0700
Subject: [PATCH 33/62] Allow creating subuser with no permissions

---
 CHANGELOG.md                                                 | 1 +
 app/Http/Controllers/Server/SubuserController.php            | 3 +--
 app/Http/Requests/Server/Subuser/SubuserStoreFormRequest.php | 2 +-
 app/Services/Subusers/PermissionCreationService.php          | 4 +++-
 tests/Unit/Http/Controllers/Server/SubuserControllerTest.php | 2 +-
 5 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c8459c46f..0876656bb 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -17,6 +17,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
 * Changing your account password will now log out all other sessions that currently exist for that user.
+* Subusers with no permissions selected can be created.
 
 ## v0.7.7 (Derelict Dermodactylus)
 ### Fixed
diff --git a/app/Http/Controllers/Server/SubuserController.php b/app/Http/Controllers/Server/SubuserController.php
index b507bbb45..008cfeaa5 100644
--- a/app/Http/Controllers/Server/SubuserController.php
+++ b/app/Http/Controllers/Server/SubuserController.php
@@ -157,7 +157,6 @@ class SubuserController extends Controller
      * @return \Illuminate\Http\RedirectResponse
      *
      * @throws \Exception
-     * @throws \Illuminate\Auth\Access\AuthorizationException
      * @throws \Pterodactyl\Exceptions\Model\DataValidationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      * @throws \Pterodactyl\Exceptions\Service\Subuser\ServerSubuserExistsException
@@ -171,7 +170,7 @@ class SubuserController extends Controller
         $this->alert->success(trans('server.users.user_assigned'))->flash();
 
         return redirect()->route('server.subusers.view', [
-            'uuid' => $server->uuid,
+            'uuid' => $server->uuidShort,
             'id' => $subuser->hashid,
         ]);
     }
diff --git a/app/Http/Requests/Server/Subuser/SubuserStoreFormRequest.php b/app/Http/Requests/Server/Subuser/SubuserStoreFormRequest.php
index 0ada01675..9b7c6ce4d 100644
--- a/app/Http/Requests/Server/Subuser/SubuserStoreFormRequest.php
+++ b/app/Http/Requests/Server/Subuser/SubuserStoreFormRequest.php
@@ -25,7 +25,7 @@ class SubuserStoreFormRequest extends ServerFormRequest
     {
         return [
             'email' => 'required|email',
-            'permissions' => 'present|array',
+            'permissions' => 'sometimes|array',
         ];
     }
 }
diff --git a/app/Services/Subusers/PermissionCreationService.php b/app/Services/Subusers/PermissionCreationService.php
index 0173e8015..074048f0a 100644
--- a/app/Services/Subusers/PermissionCreationService.php
+++ b/app/Services/Subusers/PermissionCreationService.php
@@ -56,6 +56,8 @@ class PermissionCreationService
             }
         }
 
-        $this->repository->withoutFreshModel()->insert($insertPermissions);
+        if (! empty($insertPermissions)) {
+            $this->repository->withoutFreshModel()->insert($insertPermissions);
+        }
     }
 }
diff --git a/tests/Unit/Http/Controllers/Server/SubuserControllerTest.php b/tests/Unit/Http/Controllers/Server/SubuserControllerTest.php
index f9b550cfc..ab3088198 100644
--- a/tests/Unit/Http/Controllers/Server/SubuserControllerTest.php
+++ b/tests/Unit/Http/Controllers/Server/SubuserControllerTest.php
@@ -182,7 +182,7 @@ class SubuserControllerTest extends ControllerTestCase
         $response = $controller->store($this->request);
         $this->assertIsRedirectResponse($response);
         $this->assertRedirectRouteEquals('server.subusers.view', $response, [
-            'uuid' => $server->uuid,
+            'uuid' => $server->uuidShort,
             'id' => $subuser->hashid,
         ]);
     }

From d2bc791d748e9eb0c1d3af862543b5564b57db37 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 18:47:31 -0700
Subject: [PATCH 34/62] Fix links sent to users when accounts are created

closes #1093
---
 CHANGELOG.md                                  |  1 +
 app/Notifications/AccountCreated.php          |  4 +-
 .../Helpers/TemporaryPasswordService.php      | 59 ------------------
 app/Services/Users/UserCreationService.php    | 18 +++---
 .../Helpers/TemporaryPasswordServiceTest.php  | 62 -------------------
 .../Users/UserCreationServiceTest.php         | 12 ++--
 6 files changed, 20 insertions(+), 136 deletions(-)
 delete mode 100644 app/Services/Helpers/TemporaryPasswordService.php
 delete mode 100644 tests/Unit/Services/Helpers/TemporaryPasswordServiceTest.php

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0876656bb..1d3e3f19d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -13,6 +13,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 * Logo now links to the correct location on all pages.
 * Permissions checking to determine if a user can see the task management page now works correctly.
 * Fixed `pterodactyl.environment_variables` to be used correctly for global environment variables. The wrong config variable name was being using previously.
+* Fixes tokens being sent to users when their account is created to actually work. Implements Laravel's internal token creation mechanisms rather than trying to do it custom.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/app/Notifications/AccountCreated.php b/app/Notifications/AccountCreated.php
index 29b084d5e..7dd258dd4 100644
--- a/app/Notifications/AccountCreated.php
+++ b/app/Notifications/AccountCreated.php
@@ -23,7 +23,7 @@ class AccountCreated extends Notification implements ShouldQueue
     /**
      * The user model for the created user.
      *
-     * @var object
+     * @var \Pterodactyl\Models\User
      */
     public $user;
 
@@ -65,7 +65,7 @@ class AccountCreated extends Notification implements ShouldQueue
             ->line('Email: ' . $this->user->email);
 
         if (! is_null($this->token)) {
-            return $message->action('Setup Your Account', url('/auth/password/reset/' . $this->token . '?email=' . $this->user->email));
+            return $message->action('Setup Your Account', url('/auth/password/reset/' . $this->token . '?email=' . urlencode($this->user->email)));
         }
 
         return $message;
diff --git a/app/Services/Helpers/TemporaryPasswordService.php b/app/Services/Helpers/TemporaryPasswordService.php
deleted file mode 100644
index c9ccfa5df..000000000
--- a/app/Services/Helpers/TemporaryPasswordService.php
+++ /dev/null
@@ -1,59 +0,0 @@
-<?php
-/**
- * Pterodactyl - Panel
- * Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>.
- *
- * This software is licensed under the terms of the MIT license.
- * https://opensource.org/licenses/MIT
- */
-
-namespace Pterodactyl\Services\Helpers;
-
-use Ramsey\Uuid\Uuid;
-use Illuminate\Contracts\Hashing\Hasher;
-use Illuminate\Database\ConnectionInterface;
-
-class TemporaryPasswordService
-{
-    const HMAC_ALGO = 'sha256';
-
-    /**
-     * @var \Illuminate\Database\ConnectionInterface
-     */
-    protected $connection;
-
-    /**
-     * @var \Illuminate\Contracts\Hashing\Hasher
-     */
-    protected $hasher;
-
-    /**
-     * TemporaryPasswordService constructor.
-     *
-     * @param \Illuminate\Database\ConnectionInterface $connection
-     * @param \Illuminate\Contracts\Hashing\Hasher     $hasher
-     */
-    public function __construct(ConnectionInterface $connection, Hasher $hasher)
-    {
-        $this->connection = $connection;
-        $this->hasher = $hasher;
-    }
-
-    /**
-     * Store a password reset token for a specific email address.
-     *
-     * @param string $email
-     * @return string
-     */
-    public function handle($email)
-    {
-        $token = hash_hmac(self::HMAC_ALGO, Uuid::uuid4()->toString(), config('app.key'));
-
-        $this->connection->table('password_resets')->insert([
-            'email' => $email,
-            'token' => $this->hasher->make($token),
-        ]);
-
-        return $token;
-    }
-}
diff --git a/app/Services/Users/UserCreationService.php b/app/Services/Users/UserCreationService.php
index f4824e48b..b54c4f2de 100644
--- a/app/Services/Users/UserCreationService.php
+++ b/app/Services/Users/UserCreationService.php
@@ -5,8 +5,8 @@ namespace Pterodactyl\Services\Users;
 use Ramsey\Uuid\Uuid;
 use Illuminate\Contracts\Hashing\Hasher;
 use Illuminate\Database\ConnectionInterface;
+use Illuminate\Contracts\Auth\PasswordBroker;
 use Pterodactyl\Notifications\AccountCreated;
-use Pterodactyl\Services\Helpers\TemporaryPasswordService;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 
 class UserCreationService
@@ -22,9 +22,9 @@ class UserCreationService
     private $hasher;
 
     /**
-     * @var \Pterodactyl\Services\Helpers\TemporaryPasswordService
+     * @var \Illuminate\Contracts\Auth\PasswordBroker
      */
-    private $passwordService;
+    private $passwordBroker;
 
     /**
      * @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface
@@ -36,18 +36,18 @@ class UserCreationService
      *
      * @param \Illuminate\Database\ConnectionInterface                  $connection
      * @param \Illuminate\Contracts\Hashing\Hasher                      $hasher
-     * @param \Pterodactyl\Services\Helpers\TemporaryPasswordService    $passwordService
+     * @param \Illuminate\Contracts\Auth\PasswordBroker                 $passwordBroker
      * @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface $repository
      */
     public function __construct(
         ConnectionInterface $connection,
         Hasher $hasher,
-        TemporaryPasswordService $passwordService,
+        PasswordBroker $passwordBroker,
         UserRepositoryInterface $repository
     ) {
         $this->connection = $connection;
         $this->hasher = $hasher;
-        $this->passwordService = $passwordService;
+        $this->passwordBroker = $passwordBroker;
         $this->repository = $repository;
     }
 
@@ -68,8 +68,8 @@ class UserCreationService
 
         $this->connection->beginTransaction();
         if (! isset($data['password']) || empty($data['password'])) {
+            $generateResetToken = true;
             $data['password'] = $this->hasher->make(str_random(30));
-            $token = $this->passwordService->handle($data['email']);
         }
 
         /** @var \Pterodactyl\Models\User $user */
@@ -77,6 +77,10 @@ class UserCreationService
             'uuid' => Uuid::uuid4()->toString(),
         ]), true, true);
 
+        if (isset($generateResetToken)) {
+            $token = $this->passwordBroker->createToken($user);
+        }
+
         $this->connection->commit();
         $user->notify(new AccountCreated($user, $token ?? null));
 
diff --git a/tests/Unit/Services/Helpers/TemporaryPasswordServiceTest.php b/tests/Unit/Services/Helpers/TemporaryPasswordServiceTest.php
deleted file mode 100644
index 2d8b6dbe5..000000000
--- a/tests/Unit/Services/Helpers/TemporaryPasswordServiceTest.php
+++ /dev/null
@@ -1,62 +0,0 @@
-<?php
-
-namespace Tests\Unit\Services\Helpers;
-
-use Mockery as m;
-use Tests\TestCase;
-use Tests\Traits\MocksUuids;
-use Illuminate\Contracts\Hashing\Hasher;
-use Illuminate\Database\ConnectionInterface;
-use Pterodactyl\Services\Helpers\TemporaryPasswordService;
-
-class TemporaryPasswordServiceTest extends TestCase
-{
-    use MocksUuids;
-
-    /**
-     * @var \Illuminate\Database\ConnectionInterface|\Mockery\Mock
-     */
-    protected $connection;
-
-    /**
-     * @var \Illuminate\Contracts\Hashing\Hasher|\Mockery\Mock
-     */
-    protected $hasher;
-
-    /**
-     * @var \Pterodactyl\Services\Helpers\TemporaryPasswordService
-     */
-    protected $service;
-
-    /**
-     * Setup tests.
-     */
-    public function setUp()
-    {
-        parent::setUp();
-
-        $this->connection = m::mock(ConnectionInterface::class);
-        $this->hasher = m::mock(Hasher::class);
-
-        $this->service = new TemporaryPasswordService($this->connection, $this->hasher);
-    }
-
-    /**
-     * Test that a temporary password is stored and the token is returned.
-     */
-    public function testTemporaryPasswordIsStored()
-    {
-        $token = hash_hmac(TemporaryPasswordService::HMAC_ALGO, $this->getKnownUuid(), config('app.key'));
-
-        $this->hasher->shouldReceive('make')->with($token)->once()->andReturn('hashed_token');
-        $this->connection->shouldReceive('table')->with('password_resets')->once()->andReturnSelf();
-        $this->connection->shouldReceive('insert')->with([
-            'email' => 'test@example.com',
-            'token' => 'hashed_token',
-        ])->once()->andReturnNull();
-
-        $response = $this->service->handle('test@example.com');
-        $this->assertNotEmpty($response);
-        $this->assertEquals($token, $response);
-    }
-}
diff --git a/tests/Unit/Services/Users/UserCreationServiceTest.php b/tests/Unit/Services/Users/UserCreationServiceTest.php
index 4012dc655..25219b70a 100644
--- a/tests/Unit/Services/Users/UserCreationServiceTest.php
+++ b/tests/Unit/Services/Users/UserCreationServiceTest.php
@@ -9,9 +9,9 @@ use Tests\Traits\MocksUuids;
 use Illuminate\Contracts\Hashing\Hasher;
 use Illuminate\Database\ConnectionInterface;
 use Illuminate\Support\Facades\Notification;
+use Illuminate\Contracts\Auth\PasswordBroker;
 use Pterodactyl\Notifications\AccountCreated;
 use Pterodactyl\Services\Users\UserCreationService;
-use Pterodactyl\Services\Helpers\TemporaryPasswordService;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 
 class UserCreationServiceTest extends TestCase
@@ -29,9 +29,9 @@ class UserCreationServiceTest extends TestCase
     private $hasher;
 
     /**
-     * @var \Pterodactyl\Services\Helpers\TemporaryPasswordService|\Mockery\Mock
+     * @var \Illuminate\Contracts\Auth\PasswordBroker|\Mockery\Mock
      */
-    private $passwordService;
+    private $passwordBroker;
 
     /**
      * @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface|\Mockery\Mock
@@ -48,7 +48,7 @@ class UserCreationServiceTest extends TestCase
         Notification::fake();
         $this->connection = m::mock(ConnectionInterface::class);
         $this->hasher = m::mock(Hasher::class);
-        $this->passwordService = m::mock(TemporaryPasswordService::class);
+        $this->passwordBroker = m::mock(PasswordBroker::class);
         $this->repository = m::mock(UserRepositoryInterface::class);
     }
 
@@ -121,7 +121,7 @@ class UserCreationServiceTest extends TestCase
         $this->hasher->shouldNotReceive('make');
         $this->connection->shouldReceive('beginTransaction')->withNoArgs()->once()->andReturnNull();
         $this->hasher->shouldReceive('make')->once()->andReturn('created-enc-password');
-        $this->passwordService->shouldReceive('handle')->with($user->email)->once()->andReturn('random-token');
+        $this->passwordBroker->shouldReceive('createToken')->with($user)->once()->andReturn('random-token');
 
         $this->repository->shouldReceive('create')->with([
             'password' => 'created-enc-password',
@@ -152,6 +152,6 @@ class UserCreationServiceTest extends TestCase
      */
     private function getService(): UserCreationService
     {
-        return new UserCreationService($this->connection, $this->hasher, $this->passwordService, $this->repository);
+        return new UserCreationService($this->connection, $this->hasher, $this->passwordBroker, $this->repository);
     }
 }

From 1df3efdfb00ce557218dfdcb195a740448d23579 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 30 Jun 2018 18:52:32 -0700
Subject: [PATCH 35/62] Fix eggs (#1224)

---
 CHANGELOG.md                                      |  1 +
 .../seeds/eggs/minecraft/egg-forge-minecraft.json | 13 +++++++++++--
 .../eggs/minecraft/egg-vanilla-minecraft.json     | 10 +++++-----
 .../egg-counter--strike--global-offensive.json    | 15 ++++++++++++---
 .../seeds/eggs/source-engine/egg-garrys-mod.json  | 13 +++++++++++--
 5 files changed, 40 insertions(+), 12 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 1d3e3f19d..d814408f5 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 * Permissions checking to determine if a user can see the task management page now works correctly.
 * Fixed `pterodactyl.environment_variables` to be used correctly for global environment variables. The wrong config variable name was being using previously.
 * Fixes tokens being sent to users when their account is created to actually work. Implements Laravel's internal token creation mechanisms rather than trying to do it custom.
+* Updates some eggs to ensure they have the correct data and will continue working down the road. Fixes autoupdating on some source servers and MC related download links.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/database/seeds/eggs/minecraft/egg-forge-minecraft.json b/database/seeds/eggs/minecraft/egg-forge-minecraft.json
index 731d8844c..11be0aefb 100644
--- a/database/seeds/eggs/minecraft/egg-forge-minecraft.json
+++ b/database/seeds/eggs/minecraft/egg-forge-minecraft.json
@@ -3,7 +3,7 @@
     "meta": {
         "version": "PTDL_v1"
     },
-    "exported_at": "2018-02-27T00:57:04-06:00",
+    "exported_at": "2018-06-25T15:47:07-04:00",
     "name": "Forge Minecraft",
     "author": "support@pterodactyl.io",
     "description": "Minecraft Forge Server. Minecraft Forge is a modding API (Application Programming Interface), which makes it easier to create mods, and also make sure mods are compatible with each other.",
@@ -17,7 +17,7 @@
     },
     "scripts": {
         "installation": {
-            "script": "#!\/bin\/ash\r\n# Forge Installation Script\r\n#\r\n# Server Files: \/mnt\/server\r\napk update\r\napk add curl\r\n\r\nGET_VERSIONS=$(curl -sl http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/ | grep -A1 Latest | grep  -o -e '[1]\\.[0-9][0-9]]\\?\\.\\?[0-9]\\?[0-9] - [0-9][0-9]\\.[0-9][0-9]\\.[0-9]\\?[0-9]\\.[0-9][0-9][0-9][0-9]')\r\nLATEST_VERSION=$(echo $GET_VERSIONS | sed 's\/ \/\/g')\r\n\r\ncd \/mnt\/server\r\n\r\ncurl -sS http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/$LATEST_VERSION\/forge-$LATEST_VERSION-installer.jar -o installer.jar\r\ncurl -sS http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/$LATEST_VERSION\/forge-$LATEST_VERSION-universal.jar -o server.jar\r\n\r\njava -jar installer.jar --installServer\r\nrm -rf installer.jar",
+            "script": "#!\/bin\/ash\r\n# Forge Installation Script\r\n#\r\n# Server Files: \/mnt\/server\r\napk update\r\napk add curl\r\n\r\nif [ -z \"$MC_VERSION\" ] || [ \"$MC_VERSION\" == \"latest\" ]; then\r\n  FORGE_VERSION=$(curl -sl http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/ | grep -A1 Latest | grep  -o -e '[1]\\.[0-9][0-9]]\\?\\.\\?[0-9]\\?[0-9] - [0-9][0-9]\\.[0-9][0-9]\\.[0-9]\\?[0-9]\\.[0-9][0-9][0-9][0-9]' | sed 's\/ \/\/g')\r\nelse\r\n  FORGE_VERSION=$(curl -sl http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/index_$MC_VERSION.html | grep -A1 Latest | grep  -o -e '[1]\\.[0-9][0-9]]\\?\\.\\?[0-9]\\?[0-9] - [0-9][0-9]\\.[0-9][0-9]\\.[0-9]\\?[0-9]\\.[0-9][0-9][0-9][0-9]' | sed 's\/ \/\/g')\r\nfi\r\n\r\ncd \/mnt\/server\r\n\r\necho -e \"\\nDownloading Forge Version $FORGE_VERSION\\n\"\r\ncurl -sS http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/$FORGE_VERSION\/forge-$FORGE_VERSION-installer.jar -o installer.jar\r\ncurl -sS http:\/\/files.minecraftforge.net\/maven\/net\/minecraftforge\/forge\/$FORGE_VERSION\/forge-$FORGE_VERSION-universal.jar -o $SERVER_JARFILE\r\n\r\necho -e \"\\nInstalling forge server usint the installer jar file.\\n\"\r\njava -jar installer.jar --installServer\r\n\r\necho -e \"\\nDeleting installer jar file and cleaning up.\\n\"\r\nrm -rf installer.jar",
             "container": "frolvlad\/alpine-oraclejdk8:cleaned",
             "entrypoint": "ash"
         }
@@ -31,6 +31,15 @@
             "user_viewable": 1,
             "user_editable": 1,
             "rules": "required|regex:\/^([\\w\\d._-]+)(\\.jar)$\/"
+        },
+        {
+            "name": "Minecraft version",
+            "description": "The version of minecraft that you want to run. Example (1.10.2).",
+            "env_variable": "MC_VERSION",
+            "default_value": "latest",
+            "user_viewable": 1,
+            "user_editable": 1,
+            "rules": "required|string|max:20"
         }
     ]
 }
diff --git a/database/seeds/eggs/minecraft/egg-vanilla-minecraft.json b/database/seeds/eggs/minecraft/egg-vanilla-minecraft.json
index 3d87b1fa2..3c71a6b2b 100644
--- a/database/seeds/eggs/minecraft/egg-vanilla-minecraft.json
+++ b/database/seeds/eggs/minecraft/egg-vanilla-minecraft.json
@@ -3,7 +3,7 @@
     "meta": {
         "version": "PTDL_v1"
     },
-    "exported_at": "2017-11-03T22:15:07-05:00",
+    "exported_at": "2018-06-19T17:09:18-04:00",
     "name": "Vanilla Minecraft",
     "author": "support@pterodactyl.io",
     "description": "Minecraft is a game about placing blocks and going on adventures. Explore randomly generated worlds and build amazing things from the simplest of homes to the grandest of castles. Play in Creative Mode with unlimited resources or mine deep in Survival Mode, crafting weapons and armor to fend off dangerous mobs. Do all this alone or with friends.",
@@ -17,8 +17,8 @@
     },
     "scripts": {
         "installation": {
-            "script": "#!\/bin\/ash\r\n# Vanilla MC Installation Script\r\n#\r\n# Server Files: \/mnt\/server\r\napk update\r\napk add curl\r\n\r\ncd \/mnt\/server\r\n\r\nLATEST_VERSION=`curl -s https:\/\/s3.amazonaws.com\/Minecraft.Download\/versions\/versions.json | grep -o \"[[:digit:]]\\.[0-9]*\\.[0-9]\" | head -n 1`\r\n\r\nif [ -z \"$VANILLA_VERSION\" ] || [ \"$VANILLA_VERSION\" == \"latest\" ]; then\r\n  DL_VERSION=$LATEST_VERSION\r\nelse\r\n  DL_VERSION=$VANILLA_VERSION\r\nfi\r\n\r\ncurl -o ${SERVER_JARFILE} https:\/\/s3.amazonaws.com\/Minecraft.Download\/versions\/${DL_VERSION}\/minecraft_server.${DL_VERSION}.jar",
-            "container": "alpine:3.4",
+            "script": "#!\/bin\/ash\r\n# Vanilla MC Installation Script\r\n#\r\n# Server Files: \/mnt\/server\r\napk update\r\napk add curl jq\r\n\r\ncd \/mnt\/server\r\n\r\nLATEST_VERSION=`curl https:\/\/launchermeta.mojang.com\/mc\/game\/version_manifest.json | jq -r '.latest.release'`\r\n\r\nif [ -z \"$VANILLA_VERSION\" ] || [ \"$VANILLA_VERSION\" == \"latest\" ]; then\r\n  MANIFEST_URL=$(curl https:\/\/launchermeta.mojang.com\/mc\/game\/version_manifest.json | jq .versions | jq -r '.[] | select(.id == \"'$LATEST_VERSION'\") | .url')\r\nelse\r\n  MANIFEST_URL=$(curl https:\/\/launchermeta.mojang.com\/mc\/game\/version_manifest.json | jq .versions | jq -r '.[] | select(.id == \"'$VANILLA_VERSION'\") | .url')\r\nfi\r\n\r\nDOWNLOAD_URL=`curl $MANIFEST_URL | jq .downloads.server | jq -r '. | .url'`\r\n\r\ncurl -o ${SERVER_JARFILE} $DOWNLOAD_URL",
+            "container": "alpine:3.7",
             "entrypoint": "ash"
         }
     },
@@ -39,7 +39,7 @@
             "default_value": "latest",
             "user_viewable": 1,
             "user_editable": 1,
-            "rules": "required|string|between:3,7"
+            "rules": "required|string|between:3,15"
         }
     ]
-}
\ No newline at end of file
+}
diff --git a/database/seeds/eggs/source-engine/egg-counter--strike--global-offensive.json b/database/seeds/eggs/source-engine/egg-counter--strike--global-offensive.json
index 3c1ae8e56..ad9210256 100644
--- a/database/seeds/eggs/source-engine/egg-counter--strike--global-offensive.json
+++ b/database/seeds/eggs/source-engine/egg-counter--strike--global-offensive.json
@@ -3,7 +3,7 @@
     "meta": {
         "version": "PTDL_v1"
     },
-    "exported_at": "2018-01-21T16:59:47-06:00",
+    "exported_at": "2018-06-19T07:46:06-04:00",
     "name": "Counter-Strike: Global Offensive",
     "author": "support@pterodactyl.io",
     "description": "Counter-Strike: Global Offensive is a multiplayer first-person shooter video game developed by Hidden Path Entertainment and Valve Corporation.",
@@ -11,7 +11,7 @@
     "startup": ".\/srcds_run -game csgo -console -port {{SERVER_PORT}} +ip 0.0.0.0 +map {{SRCDS_MAP}} -strictportbind -norestart +sv_setsteamaccount {{STEAM_ACC}}",
     "config": {
         "files": "{}",
-        "startup": "{\r\n    \"done\": \"gameserver Steam ID\",\r\n    \"userInteraction\": []\r\n}",
+        "startup": "{\r\n    \"done\": \"Connection to Steam servers successful\",\r\n    \"userInteraction\": []\r\n}",
         "logs": "{\r\n    \"custom\": true,\r\n    \"location\": \"logs\/latest.log\"\r\n}",
         "stop": "quit"
     },
@@ -40,6 +40,15 @@
             "user_viewable": 1,
             "user_editable": 1,
             "rules": "required|string|alpha_num|size:32"
+        },
+        {
+            "name": "Source AppID",
+            "description": "Required for game to update on server restart. Do not modify this.",
+            "env_variable": "SRCDS_APPID",
+            "default_value": "740",
+            "user_viewable": 0,
+            "user_editable": 0,
+            "rules": "required|string|max:20"
         }
     ]
-}
\ No newline at end of file
+}
diff --git a/database/seeds/eggs/source-engine/egg-garrys-mod.json b/database/seeds/eggs/source-engine/egg-garrys-mod.json
index c8f3ebb84..0bfdc0a07 100644
--- a/database/seeds/eggs/source-engine/egg-garrys-mod.json
+++ b/database/seeds/eggs/source-engine/egg-garrys-mod.json
@@ -3,7 +3,7 @@
     "meta": {
         "version": "PTDL_v1"
     },
-    "exported_at": "2018-01-21T16:59:47-06:00",
+    "exported_at": "2018-06-19T07:46:27-04:00",
     "name": "Garrys Mod",
     "author": "support@pterodactyl.io",
     "description": "Garrys Mod, is a sandbox physics game created by Garry Newman, and developed by his company, Facepunch Studios.",
@@ -40,6 +40,15 @@
             "user_viewable": 1,
             "user_editable": 1,
             "rules": "required|string|alpha_num|size:32"
+        },
+        {
+            "name": "Source AppID",
+            "description": "Required for game to update on server restart. Do not modify this.",
+            "env_variable": "SRCDS_APPID",
+            "default_value": "4020",
+            "user_viewable": 0,
+            "user_editable": 0,
+            "rules": "required|string|max:20"
         }
     ]
-}
\ No newline at end of file
+}

From b6d18b0a364737be8b4d550ba8e32d8fc00df873 Mon Sep 17 00:00:00 2001
From: Isaac A <isaacalich8401@gmail.com>
Date: Sun, 1 Jul 2018 16:47:00 -0400
Subject: [PATCH 36/62] Add support for authentication via Unix socket (#1206)

Co-authored-by: @tenten8401
---
 CHANGELOG.md        | 1 +
 config/database.php | 1 +
 2 files changed, 2 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d814408f5..8138b4021 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -7,6 +7,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 ### Added
 * Nodes can now be put into maintenance mode to deny access to servers temporarily.
 * Basic statistics about your panel are now available in the Admin CP.
+* Added support for using a MySQL socket location for connections rather than a TCP connection. Set a `DB_SOCKET` variable in your `.env` file to use this.
 
 ### Fixed
 * Hitting Ctrl+Z when editing a file on the web now works as expected.
diff --git a/config/database.php b/config/database.php
index 7d09275df..63b0b9cb6 100644
--- a/config/database.php
+++ b/config/database.php
@@ -34,6 +34,7 @@ return [
         'mysql' => [
             'driver' => 'mysql',
             'host' => env('DB_HOST', '127.0.0.1'),
+            'unix_socket' => env('DB_SOCKET'),
             'port' => env('DB_PORT', '3306'),
             'database' => env('DB_DATABASE', 'panel'),
             'username' => env('DB_USERNAME', 'pterodactyl'),

From eeb4d88cbdd8c619f19489c069ecf7068fcaba4f Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 1 Jul 2018 13:50:55 -0700
Subject: [PATCH 37/62] Disable codecov failing PRs

---
 codecov.yml | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/codecov.yml b/codecov.yml
index 0bcc79196..f173c829e 100644
--- a/codecov.yml
+++ b/codecov.yml
@@ -1,8 +1,6 @@
 coverage:
   status:
-    project:
-      default:
-        target: 35
-        threshold: 1
+    project: off
+    patch: off
 comment:
   layout: "diff"

From 1ffb5acfad7fa2fc0f4445170063238b34b58e98 Mon Sep 17 00:00:00 2001
From: Stan <stan@gabes.nl>
Date: Sun, 1 Jul 2018 23:34:40 +0200
Subject: [PATCH 38/62] Send an email when a server is marked as installed
 (#1213)

Co-authored-by: @stanjg
---
 CHANGELOG.md                                  |  1 +
 app/Contracts/Core/ReceivesEvents.php         | 15 ++++
 app/Events/Server/Installed.php               | 27 ++++++++
 .../Controllers/Daemon/ActionController.php   | 22 ++++++
 app/Listeners/.gitkeep                        |  0
 app/Notifications/ServerInstalled.php         | 69 +++++++++++++++++++
 app/Providers/EventServiceProvider.php        |  8 ++-
 7 files changed, 141 insertions(+), 1 deletion(-)
 create mode 100644 app/Contracts/Core/ReceivesEvents.php
 create mode 100644 app/Events/Server/Installed.php
 delete mode 100644 app/Listeners/.gitkeep
 create mode 100644 app/Notifications/ServerInstalled.php

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8138b4021..382ba1bb8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -16,6 +16,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 * Fixed `pterodactyl.environment_variables` to be used correctly for global environment variables. The wrong config variable name was being using previously.
 * Fixes tokens being sent to users when their account is created to actually work. Implements Laravel's internal token creation mechanisms rather than trying to do it custom.
 * Updates some eggs to ensure they have the correct data and will continue working down the road. Fixes autoupdating on some source servers and MC related download links.
+* Emails should send properly now when a server is marked as installed to let the owner know it is ready for action.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/app/Contracts/Core/ReceivesEvents.php b/app/Contracts/Core/ReceivesEvents.php
new file mode 100644
index 000000000..a6c1aa10f
--- /dev/null
+++ b/app/Contracts/Core/ReceivesEvents.php
@@ -0,0 +1,15 @@
+<?php
+
+namespace Pterodactyl\Contracts\Core;
+
+use Pterodactyl\Events\Event;
+
+interface ReceivesEvents
+{
+    /**
+     * Handles receiving an event from the application.
+     *
+     * @param \Pterodactyl\Events\Event $notification
+     */
+    public function handle(Event $notification): void;
+}
diff --git a/app/Events/Server/Installed.php b/app/Events/Server/Installed.php
new file mode 100644
index 000000000..81b6963bc
--- /dev/null
+++ b/app/Events/Server/Installed.php
@@ -0,0 +1,27 @@
+<?php
+
+namespace Pterodactyl\Events\Server;
+
+use Pterodactyl\Events\Event;
+use Pterodactyl\Models\Server;
+use Illuminate\Queue\SerializesModels;
+
+class Installed extends Event
+{
+    use SerializesModels;
+
+    /**
+     * @var \Pterodactyl\Models\Server
+     */
+    public $server;
+
+    /**
+     * Create a new event instance.
+     *
+     * @var \Pterodactyl\Models\Server
+     */
+    public function __construct(Server $server)
+    {
+        $this->server = $server;
+    }
+}
diff --git a/app/Http/Controllers/Daemon/ActionController.php b/app/Http/Controllers/Daemon/ActionController.php
index fef0b35b7..ea4c52533 100644
--- a/app/Http/Controllers/Daemon/ActionController.php
+++ b/app/Http/Controllers/Daemon/ActionController.php
@@ -7,9 +7,26 @@ use Illuminate\Http\Request;
 use Pterodactyl\Models\Node;
 use Pterodactyl\Models\Server;
 use Pterodactyl\Http\Controllers\Controller;
+use Pterodactyl\Events\Server\Installed as ServerInstalled;
+use Illuminate\Contracts\Events\Dispatcher as EventDispatcher;
 
 class ActionController extends Controller
 {
+    /**
+     * @var \Illuminate\Contracts\Events\Dispatcher
+     */
+    private $eventDispatcher;
+
+    /**
+     * ActionController constructor.
+     *
+     * @param \Illuminate\Contracts\Events\Dispatcher $eventDispatcher
+     */
+    public function __construct(EventDispatcher $eventDispatcher)
+    {
+        $this->eventDispatcher = $eventDispatcher;
+    }
+
     /**
      * Handles install toggle request from daemon.
      *
@@ -37,6 +54,11 @@ class ActionController extends Controller
         $server->installed = ($status === 'installed') ? 1 : 2;
         $server->save();
 
+        // Only fire event if server installed successfully.
+        if ($server->installed === 1) {
+            $this->eventDispatcher->dispatch(new ServerInstalled($server));
+        }
+
         return response()->json([]);
     }
 
diff --git a/app/Listeners/.gitkeep b/app/Listeners/.gitkeep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/app/Notifications/ServerInstalled.php b/app/Notifications/ServerInstalled.php
new file mode 100644
index 000000000..fe9747223
--- /dev/null
+++ b/app/Notifications/ServerInstalled.php
@@ -0,0 +1,69 @@
+<?php
+
+namespace Pterodactyl\Notifications;
+
+use Illuminate\Bus\Queueable;
+use Pterodactyl\Events\Event;
+use Illuminate\Container\Container;
+use Illuminate\Notifications\Notification;
+use Illuminate\Contracts\Queue\ShouldQueue;
+use Pterodactyl\Contracts\Core\ReceivesEvents;
+use Illuminate\Contracts\Notifications\Dispatcher;
+use Illuminate\Notifications\Messages\MailMessage;
+
+class ServerInstalled extends Notification implements ShouldQueue, ReceivesEvents
+{
+    use Queueable;
+
+    /**
+     * @var \Pterodactyl\Models\Server
+     */
+    public $server;
+
+    /**
+     * @var \Pterodactyl\Models\User
+     */
+    public $user;
+
+    /**
+     * Handle a direct call to this notification from the server installed event. This is configured
+     * in the event service provider.
+     *
+     * @param \Pterodactyl\Events\Event|\Pterodactyl\Events\Server\Installed $event
+     */
+    public function handle(Event $event): void
+    {
+        $event->server->loadMissing('user');
+
+        $this->server = $event->server;
+        $this->user = $event->server->user;
+
+        // Since we are calling this notification directly from an event listener we need to fire off the dispatcher
+        // to send the email now. Don't use send() or you'll end up firing off two different events.
+        Container::getInstance()->make(Dispatcher::class)->sendNow($this->user, $this);
+    }
+
+    /**
+     * Get the notification's delivery channels.
+     *
+     * @return array
+     */
+    public function via()
+    {
+        return ['mail'];
+    }
+
+    /**
+     * Get the mail representation of the notification.
+     *
+     * @return \Illuminate\Notifications\Messages\MailMessage
+     */
+    public function toMail()
+    {
+        return (new MailMessage)
+            ->greeting('Hello ' . $this->user->username . '.')
+            ->line('Your server has finished installing and is now ready for you to use.')
+            ->line('Server Name: ' . $this->server->name)
+            ->action('Login and Begin Using', route('index'));
+    }
+}
diff --git a/app/Providers/EventServiceProvider.php b/app/Providers/EventServiceProvider.php
index 2ecc663fe..5be9601d6 100644
--- a/app/Providers/EventServiceProvider.php
+++ b/app/Providers/EventServiceProvider.php
@@ -2,6 +2,8 @@
 
 namespace Pterodactyl\Providers;
 
+use Pterodactyl\Events\Server\Installed as ServerInstalledEvent;
+use Pterodactyl\Notifications\ServerInstalled as ServerInstalledNotification;
 use Illuminate\Foundation\Support\Providers\EventServiceProvider as ServiceProvider;
 
 class EventServiceProvider extends ServiceProvider
@@ -11,5 +13,9 @@ class EventServiceProvider extends ServiceProvider
      *
      * @var array
      */
-    protected $listen = [];
+    protected $listen = [
+        ServerInstalledEvent::class => [
+            ServerInstalledNotification::class,
+        ],
+    ];
 }

From b5022766df3af3c9320ca62f4bd5ef4d704601e1 Mon Sep 17 00:00:00 2001
From: Lance Pioch <git@lance.sh>
Date: Sun, 1 Jul 2018 17:42:01 -0400
Subject: [PATCH 39/62] Do not keep processing the file/folder paths if the
 user has cancelled the operation and fix #1124 (#1177)

---
 CHANGELOG.md                                         |  1 +
 .../pterodactyl/js/frontend/files/filemanager.min.js |  2 +-
 .../js/frontend/files/filemanager.min.js.map         |  2 +-
 .../pterodactyl/js/frontend/files/src/actions.js     | 12 ++++++++++++
 .../themes/pterodactyl/server/files/index.blade.php  |  2 +-
 5 files changed, 16 insertions(+), 3 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 382ba1bb8..bdb7ae655 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -17,6 +17,7 @@ This project follows [Semantic Versioning](http://semver.org) guidelines.
 * Fixes tokens being sent to users when their account is created to actually work. Implements Laravel's internal token creation mechanisms rather than trying to do it custom.
 * Updates some eggs to ensure they have the correct data and will continue working down the road. Fixes autoupdating on some source servers and MC related download links.
 * Emails should send properly now when a server is marked as installed to let the owner know it is ready for action.
+* Cancelling a file manager operation should cancel correctly across all browsers now.
 
 ### Changed
 * Attempting to upload a folder via the web file manager will now display a warning telling the user to use SFTP.
diff --git a/public/themes/pterodactyl/js/frontend/files/filemanager.min.js b/public/themes/pterodactyl/js/frontend/files/filemanager.min.js
index 2dc67f833..eeb7370b3 100644
--- a/public/themes/pterodactyl/js/frontend/files/filemanager.min.js
+++ b/public/themes/pterodactyl/js/frontend/files/filemanager.min.js
@@ -1,4 +1,4 @@
-'use strict';var _createClass=function(){function defineProperties(target,props){for(var i=0;i<props.length;i++){var descriptor=props[i];descriptor.enumerable=descriptor.enumerable||false;descriptor.configurable=true;if('value'in descriptor)descriptor.writable=true;Object.defineProperty(target,descriptor.key,descriptor)}}return function(Constructor,protoProps,staticProps){if(protoProps)defineProperties(Constructor.prototype,protoProps);if(staticProps)defineProperties(Constructor,staticProps);return Constructor}}();function _classCallCheck(instance,Constructor){if(!(instance instanceof Constructor)){throw new TypeError('Cannot call a class as a function')}}var ActionsClass=function(){function ActionsClass(element,menu){_classCallCheck(this,ActionsClass);this.element=element;this.menu=menu}_createClass(ActionsClass,[{key:'destroy',value:function destroy(){this.element=undefined}},{key:'folder',value:function folder(path){var inputValue=void 0;if(path){inputValue=path}else{var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.data('name'));var currentPath=decodeURIComponent(nameBlock.data('path'));if($(this.element).data('type')==='file'){inputValue=currentPath}else{inputValue=''+currentPath+currentName+'/'}}swal({type:'input',title:'Create Folder',text:'Please enter the path and folder name below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:inputValue},function(val){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/folder',timeout:10000,data:JSON.stringify({path:val})}).done(function(data){swal.close();Files.list()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'move',value:function move(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var currentPath=decodeURIComponent(nameBlock.data('path'));swal({type:'input',title:'Move File',text:'Please enter the new path for the file below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:''+currentPath+currentName},function(val){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/move',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+val})}).done(function(data){nameBlock.parent().addClass('warning').delay(200).fadeOut();swal.close()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'rename',value:function rename(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentLink=nameBlock.find('a');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var attachEditor='\n            <input class="form-control input-sm" type="text" value="'+currentName+'" />\n            <span class="input-loader"><i class="fa fa-refresh fa-spin fa-fw"></i></span>\n        ';nameBlock.html(attachEditor);var inputField=nameBlock.find('input');var inputLoader=nameBlock.find('.input-loader');inputField.focus();inputField.on('blur keydown',function(e){if(e.type==='keydown'&&e.which===27||e.type==='blur'||e.type==='keydown'&&e.which===13&&currentName===inputField.val()){if(!_.isEmpty(currentLink)){nameBlock.html(currentLink)}else{nameBlock.html(currentName)}inputField.remove();ContextMenu.unbind().run();return}if(e.type==='keydown'&&e.which!==13)return;inputLoader.show();var currentPath=decodeURIComponent(nameBlock.data('path'));$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/rename',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+currentPath+inputField.val()})}).done(function(data){nameBlock.attr('data-name',inputField.val());if(!_.isEmpty(currentLink)){var newLink=currentLink.attr('href');if(nameBlock.parent().data('type')!=='folder'){newLink=newLink.substr(0,newLink.lastIndexOf('/'))+'/'+inputField.val()}currentLink.attr('href',newLink);nameBlock.html(currentLink.html(inputField.val()))}else{nameBlock.html(inputField.val())}inputField.remove()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}nameBlock.addClass('has-error').delay(2000).queue(function(){nameBlock.removeClass('has-error').dequeue()});inputField.popover({animation:true,placement:'top',content:error,title:'Save Error'}).popover('show')}).always(function(){inputLoader.remove();ContextMenu.unbind().run()})})}},{key:'copy',value:function copy(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var currentPath=decodeURIComponent(nameBlock.data('path'));swal({type:'input',title:'Copy File',text:'Please enter the new path for the copied file below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:''+currentPath+currentName},function(val){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/copy',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+val})}).done(function(data){swal({type:'success',title:'',text:'File successfully copied.'});Files.list()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'download',value:function download(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var fileName=decodeURIComponent(nameBlock.attr('data-name'));var filePath=decodeURIComponent(nameBlock.data('path'));window.location='/server/'+Pterodactyl.server.uuidShort+'/files/download/'+filePath+fileName}},{key:'delete',value:function _delete(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var delPath=decodeURIComponent(nameBlock.data('path'));var delName=decodeURIComponent(nameBlock.data('name'));swal({type:'warning',title:'',text:'Are you sure you want to delete <code>'+delName+'</code>?',html:true,showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true},function(){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/delete',timeout:10000,data:JSON.stringify({items:[''+delPath+delName]})}).done(function(data){nameBlock.parent().addClass('warning').delay(200).fadeOut();swal({type:'success',title:'File Deleted'})}).fail(function(jqXHR){console.error(jqXHR);swal({type:'error',title:'Whoops!',html:true,text:'An error occurred while attempting to delete this file. Please try again.'})})})}},{key:'toggleMassActions',value:function toggleMassActions(){if($('#file_listing input[type="checkbox"]:checked').length){$('#mass_actions').removeClass('disabled')}else{$('#mass_actions').addClass('disabled')}}},{key:'toggleHighlight',value:function toggleHighlight(event){var parent=$(event.currentTarget);var item=$(event.currentTarget).find('input');if($(item).is(':checked')){$(item).prop('checked',false);parent.removeClass('warning').delay(200)}else{$(item).prop('checked',true);parent.addClass('warning').delay(200)}}},{key:'highlightAll',value:function highlightAll(event){var parent=void 0;var item=$(event.currentTarget).find('input');if($(item).is(':checked')){$('#file_listing input[type=checkbox]').prop('checked',false);$('#file_listing input[data-action="addSelection"]').each(function(){parent=$(this).closest('tr');parent.removeClass('warning').delay(200)})}else{$('#file_listing input[type=checkbox]').prop('checked',true);$('#file_listing input[data-action="addSelection"]').each(function(){parent=$(this).closest('tr');parent.addClass('warning').delay(200)})}}},{key:'deleteSelected',value:function deleteSelected(){var selectedItems=[];var selectedItemsElements=[];var parent=void 0;var nameBlock=void 0;var delLocation=void 0;$('#file_listing input[data-action="addSelection"]:checked').each(function(){parent=$(this).closest('tr');nameBlock=$(parent).find('td[data-identifier="name"]');delLocation=decodeURIComponent(nameBlock.data('path'))+decodeURIComponent(nameBlock.data('name'));selectedItems.push(delLocation);selectedItemsElements.push(parent)});if(selectedItems.length!=0){var formattedItems='';var i=0;$.each(selectedItems,function(key,value){formattedItems+='<code>'+value+'</code>, ';i++;return i<5});formattedItems=formattedItems.slice(0,-2);if(selectedItems.length>5){formattedItems+=', and '+(selectedItems.length-5)+' other(s)'}swal({type:'warning',title:'',text:'Are you sure you want to delete the following files: '+formattedItems+'?',html:true,showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true},function(){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/delete',timeout:10000,data:JSON.stringify({items:selectedItems})}).done(function(data){$('#file_listing input:checked').each(function(){$(this).prop('checked',false)});$.each(selectedItemsElements,function(){$(this).addClass('warning').delay(200).fadeOut()});swal({type:'success',title:'Files Deleted'})}).fail(function(jqXHR){console.error(jqXHR);swal({type:'error',title:'Whoops!',html:true,text:'An error occurred while attempting to delete these files. Please try again.'})})})}else{swal({type:'warning',title:'',text:'Please select files/folders to delete.'})}}},{key:'decompress',value:function decompress(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var compPath=decodeURIComponent(nameBlock.data('path'));var compName=decodeURIComponent(nameBlock.data('name'));swal({title:'<i class="fa fa-refresh fa-spin"></i> Decompressing...',text:'This might take a few seconds to complete.',html:true,allowOutsideClick:false,allowEscapeKey:false,showConfirmButton:false});$.ajax({type:'POST',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/decompress',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',data:JSON.stringify({files:''+compPath+compName})}).done(function(data){swal.close();Files.list(compPath)}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'Whoops!',html:true,text:error})})}},{key:'compress',value:function compress(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var compPath=decodeURIComponent(nameBlock.data('path'));var compName=decodeURIComponent(nameBlock.data('name'));$.ajax({type:'POST',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/compress',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',data:JSON.stringify({files:''+compPath+compName,to:compPath.toString()})}).done(function(data){Files.list(compPath,function(err){if(err)return;var fileListing=$('#file_listing').find('[data-name="'+data.saved_as+'"]').parent();fileListing.addClass('success pulsate').delay(3000).queue(function(){fileListing.removeClass('success pulsate').dequeue()})})}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'Whoops!',html:true,text:error})})}}]);return ActionsClass}();
+'use strict';var _createClass=function(){function defineProperties(target,props){for(var i=0;i<props.length;i++){var descriptor=props[i];descriptor.enumerable=descriptor.enumerable||false;descriptor.configurable=true;if('value'in descriptor)descriptor.writable=true;Object.defineProperty(target,descriptor.key,descriptor)}}return function(Constructor,protoProps,staticProps){if(protoProps)defineProperties(Constructor.prototype,protoProps);if(staticProps)defineProperties(Constructor,staticProps);return Constructor}}();function _classCallCheck(instance,Constructor){if(!(instance instanceof Constructor)){throw new TypeError('Cannot call a class as a function')}}var ActionsClass=function(){function ActionsClass(element,menu){_classCallCheck(this,ActionsClass);this.element=element;this.menu=menu}_createClass(ActionsClass,[{key:'destroy',value:function destroy(){this.element=undefined}},{key:'folder',value:function folder(path){var inputValue=void 0;if(path){inputValue=path}else{var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.data('name'));var currentPath=decodeURIComponent(nameBlock.data('path'));if($(this.element).data('type')==='file'){inputValue=currentPath}else{inputValue=''+currentPath+currentName+'/'}}swal({type:'input',title:'Create Folder',text:'Please enter the path and folder name below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:inputValue},function(val){if(val===false){return false}$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/folder',timeout:10000,data:JSON.stringify({path:val})}).done(function(data){swal.close();Files.list()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'move',value:function move(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var currentPath=decodeURIComponent(nameBlock.data('path'));swal({type:'input',title:'Move File',text:'Please enter the new path for the file below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:''+currentPath+currentName},function(val){if(val===false){return false}$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/move',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+val})}).done(function(data){nameBlock.parent().addClass('warning').delay(200).fadeOut();swal.close()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'rename',value:function rename(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentLink=nameBlock.find('a');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var attachEditor='\n            <input class="form-control input-sm" type="text" value="'+currentName+'" />\n            <span class="input-loader"><i class="fa fa-refresh fa-spin fa-fw"></i></span>\n        ';nameBlock.html(attachEditor);var inputField=nameBlock.find('input');var inputLoader=nameBlock.find('.input-loader');inputField.focus();inputField.on('blur keydown',function(e){if(e.type==='keydown'&&e.which===27||e.type==='blur'||e.type==='keydown'&&e.which===13&&currentName===inputField.val()){if(!_.isEmpty(currentLink)){nameBlock.html(currentLink)}else{nameBlock.html(currentName)}inputField.remove();ContextMenu.unbind().run();return}if(e.type==='keydown'&&e.which!==13)return;inputLoader.show();var currentPath=decodeURIComponent(nameBlock.data('path'));$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/rename',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+currentPath+inputField.val()})}).done(function(data){nameBlock.attr('data-name',inputField.val());if(!_.isEmpty(currentLink)){var newLink=currentLink.attr('href');if(nameBlock.parent().data('type')!=='folder'){newLink=newLink.substr(0,newLink.lastIndexOf('/'))+'/'+inputField.val()}currentLink.attr('href',newLink);nameBlock.html(currentLink.html(inputField.val()))}else{nameBlock.html(inputField.val())}inputField.remove()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}nameBlock.addClass('has-error').delay(2000).queue(function(){nameBlock.removeClass('has-error').dequeue()});inputField.popover({animation:true,placement:'top',content:error,title:'Save Error'}).popover('show')}).always(function(){inputLoader.remove();ContextMenu.unbind().run()})})}},{key:'copy',value:function copy(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var currentPath=decodeURIComponent(nameBlock.data('path'));swal({type:'input',title:'Copy File',text:'Please enter the new path for the copied file below.',showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true,inputValue:''+currentPath+currentName},function(val){if(val===false){return false}$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/copy',timeout:10000,data:JSON.stringify({from:''+currentPath+currentName,to:''+val})}).done(function(data){swal({type:'success',title:'',text:'File successfully copied.'});Files.list()}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'',text:error})})})}},{key:'download',value:function download(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var fileName=decodeURIComponent(nameBlock.attr('data-name'));var filePath=decodeURIComponent(nameBlock.data('path'));window.location='/server/'+Pterodactyl.server.uuidShort+'/files/download/'+filePath+fileName}},{key:'delete',value:function _delete(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var delPath=decodeURIComponent(nameBlock.data('path'));var delName=decodeURIComponent(nameBlock.data('name'));swal({type:'warning',title:'',text:'Are you sure you want to delete <code>'+delName+'</code>?',html:true,showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true},function(){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/delete',timeout:10000,data:JSON.stringify({items:[''+delPath+delName]})}).done(function(data){nameBlock.parent().addClass('warning').delay(200).fadeOut();swal({type:'success',title:'File Deleted'})}).fail(function(jqXHR){console.error(jqXHR);swal({type:'error',title:'Whoops!',html:true,text:'An error occurred while attempting to delete this file. Please try again.'})})})}},{key:'toggleMassActions',value:function toggleMassActions(){if($('#file_listing input[type="checkbox"]:checked').length){$('#mass_actions').removeClass('disabled')}else{$('#mass_actions').addClass('disabled')}}},{key:'toggleHighlight',value:function toggleHighlight(event){var parent=$(event.currentTarget);var item=$(event.currentTarget).find('input');if($(item).is(':checked')){$(item).prop('checked',false);parent.removeClass('warning').delay(200)}else{$(item).prop('checked',true);parent.addClass('warning').delay(200)}}},{key:'highlightAll',value:function highlightAll(event){var parent=void 0;var item=$(event.currentTarget).find('input');if($(item).is(':checked')){$('#file_listing input[type=checkbox]').prop('checked',false);$('#file_listing input[data-action="addSelection"]').each(function(){parent=$(this).closest('tr');parent.removeClass('warning').delay(200)})}else{$('#file_listing input[type=checkbox]').prop('checked',true);$('#file_listing input[data-action="addSelection"]').each(function(){parent=$(this).closest('tr');parent.addClass('warning').delay(200)})}}},{key:'deleteSelected',value:function deleteSelected(){var selectedItems=[];var selectedItemsElements=[];var parent=void 0;var nameBlock=void 0;var delLocation=void 0;$('#file_listing input[data-action="addSelection"]:checked').each(function(){parent=$(this).closest('tr');nameBlock=$(parent).find('td[data-identifier="name"]');delLocation=decodeURIComponent(nameBlock.data('path'))+decodeURIComponent(nameBlock.data('name'));selectedItems.push(delLocation);selectedItemsElements.push(parent)});if(selectedItems.length!=0){var formattedItems='';var i=0;$.each(selectedItems,function(key,value){formattedItems+='<code>'+value+'</code>, ';i++;return i<5});formattedItems=formattedItems.slice(0,-2);if(selectedItems.length>5){formattedItems+=', and '+(selectedItems.length-5)+' other(s)'}swal({type:'warning',title:'',text:'Are you sure you want to delete the following files: '+formattedItems+'?',html:true,showCancelButton:true,showConfirmButton:true,closeOnConfirm:false,showLoaderOnConfirm:true},function(){$.ajax({type:'POST',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/delete',timeout:10000,data:JSON.stringify({items:selectedItems})}).done(function(data){$('#file_listing input:checked').each(function(){$(this).prop('checked',false)});$.each(selectedItemsElements,function(){$(this).addClass('warning').delay(200).fadeOut()});swal({type:'success',title:'Files Deleted'})}).fail(function(jqXHR){console.error(jqXHR);swal({type:'error',title:'Whoops!',html:true,text:'An error occurred while attempting to delete these files. Please try again.'})})})}else{swal({type:'warning',title:'',text:'Please select files/folders to delete.'})}}},{key:'decompress',value:function decompress(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var compPath=decodeURIComponent(nameBlock.data('path'));var compName=decodeURIComponent(nameBlock.data('name'));swal({title:'<i class="fa fa-refresh fa-spin"></i> Decompressing...',text:'This might take a few seconds to complete.',html:true,allowOutsideClick:false,allowEscapeKey:false,showConfirmButton:false});$.ajax({type:'POST',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/decompress',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',data:JSON.stringify({files:''+compPath+compName})}).done(function(data){swal.close();Files.list(compPath)}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'Whoops!',html:true,text:error})})}},{key:'compress',value:function compress(){var nameBlock=$(this.element).find('td[data-identifier="name"]');var compPath=decodeURIComponent(nameBlock.data('path'));var compName=decodeURIComponent(nameBlock.data('name'));$.ajax({type:'POST',url:Pterodactyl.node.scheme+'://'+Pterodactyl.node.fqdn+':'+Pterodactyl.node.daemonListen+'/v1/server/file/compress',headers:{'X-Access-Token':Pterodactyl.server.daemonSecret,'X-Access-Server':Pterodactyl.server.uuid},contentType:'application/json; charset=utf-8',data:JSON.stringify({files:''+compPath+compName,to:compPath.toString()})}).done(function(data){Files.list(compPath,function(err){if(err)return;var fileListing=$('#file_listing').find('[data-name="'+data.saved_as+'"]').parent();fileListing.addClass('success pulsate').delay(3000).queue(function(){fileListing.removeClass('success pulsate').dequeue()})})}).fail(function(jqXHR){console.error(jqXHR);var error='An error occurred while trying to process this request.';if(typeof jqXHR.responseJSON!=='undefined'&&typeof jqXHR.responseJSON.error!=='undefined'){error=jqXHR.responseJSON.error}swal({type:'error',title:'Whoops!',html:true,text:error})})}}]);return ActionsClass}();
 'use strict';var _createClass=function(){function defineProperties(target,props){for(var i=0;i<props.length;i++){var descriptor=props[i];descriptor.enumerable=descriptor.enumerable||false;descriptor.configurable=true;if('value'in descriptor)descriptor.writable=true;Object.defineProperty(target,descriptor.key,descriptor)}}return function(Constructor,protoProps,staticProps){if(protoProps)defineProperties(Constructor.prototype,protoProps);if(staticProps)defineProperties(Constructor,staticProps);return Constructor}}();function _classCallCheck(instance,Constructor){if(!(instance instanceof Constructor)){throw new TypeError('Cannot call a class as a function')}}var ContextMenuClass=function(){function ContextMenuClass(){_classCallCheck(this,ContextMenuClass);this.activeLine=null}_createClass(ContextMenuClass,[{key:'run',value:function run(){this.directoryClick();this.rightClick()}},{key:'makeMenu',value:function makeMenu(parent){$(document).find('#fileOptionMenu').remove();if(!_.isNull(this.activeLine))this.activeLine.removeClass('active');var newFilePath=$('#file_listing').data('current-dir');if(parent.data('type')==='folder'){var nameBlock=parent.find('td[data-identifier="name"]');var currentName=decodeURIComponent(nameBlock.attr('data-name'));var currentPath=decodeURIComponent(nameBlock.data('path'));newFilePath=''+currentPath+currentName}var buildMenu='<ul id="fileOptionMenu" class="dropdown-menu" role="menu" style="display:none" >';if(Pterodactyl.permissions.moveFiles){buildMenu+='<li data-action="rename"><a tabindex="-1" href="#"><i class="fa fa-fw fa-pencil-square-o"></i> Rename</a></li>                           <li data-action="move"><a tabindex="-1" href="#"><i class="fa fa-fw fa-arrow-right"></i> Move</a></li>'}if(Pterodactyl.permissions.copyFiles){buildMenu+='<li data-action="copy"><a tabindex="-1" href="#"><i class="fa fa-fw fa-clone"></i> Copy</a></li>'}if(Pterodactyl.permissions.compressFiles){buildMenu+='<li data-action="compress" class="hidden"><a tabindex="-1" href="#"><i class="fa fa-fw fa-file-archive-o"></i> Compress</a></li>'}if(Pterodactyl.permissions.decompressFiles){buildMenu+='<li data-action="decompress" class="hidden"><a tabindex="-1" href="#"><i class="fa fa-fw fa-expand"></i> Decompress</a></li>'}if(Pterodactyl.permissions.createFiles){buildMenu+='<li class="divider"></li>                           <li data-action="file"><a href="/server/'+Pterodactyl.server.uuidShort+'/files/add/?dir='+newFilePath+'" class="text-muted"><i class="fa fa-fw fa-plus"></i> New File</a></li>                           <li data-action="folder"><a tabindex="-1" href="#"><i class="fa fa-fw fa-folder"></i> New Folder</a></li>'}if(Pterodactyl.permissions.downloadFiles||Pterodactyl.permissions.deleteFiles){buildMenu+='<li class="divider"></li>'}if(Pterodactyl.permissions.downloadFiles){buildMenu+='<li data-action="download" class="hidden"><a tabindex="-1" href="#"><i class="fa fa-fw fa-download"></i> Download</a></li>'}if(Pterodactyl.permissions.deleteFiles){buildMenu+='<li data-action="delete" class="bg-danger"><a tabindex="-1" href="#"><i class="fa fa-fw fa-trash-o"></i> Delete</a></li>'}buildMenu+='</ul>';return buildMenu}},{key:'rightClick',value:function rightClick(){var _this=this;$('[data-action="toggleMenu"]').on('mousedown',function(event){event.preventDefault();if($(document).find('#fileOptionMenu').is(':visible')){$('body').trigger('click');return}_this.showMenu(event)});$('#file_listing > tbody td').on('contextmenu',function(event){_this.showMenu(event)})}},{key:'showMenu',value:function showMenu(event){var _this2=this;var parent=$(event.target).closest('tr');var menu=$(this.makeMenu(parent));if(parent.data('type')==='disabled')return;event.preventDefault();$(menu).appendTo('body');$(menu).data('invokedOn',$(event.target)).show().css({position:'absolute',left:event.pageX-150,top:event.pageY});this.activeLine=parent;this.activeLine.addClass('active');var Actions=new ActionsClass(parent,menu);if(Pterodactyl.permissions.moveFiles){$(menu).find('li[data-action="move"]').unbind().on('click',function(e){e.preventDefault();Actions.move()});$(menu).find('li[data-action="rename"]').unbind().on('click',function(e){e.preventDefault();Actions.rename()})}if(Pterodactyl.permissions.copyFiles){$(menu).find('li[data-action="copy"]').unbind().on('click',function(e){e.preventDefault();Actions.copy()})}if(Pterodactyl.permissions.compressFiles){if(parent.data('type')==='folder'){$(menu).find('li[data-action="compress"]').removeClass('hidden')}$(menu).find('li[data-action="compress"]').unbind().on('click',function(e){e.preventDefault();Actions.compress()})}if(Pterodactyl.permissions.decompressFiles){if(_.without(['application/zip','application/gzip','application/x-gzip'],parent.data('mime')).length<3){$(menu).find('li[data-action="decompress"]').removeClass('hidden')}$(menu).find('li[data-action="decompress"]').unbind().on('click',function(e){e.preventDefault();Actions.decompress()})}if(Pterodactyl.permissions.createFiles){$(menu).find('li[data-action="folder"]').unbind().on('click',function(e){e.preventDefault();Actions.folder()})}if(Pterodactyl.permissions.downloadFiles){if(parent.data('type')==='file'){$(menu).find('li[data-action="download"]').removeClass('hidden')}$(menu).find('li[data-action="download"]').unbind().on('click',function(e){e.preventDefault();Actions.download()})}if(Pterodactyl.permissions.deleteFiles){$(menu).find('li[data-action="delete"]').unbind().on('click',function(e){e.preventDefault();Actions.delete()})}$(window).unbind().on('click',function(event){if($(event.target).is('.disable-menu-hide')){event.preventDefault();return}$(menu).unbind().remove();if(!_.isNull(_this2.activeLine))_this2.activeLine.removeClass('active')})}},{key:'directoryClick',value:function directoryClick(){$('a[data-action="directory-view"]').on('click',function(event){event.preventDefault();var path=$(this).parent().data('path')||'';var name=$(this).parent().data('name')||'';window.location.hash=encodeURIComponent(path+name);Files.list()})}}]);return ContextMenuClass}();window.ContextMenu=new ContextMenuClass;
 'use strict';var _typeof=typeof Symbol==='function'&&typeof Symbol.iterator==='symbol'?function(obj){return typeof obj}:function(obj){return obj&&typeof Symbol==='function'&&obj.constructor===Symbol&&obj!==Symbol.prototype?'symbol':typeof obj};var _createClass=function(){function defineProperties(target,props){for(var i=0;i<props.length;i++){var descriptor=props[i];descriptor.enumerable=descriptor.enumerable||false;descriptor.configurable=true;if('value'in descriptor)descriptor.writable=true;Object.defineProperty(target,descriptor.key,descriptor)}}return function(Constructor,protoProps,staticProps){if(protoProps)defineProperties(Constructor.prototype,protoProps);if(staticProps)defineProperties(Constructor,staticProps);return Constructor}}();function _classCallCheck(instance,Constructor){if(!(instance instanceof Constructor)){throw new TypeError('Cannot call a class as a function')}}var FileManager=function(){function FileManager(){_classCallCheck(this,FileManager);this.list(this.decodeHash())}_createClass(FileManager,[{key:'list',value:function list(path,next){var _this=this;if(_.isUndefined(path)){path=this.decodeHash()}this.loader(true);$.ajax({type:'POST',url:Pterodactyl.meta.directoryList,headers:{'X-CSRF-Token':Pterodactyl.meta.csrftoken},data:{directory:path}}).done(function(data){_this.loader(false);$('#load_files').slideUp(10).html(data).slideDown(10,function(){ContextMenu.run();_this.reloadFilesButton();_this.addFolderButton();_this.selectItem();_this.selectAll();_this.selectiveDeletion();_this.selectRow();if(_.isFunction(next)){return next()}});$('#internal_alert').slideUp();if((typeof Siofu==='undefined'?'undefined':_typeof(Siofu))==='object'){Siofu.listenOnInput(document.getElementById('files_touch_target'))}}).fail(function(jqXHR){_this.loader(false);if(_.isFunction(next)){return next(new Error('Failed to load file listing.'))}if(path!==''&&path!=='/'&&jqXHR.status===404){return _this.list('',next)}swal({type:'error',title:'File Error',text:jqXHR.responseJSON.errors[0].detail||'An error occurred while attempting to process this request. Please try again.'});console.error(jqXHR)})}},{key:'loader',value:function loader(show){if(show){$('.file-overlay').fadeIn(100)}else{$('.file-overlay').fadeOut(100)}}},{key:'reloadFilesButton',value:function reloadFilesButton(){var _this2=this;$('i[data-action="reload-files"]').unbind().on('click',function(){$('i[data-action="reload-files"]').addClass('fa-spin');_this2.list()})}},{key:'selectItem',value:function selectItem(){$('[data-action="addSelection"]').on('click',function(event){event.preventDefault()})}},{key:'selectAll',value:function selectAll(){$('[data-action="selectAll"]').on('click',function(event){event.preventDefault()})}},{key:'selectiveDeletion',value:function selectiveDeletion(){$('[data-action="selective-deletion"]').on('mousedown',function(event){new ActionsClass().deleteSelected()})}},{key:'addFolderButton',value:function addFolderButton(){$('[data-action="add-folder"]').unbind().on('click',function(){new ActionsClass().folder($('#file_listing').data('current-dir')||'/')})}},{key:'selectRow',value:function selectRow(){$('#file_listing tr').on('mousedown',function(event){if(event.which===1){if($(event.target).is('th')||$(event.target).is('input[data-action="selectAll"]')){new ActionsClass().highlightAll(event)}else if($(event.target).is('td')||$(event.target).is('input[data-action="addSelection"]')){new ActionsClass().toggleHighlight(event)}new ActionsClass().toggleMassActions()}})}},{key:'decodeHash',value:function decodeHash(){return decodeURIComponent(window.location.hash.substring(1))}}]);return FileManager}();window.Files=new FileManager;
 
diff --git a/public/themes/pterodactyl/js/frontend/files/filemanager.min.js.map b/public/themes/pterodactyl/js/frontend/files/filemanager.min.js.map
index bc8a94f5e..4c76dd23d 100644
--- a/public/themes/pterodactyl/js/frontend/files/filemanager.min.js.map
+++ b/public/themes/pterodactyl/js/frontend/files/filemanager.min.js.map
@@ -1 +1 @@
-{"version":3,"sources":["src/actions.js","src/contextmenu.js","src/index.js"],"names":[],"mappings":"AAAA,a,8oBAqBM,a,YACF,sBAAY,OAAZ,CAAqB,IAArB,CAA2B,oCACvB,KAAK,OAAL,CAAe,OAAf,CACA,KAAK,IAAL,CAAY,IACf,C,kEAES,CACN,KAAK,OAAL,CAAe,SAClB,C,sCAEM,I,CAAM,CACT,GAAI,kBAAJ,CACA,GAAI,IAAJ,CAAU,CACN,WAAa,IAChB,CAFD,IAEO,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,GAAI,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,MAArB,IAAiC,MAArC,CAA6C,CACzC,WAAa,WAChB,CAFD,IAEO,CACH,cAAgB,WAAhB,CAA8B,WAA9B,IACH,CACJ,CAED,KAAK,CACD,KAAM,OADL,CAED,MAAO,eAFN,CAGD,KAAM,8CAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,WAAY,UARX,CAAL,CASG,SAAC,GAAD,CAAS,CACR,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,KAAM,GADW,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,KAAK,KAAL,GACA,MAAM,IAAN,EACH,CAfD,EAeG,IAfH,CAeQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA1BD,CA2BH,CArCD,CAsCH,C,mCAEM,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,KAAK,CACD,KAAM,OADL,CAED,MAAO,WAFN,CAGD,KAAM,+CAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,cAAe,WAAf,CAA6B,WAR5B,CAAL,CASG,SAAC,GAAD,CAAS,CACR,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,uBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,GAFU,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,UAAU,MAAV,GAAmB,QAAnB,CAA4B,SAA5B,EAAuC,KAAvC,CAA6C,GAA7C,EAAkD,OAAlD,GACA,KAAK,KAAL,EACH,CAhBD,EAgBG,IAhBH,CAgBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA3BD,CA4BH,CAtCD,CAwCH,C,uCAEQ,CACL,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,UAAU,IAAV,CAAe,GAAf,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,uFACwD,WADxD,4GAAN,CAKA,UAAU,IAAV,CAAe,YAAf,EACA,GAAM,YAAa,UAAU,IAAV,CAAe,OAAf,CAAnB,CACA,GAAM,aAAc,UAAU,IAAV,CAAe,eAAf,CAApB,CAEA,WAAW,KAAX,GACA,WAAW,EAAX,CAAc,cAAd,CAA8B,WAAK,CAE/B,GACK,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAArC,EACG,EAAE,IAAF,GAAW,MADd,EAEI,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAApC,EAA0C,cAAgB,WAAW,GAAX,EAHlE,CAIE,CACE,GAAI,CAAC,EAAE,OAAF,CAAU,WAAV,CAAL,CAA6B,CACzB,UAAU,IAAV,CAAe,WAAf,CACH,CAFD,IAEO,CACH,UAAU,IAAV,CAAe,WAAf,CACH,CACD,WAAW,MAAX,GACA,YAAY,MAAZ,GAAqB,GAArB,GACA,MACH,CAED,GAAI,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAAxC,CAA4C,OAE5C,YAAY,IAAZ,GACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,WAAP,CAAqB,WAAW,GAAX,EAFJ,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,UAAU,IAAV,CAAe,WAAf,CAA4B,WAAW,GAAX,EAA5B,EACA,GAAI,CAAC,EAAE,OAAF,CAAU,WAAV,CAAL,CAA6B,CACzB,GAAI,SAAU,YAAY,IAAZ,CAAiB,MAAjB,CAAd,CACA,GAAI,UAAU,MAAV,GAAmB,IAAnB,CAAwB,MAAxB,IAAoC,QAAxC,CAAkD,CAC9C,QAAU,QAAQ,MAAR,CAAe,CAAf,CAAkB,QAAQ,WAAR,CAAoB,GAApB,CAAlB,EAA8C,GAA9C,CAAoD,WAAW,GAAX,EACjE,CACD,YAAY,IAAZ,CAAiB,MAAjB,CAAyB,OAAzB,EACA,UAAU,IAAV,CACI,YAAY,IAAZ,CAAiB,WAAW,GAAX,EAAjB,CADJ,CAGH,CATD,IASO,CACH,UAAU,IAAV,CAAe,WAAW,GAAX,EAAf,CACH,CACD,WAAW,MAAX,EACH,CA5BD,EA4BG,IA5BH,CA4BQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,UAAU,QAAV,CAAmB,WAAnB,EAAgC,KAAhC,CAAsC,IAAtC,EAA4C,KAA5C,CAAkD,UAAM,CACpD,UAAU,WAAV,CAAsB,WAAtB,EAAmC,OAAnC,EACH,CAFD,EAGA,WAAW,OAAX,CAAmB,CACf,UAAW,IADI,CAEf,UAAW,KAFI,CAGf,QAAS,KAHM,CAIf,MAAO,YAJQ,CAAnB,EAKG,OALH,CAKW,MALX,CAMH,CA3CD,EA2CG,MA3CH,CA2CU,UAAM,CACZ,YAAY,MAAZ,GACA,YAAY,MAAZ,GAAqB,GAArB,EACH,CA9CD,CA+CH,CArED,CAsEH,C,mCAEM,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,KAAK,CACD,KAAM,OADL,CAED,MAAO,WAFN,CAGD,KAAM,sDAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,cAAe,WAAf,CAA6B,WAR5B,CAAL,CASG,SAAC,GAAD,CAAS,CACR,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,uBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,GAFU,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,2BAHL,CAAL,EAKA,MAAM,IAAN,EACH,CApBD,EAoBG,IApBH,CAoBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA/BD,CAgCH,CA1CD,CA2CH,C,2CAEU,CACP,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,OAAO,QAAP,YAA6B,YAAY,MAAZ,CAAmB,SAAhD,oBAA4E,QAA5E,CAAuF,QAC1F,C,wCAEQ,CACL,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,SAAU,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAhB,CACA,GAAM,SAAU,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAhB,CAEA,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,yCAA2C,OAA3C,CAAqD,UAH1D,CAID,KAAM,IAJL,CAKD,iBAAkB,IALjB,CAMD,kBAAmB,IANlB,CAOD,eAAgB,KAPf,CAQD,oBAAqB,IARpB,CAAL,CASG,UAAM,CACL,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,MAAO,IAAI,OAAJ,CAAc,OAAd,CADU,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,UAAU,MAAV,GAAmB,QAAnB,CAA4B,SAA5B,EAAuC,KAAvC,CAA6C,GAA7C,EAAkD,OAAlD,GACA,KAAK,CACD,KAAM,SADL,CAED,MAAO,cAFN,CAAL,CAIH,CAlBD,EAkBG,IAlBH,CAkBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,2EAJL,CAAL,CAMH,CA1BD,CA2BH,CArCD,CAsCH,C,6DAEmB,CAChB,GAAI,EAAE,8CAAF,EAAkD,MAAtD,CAA8D,CAC1D,EAAE,eAAF,EAAmB,WAAnB,CAA+B,UAA/B,CACH,CAFD,IAEO,CACH,EAAE,eAAF,EAAmB,QAAnB,CAA4B,UAA5B,CACH,CACJ,C,wDAEe,K,CAAO,CACnB,GAAM,QAAS,EAAE,MAAM,aAAR,CAAf,CACA,GAAM,MAAO,EAAE,MAAM,aAAR,EAAuB,IAAvB,CAA4B,OAA5B,CAAb,CAEA,GAAG,EAAE,IAAF,EAAQ,EAAR,CAAW,UAAX,CAAH,CAA2B,CACvB,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,KAAxB,EACA,OAAO,WAAP,CAAmB,SAAnB,EAA8B,KAA9B,CAAoC,GAApC,CACH,CAHD,IAGO,CACH,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,IAAxB,EACA,OAAO,QAAP,CAAgB,SAAhB,EAA2B,KAA3B,CAAiC,GAAjC,CACH,CACJ,C,kDAEY,K,CAAO,CAChB,GAAI,cAAJ,CACA,GAAM,MAAO,EAAE,MAAM,aAAR,EAAuB,IAAvB,CAA4B,OAA5B,CAAb,CAEA,GAAG,EAAE,IAAF,EAAQ,EAAR,CAAW,UAAX,CAAH,CAA2B,CACzB,EAAE,oCAAF,EAAwC,IAAxC,CAA6C,SAA7C,CAAwD,KAAxD,EACA,EAAE,iDAAF,EAAqD,IAArD,CAA0D,UAAW,CACjE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,OAAO,WAAP,CAAmB,SAAnB,EAA8B,KAA9B,CAAoC,GAApC,CACH,CAHD,CAID,CAND,IAMO,CACL,EAAE,oCAAF,EAAwC,IAAxC,CAA6C,SAA7C,CAAwD,IAAxD,EACA,EAAE,iDAAF,EAAqD,IAArD,CAA0D,UAAW,CACjE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,OAAO,QAAP,CAAgB,SAAhB,EAA2B,KAA3B,CAAiC,GAAjC,CACH,CAHD,CAID,CACJ,C,uDAEgB,CACb,GAAI,eAAgB,EAApB,CACA,GAAI,uBAAwB,EAA5B,CACA,GAAI,cAAJ,CACA,GAAI,iBAAJ,CACA,GAAI,mBAAJ,CAEA,EAAE,yDAAF,EAA6D,IAA7D,CAAkE,UAAW,CACzE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,UAAY,EAAE,MAAF,EAAU,IAAV,CAAe,4BAAf,CAAZ,CACA,YAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,EAA6C,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAA3D,CAEA,cAAc,IAAd,CAAmB,WAAnB,EACA,sBAAsB,IAAtB,CAA2B,MAA3B,CACH,CAPD,EASA,GAAI,cAAc,MAAd,EAAwB,CAA5B,CACA,CACI,GAAI,gBAAiB,EAArB,CACA,GAAI,GAAI,CAAR,CACA,EAAE,IAAF,CAAO,aAAP,CAAsB,SAAS,GAAT,CAAc,KAAd,CAAqB,CACvC,gBAAmB,SAAW,KAAX,CAAmB,WAAtC,CACA,IACA,MAAO,GAAI,CACd,CAJD,EAMA,eAAiB,eAAe,KAAf,CAAqB,CAArB,CAAwB,CAAC,CAAzB,CAAjB,CACA,GAAI,cAAc,MAAd,CAAuB,CAA3B,CAA8B,CAC1B,gBAAkB,UAAY,cAAc,MAAd,CAAuB,CAAnC,EAAwC,WAC7D,CAED,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,wDAA0D,cAA1D,CAA2E,GAHhF,CAID,KAAM,IAJL,CAKD,iBAAkB,IALjB,CAMD,kBAAmB,IANlB,CAOD,eAAgB,KAPf,CAQD,oBAAqB,IARpB,CAAL,CASG,UAAM,CACL,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,MAAO,aADU,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,EAAE,6BAAF,EAAiC,IAAjC,CAAsC,UAAW,CAC7C,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,KAAxB,CACH,CAFD,EAIA,EAAE,IAAF,CAAO,qBAAP,CAA8B,UAAW,CACrC,EAAE,IAAF,EAAQ,QAAR,CAAiB,SAAjB,EAA4B,KAA5B,CAAkC,GAAlC,EAAuC,OAAvC,EACH,CAFD,EAIA,KAAK,CACD,KAAM,SADL,CAED,MAAO,eAFN,CAAL,CAIH,CAzBD,EAyBG,IAzBH,CAyBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,6EAJL,CAAL,CAMH,CAjCD,CAkCH,CA5CD,CA6CH,CA5DD,IA4DO,CACH,KAAK,CACH,KAAM,SADH,CAEH,MAAO,EAFJ,CAGH,KAAM,wCAHH,CAAL,CAKH,CACJ,C,+CAEY,CACT,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,KAAK,CACD,MAAO,wDADN,CAED,KAAM,4CAFL,CAGD,KAAM,IAHL,CAID,kBAAmB,KAJlB,CAKD,eAAgB,KALf,CAMD,kBAAmB,KANlB,CAAL,EASA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,6BAFG,CAGH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAHN,CAOH,YAAa,iCAPV,CAQH,KAAM,KAAK,SAAL,CAAe,CACjB,SAAU,QAAV,CAAqB,QADJ,CAAf,CARH,CAAP,EAWG,IAXH,CAWQ,cAAQ,CACZ,KAAK,KAAL,GACA,MAAM,IAAN,CAAW,QAAX,CACH,CAdD,EAcG,IAdH,CAcQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,KAJL,CAAL,CAMH,CA1BD,CA2BH,C,2CAEU,CACP,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,2BAFG,CAGH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAHN,CAOH,YAAa,iCAPV,CAQH,KAAM,KAAK,SAAL,CAAe,CACjB,SAAU,QAAV,CAAqB,QADJ,CAEjB,GAAI,SAAS,QAAT,EAFa,CAAf,CARH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,MAAM,IAAN,CAAW,QAAX,CAAqB,aAAO,CACxB,GAAI,GAAJ,CAAS,OACT,GAAM,aAAc,EAAE,eAAF,EAAmB,IAAnB,gBAAuC,KAAK,QAA5C,OAA0D,MAA1D,EAApB,CACA,YAAY,QAAZ,CAAqB,iBAArB,EAAwC,KAAxC,CAA8C,IAA9C,EAAoD,KAApD,CAA0D,UAAM,CAC5D,YAAY,WAAZ,CAAwB,iBAAxB,EAA2C,OAA3C,EACH,CAFD,CAGH,CAND,CAOH,CApBD,EAoBG,IApBH,CAoBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,KAJL,CAAL,CAMH,CAhCD,CAiCH,C;;ACjhBL,a,8oBAqBM,iB,YACF,2BAAc,wCACV,KAAK,UAAL,CAAkB,IACrB,C,8DAEK,CACF,KAAK,cAAL,GACA,KAAK,UAAL,EACH,C,0CAEQ,M,CAAQ,CACb,EAAE,QAAF,EAAY,IAAZ,CAAiB,iBAAjB,EAAoC,MAApC,GACA,GAAI,CAAC,EAAE,MAAF,CAAS,KAAK,UAAd,CAAL,CAAgC,KAAK,UAAL,CAAgB,WAAhB,CAA4B,QAA5B,EAEhC,GAAI,aAAc,EAAE,eAAF,EAAmB,IAAnB,CAAwB,aAAxB,CAAlB,CACA,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,QAA5B,CAAsC,CAClC,GAAM,WAAY,OAAO,IAAP,CAAY,4BAAZ,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CACA,eAAiB,WAAjB,CAA+B,WAClC,CAED,GAAI,WAAY,kFAAhB,CAEA,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,WAAa,iPAEhB,CAED,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,WAAa,kGAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,WAAa,kIAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,eAA5B,CAA6C,CACzC,WAAa,8HAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,WAAa,+FAC4C,YAAY,MAAZ,CAAmB,SAD/D,CAC0E,kBAD1E,CAC+F,WAD/F,CAC6G,6MAE7H,CAED,GAAI,YAAY,WAAZ,CAAwB,aAAxB,EAAyC,YAAY,WAAZ,CAAwB,WAArE,CAAkF,CAC9E,WAAa,2BAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,WAAa,4HAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,WAAa,0HAChB,CAED,WAAa,OAAb,CACA,MAAO,UACV,C,+CAEY,gBACT,EAAE,4BAAF,EAAgC,EAAhC,CAAmC,WAAnC,CAAgD,eAAS,CACrD,MAAM,cAAN,GACA,GAAI,EAAE,QAAF,EAAY,IAAZ,CAAiB,iBAAjB,EAAoC,EAApC,CAAuC,UAAvC,CAAJ,CAAwD,CACpD,EAAE,MAAF,EAAU,OAAV,CAAkB,OAAlB,EACA,MACH,CACD,MAAK,QAAL,CAAc,KAAd,CACH,CAPD,EAQA,EAAE,0BAAF,EAA8B,EAA9B,CAAiC,aAAjC,CAAgD,eAAS,CACrD,MAAK,QAAL,CAAc,KAAd,CACH,CAFD,CAGH,C,0CAEQ,K,CAAO,iBACZ,GAAM,QAAS,EAAE,MAAM,MAAR,EAAgB,OAAhB,CAAwB,IAAxB,CAAf,CACA,GAAM,MAAO,EAAE,KAAK,QAAL,CAAc,MAAd,CAAF,CAAb,CAEA,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,UAA5B,CAAwC,OACxC,MAAM,cAAN,GAEA,EAAE,IAAF,EAAQ,QAAR,CAAiB,MAAjB,EACA,EAAE,IAAF,EAAQ,IAAR,CAAa,WAAb,CAA0B,EAAE,MAAM,MAAR,CAA1B,EAA2C,IAA3C,GAAkD,GAAlD,CAAsD,CAClD,SAAU,UADwC,CAElD,KAAM,MAAM,KAAN,CAAc,GAF8B,CAGlD,IAAK,MAAM,KAHuC,CAAtD,EAMA,KAAK,UAAL,CAAkB,MAAlB,CACA,KAAK,UAAL,CAAgB,QAAhB,CAAyB,QAAzB,EAGA,GAAM,SAAU,GAAI,aAAJ,CAAiB,MAAjB,CAAyB,IAAzB,CAAhB,CACA,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,EAAE,IAAF,EAAQ,IAAR,CAAa,wBAAb,EAAuC,MAAvC,GAAgD,EAAhD,CAAmD,OAAnD,CAA4D,WAAK,CAC7D,EAAE,cAAF,GACA,QAAQ,IAAR,EACH,CAHD,EAIA,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,EAAE,IAAF,EAAQ,IAAR,CAAa,wBAAb,EAAuC,MAAvC,GAAgD,EAAhD,CAAmD,OAAnD,CAA4D,WAAK,CAC7D,EAAE,cAAF,GACA,QAAQ,IAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,QAA5B,CAAsC,CAClC,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,WAA3C,CAAuD,QAAvD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,MAA3C,GAAoD,EAApD,CAAuD,OAAvD,CAAgE,WAAK,CACjE,EAAE,cAAF,GACA,QAAQ,QAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,eAA5B,CAA6C,CACzC,GAAI,EAAE,OAAF,CAAU,CAAC,iBAAD,CAAoB,kBAApB,CAAwC,oBAAxC,CAAV,CAAyE,OAAO,IAAP,CAAY,MAAZ,CAAzE,EAA8F,MAA9F,CAAuG,CAA3G,CAA8G,CAC1G,EAAE,IAAF,EAAQ,IAAR,CAAa,8BAAb,EAA6C,WAA7C,CAAyD,QAAzD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,8BAAb,EAA6C,MAA7C,GAAsD,EAAtD,CAAyD,OAAzD,CAAkE,WAAK,CACnE,EAAE,cAAF,GACA,QAAQ,UAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,MAA5B,CAAoC,CAChC,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,WAA3C,CAAuD,QAAvD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,MAA3C,GAAoD,EAApD,CAAuD,OAAvD,CAAgE,WAAK,CACjE,EAAE,cAAF,GACA,QAAQ,QAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,EAAE,MAAF,EAAU,MAAV,GAAmB,EAAnB,CAAsB,OAAtB,CAA+B,eAAS,CACpC,GAAG,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,oBAAnB,CAAH,CAA6C,CACzC,MAAM,cAAN,GACA,MACH,CACD,EAAE,IAAF,EAAQ,MAAR,GAAiB,MAAjB,GACA,GAAG,CAAC,EAAE,MAAF,CAAS,OAAK,UAAd,CAAJ,CAA+B,OAAK,UAAL,CAAgB,WAAhB,CAA4B,QAA5B,CAClC,CAPD,CAQH,C,uDAEgB,CACb,EAAE,iCAAF,EAAqC,EAArC,CAAwC,OAAxC,CAAiD,SAAU,KAAV,CAAiB,CAC9D,MAAM,cAAN,GAEA,GAAM,MAAO,EAAE,IAAF,EAAQ,MAAR,GAAiB,IAAjB,CAAsB,MAAtB,GAAiC,EAA9C,CACA,GAAM,MAAO,EAAE,IAAF,EAAQ,MAAR,GAAiB,IAAjB,CAAsB,MAAtB,GAAiC,EAA9C,CAEA,OAAO,QAAP,CAAgB,IAAhB,CAAuB,mBAAmB,KAAO,IAA1B,CAAvB,CACA,MAAM,IAAN,EACH,CARD,CASH,C,+BAGL,OAAO,WAAP,CAAqB,GAAI,iBAAzB;AC1MA,a,q3BAqBM,Y,YACF,sBAAc,mCACV,KAAK,IAAL,CAAU,KAAK,UAAL,EAAV,CACH,C,0DAEI,I,CAAM,I,CAAM,gBACb,GAAI,EAAE,WAAF,CAAc,IAAd,CAAJ,CAAyB,CACrB,KAAO,KAAK,UAAL,EACV,CAED,KAAK,MAAL,CAAY,IAAZ,EACA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAK,YAAY,IAAZ,CAAiB,aAFnB,CAGH,QAAS,CACL,eAAgB,YAAY,IAAZ,CAAiB,SAD5B,CAHN,CAMH,KAAM,CACF,UAAW,IADT,CANH,CAAP,EASG,IATH,CASQ,cAAQ,CACZ,MAAK,MAAL,CAAY,KAAZ,EACA,EAAE,aAAF,EAAiB,OAAjB,CAAyB,EAAzB,EAA6B,IAA7B,CAAkC,IAAlC,EAAwC,SAAxC,CAAkD,EAAlD,CAAsD,UAAM,CACxD,YAAY,GAAZ,GACA,MAAK,iBAAL,GACA,MAAK,eAAL,GACA,MAAK,UAAL,GACA,MAAK,SAAL,GACA,MAAK,iBAAL,GACA,MAAK,SAAL,GACA,GAAI,EAAE,UAAF,CAAa,IAAb,CAAJ,CAAwB,CACpB,MAAO,OACV,CACJ,CAXD,EAYA,EAAE,iBAAF,EAAqB,OAArB,GAEA,GAAI,OAAO,MAAP,mCAAO,KAAP,KAAiB,QAArB,CAA+B,CAC3B,MAAM,aAAN,CAAoB,SAAS,cAAT,CAAwB,oBAAxB,CAApB,CACH,CACJ,CA5BD,EA4BG,IA5BH,CA4BQ,eAAS,CACb,MAAK,MAAL,CAAY,KAAZ,EACA,GAAI,EAAE,UAAF,CAAa,IAAb,CAAJ,CAAwB,CACpB,MAAO,MAAK,GAAI,MAAJ,CAAU,8BAAV,CAAL,CACV,CAED,GAAK,OAAS,EAAT,EAAe,OAAS,GAAzB,EAAiC,MAAM,MAAN,GAAiB,GAAtD,CAA2D,CACvD,MAAO,OAAK,IAAL,CAAU,EAAV,CAAc,IAAd,CACV,CAED,KAAK,CACD,KAAM,OADL,CAED,MAAO,YAFN,CAGD,KAAM,MAAM,YAAN,CAAmB,MAAnB,CAA0B,CAA1B,EAA6B,MAA7B,EAAuC,+EAH5C,CAAL,EAKA,QAAQ,KAAR,CAAc,KAAd,CACH,CA5CD,CA6CH,C,sCAEM,I,CAAM,CACT,GAAI,IAAJ,CAAS,CACL,EAAE,eAAF,EAAmB,MAAnB,CAA0B,GAA1B,CACH,CAFD,IAEO,CACH,EAAE,eAAF,EAAmB,OAAnB,CAA2B,GAA3B,CACH,CACJ,C,6DAEmB,iBAChB,EAAE,+BAAF,EAAmC,MAAnC,GAA4C,EAA5C,CAA+C,OAA/C,CAAwD,UAAM,CAC1D,EAAE,+BAAF,EAAmC,QAAnC,CAA4C,SAA5C,EACA,OAAK,IAAL,EACH,CAHD,CAIH,C,+CAEY,CACT,EAAE,8BAAF,EAAkC,EAAlC,CAAqC,OAArC,CAA8C,eAAS,CACnD,MAAM,cAAN,EACH,CAFD,CAGH,C,6CAEW,CACR,EAAE,2BAAF,EAA+B,EAA/B,CAAkC,OAAlC,CAA2C,eAAS,CAChD,MAAM,cAAN,EACH,CAFD,CAGH,C,6DAEmB,CAChB,EAAE,oCAAF,EAAwC,EAAxC,CAA2C,WAA3C,CAAwD,eAAS,CAC7D,GAAI,aAAJ,GAAmB,cAAnB,EACH,CAFD,CAGH,C,yDAEiB,CACd,EAAE,4BAAF,EAAgC,MAAhC,GAAyC,EAAzC,CAA4C,OAA5C,CAAqD,UAAM,CACvD,GAAI,aAAJ,GAAmB,MAAnB,CAA0B,EAAE,eAAF,EAAmB,IAAnB,CAAwB,aAAxB,GAA0C,GAApE,CACH,CAFD,CAGH,C,6CAEW,CACV,EAAE,kBAAF,EAAsB,EAAtB,CAAyB,WAAzB,CAAsC,eAAS,CAC3C,GAAI,MAAM,KAAN,GAAgB,CAApB,CAAuB,CACnB,GAAI,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,IAAnB,GAA4B,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,gCAAnB,CAAhC,CAAsF,CAClF,GAAI,aAAJ,GAAmB,YAAnB,CAAgC,KAAhC,CACH,CAFD,IAEO,IAAI,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,IAAnB,GAA4B,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,mCAAnB,CAAhC,CAAyF,CAC5F,GAAI,aAAJ,GAAmB,eAAnB,CAAmC,KAAnC,CACH,CAED,GAAI,aAAJ,GAAmB,iBAAnB,EACH,CACJ,CAVD,CAWD,C,+CAEY,CACT,MAAO,oBAAmB,OAAO,QAAP,CAAgB,IAAhB,CAAqB,SAArB,CAA+B,CAA/B,CAAnB,CACV,C,0BAIL,OAAO,KAAP,CAAe,GAAI,YAAnB","file":"filemanager.min.js","sourcesContent":["\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass ActionsClass {\n    constructor(element, menu) {\n        this.element = element;\n        this.menu = menu;\n    }\n\n    destroy() {\n        this.element = undefined;\n    }\n\n    folder(path) {\n        let inputValue\n        if (path) {\n            inputValue = path\n        } else {\n            const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n            const currentName = decodeURIComponent(nameBlock.data('name'));\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n            if ($(this.element).data('type') === 'file') {\n                inputValue = currentPath;\n            } else {\n                inputValue = `${currentPath}${currentName}/`;\n            }\n        }\n\n        swal({\n            type: 'input',\n            title: 'Create Folder',\n            text: 'Please enter the path and folder name below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: inputValue\n        }, (val) => {\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/folder`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    path: val,\n                }),\n            }).done(data => {\n                swal.close();\n                Files.list();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n    }\n\n    move() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n        swal({\n            type: 'input',\n            title: 'Move File',\n            text: 'Please enter the new path for the file below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: `${currentPath}${currentName}`,\n        }, (val) => {\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/move`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${val}`,\n                }),\n            }).done(data => {\n                nameBlock.parent().addClass('warning').delay(200).fadeOut();\n                swal.close();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n\n    }\n\n    rename() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentLink = nameBlock.find('a');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const attachEditor = `\n            <input class=\"form-control input-sm\" type=\"text\" value=\"${currentName}\" />\n            <span class=\"input-loader\"><i class=\"fa fa-refresh fa-spin fa-fw\"></i></span>\n        `;\n\n        nameBlock.html(attachEditor);\n        const inputField = nameBlock.find('input');\n        const inputLoader = nameBlock.find('.input-loader');\n\n        inputField.focus();\n        inputField.on('blur keydown', e => {\n            // Save Field\n            if (\n                (e.type === 'keydown' && e.which === 27)\n                || e.type === 'blur'\n                || (e.type === 'keydown' && e.which === 13 && currentName === inputField.val())\n            ) {\n                if (!_.isEmpty(currentLink)) {\n                    nameBlock.html(currentLink);\n                } else {\n                    nameBlock.html(currentName);\n                }\n                inputField.remove();\n                ContextMenu.unbind().run();\n                return;\n            }\n\n            if (e.type === 'keydown' && e.which !== 13) return;\n\n            inputLoader.show();\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/rename`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${currentPath}${inputField.val()}`,\n                }),\n            }).done(data => {\n                nameBlock.attr('data-name', inputField.val());\n                if (!_.isEmpty(currentLink)) {\n                    let newLink = currentLink.attr('href');\n                    if (nameBlock.parent().data('type') !== 'folder') {\n                        newLink = newLink.substr(0, newLink.lastIndexOf('/')) + '/' + inputField.val();\n                    }\n                    currentLink.attr('href', newLink);\n                    nameBlock.html(\n                        currentLink.html(inputField.val())\n                    );\n                } else {\n                    nameBlock.html(inputField.val());\n                }\n                inputField.remove();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                nameBlock.addClass('has-error').delay(2000).queue(() => {\n                    nameBlock.removeClass('has-error').dequeue();\n                });\n                inputField.popover({\n                    animation: true,\n                    placement: 'top',\n                    content: error,\n                    title: 'Save Error'\n                }).popover('show');\n            }).always(() => {\n                inputLoader.remove();\n                ContextMenu.unbind().run();\n            });\n        });\n    }\n\n    copy() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n        swal({\n            type: 'input',\n            title: 'Copy File',\n            text: 'Please enter the new path for the copied file below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: `${currentPath}${currentName}`,\n        }, (val) => {\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/copy`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${val}`,\n                }),\n            }).done(data => {\n                swal({\n                    type: 'success',\n                    title: '',\n                    text: 'File successfully copied.'\n                });\n                Files.list();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n    }\n\n    download() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const fileName = decodeURIComponent(nameBlock.attr('data-name'));\n        const filePath = decodeURIComponent(nameBlock.data('path'));\n\n        window.location = `/server/${Pterodactyl.server.uuidShort}/files/download/${filePath}${fileName}`;\n    }\n\n    delete() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const delPath = decodeURIComponent(nameBlock.data('path'));\n        const delName = decodeURIComponent(nameBlock.data('name'));\n\n        swal({\n            type: 'warning',\n            title: '',\n            text: 'Are you sure you want to delete <code>' + delName + '</code>?',\n            html: true,\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true\n        }, () => {\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/delete`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    items: [`${delPath}${delName}`]\n                }),\n            }).done(data => {\n                nameBlock.parent().addClass('warning').delay(200).fadeOut();\n                swal({\n                    type: 'success',\n                    title: 'File Deleted'\n                });\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                swal({\n                    type: 'error',\n                    title: 'Whoops!',\n                    html: true,\n                    text: 'An error occurred while attempting to delete this file. Please try again.',\n                });\n            });\n        });\n    }\n\n    toggleMassActions() {\n        if ($('#file_listing input[type=\"checkbox\"]:checked').length) {\n            $('#mass_actions').removeClass('disabled');\n        } else {\n            $('#mass_actions').addClass('disabled');\n        }\n    }\n\n    toggleHighlight(event) {\n        const parent = $(event.currentTarget);\n        const item = $(event.currentTarget).find('input');\n\n        if($(item).is(':checked')) {\n            $(item).prop('checked', false);\n            parent.removeClass('warning').delay(200);\n        } else {\n            $(item).prop('checked', true);\n            parent.addClass('warning').delay(200);\n        }\n    }\n\n    highlightAll(event) {\n        let parent;\n        const item = $(event.currentTarget).find('input');\n\n        if($(item).is(':checked')) {\n          $('#file_listing input[type=checkbox]').prop('checked', false);\n          $('#file_listing input[data-action=\"addSelection\"]').each(function() {\n              parent = $(this).closest('tr');\n              parent.removeClass('warning').delay(200);\n          });\n        } else {\n          $('#file_listing input[type=checkbox]').prop('checked', true);\n          $('#file_listing input[data-action=\"addSelection\"]').each(function() {\n              parent = $(this).closest('tr');\n              parent.addClass('warning').delay(200);\n          });\n        }\n    }\n\n    deleteSelected() {\n        let selectedItems = [];\n        let selectedItemsElements = [];\n        let parent;\n        let nameBlock;\n        let delLocation;\n\n        $('#file_listing input[data-action=\"addSelection\"]:checked').each(function() {\n            parent = $(this).closest('tr');\n            nameBlock = $(parent).find('td[data-identifier=\"name\"]');\n            delLocation = decodeURIComponent(nameBlock.data('path')) + decodeURIComponent(nameBlock.data('name'));\n\n            selectedItems.push(delLocation);\n            selectedItemsElements.push(parent);\n        });\n\n        if (selectedItems.length != 0)\n        {\n            let formattedItems = \"\";\n            let i = 0;\n            $.each(selectedItems, function(key, value) {\n                formattedItems += (\"<code>\" + value + \"</code>, \");\n                i++;\n                return i < 5;\n            });\n\n            formattedItems = formattedItems.slice(0, -2);\n            if (selectedItems.length > 5) {\n                formattedItems += ', and ' + (selectedItems.length - 5) + ' other(s)';\n            }\n\n            swal({\n                type: 'warning',\n                title: '',\n                text: 'Are you sure you want to delete the following files: ' + formattedItems + '?',\n                html: true,\n                showCancelButton: true,\n                showConfirmButton: true,\n                closeOnConfirm: false,\n                showLoaderOnConfirm: true\n            }, () => {\n                $.ajax({\n                    type: 'POST',\n                    headers: {\n                        'X-Access-Token': Pterodactyl.server.daemonSecret,\n                        'X-Access-Server': Pterodactyl.server.uuid,\n                    },\n                    contentType: 'application/json; charset=utf-8',\n                    url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/delete`,\n                    timeout: 10000,\n                    data: JSON.stringify({\n                        items: selectedItems\n                    }),\n                }).done(data => {\n                    $('#file_listing input:checked').each(function() {\n                        $(this).prop('checked', false);\n                    });\n\n                    $.each(selectedItemsElements, function() {\n                        $(this).addClass('warning').delay(200).fadeOut();\n                    })\n\n                    swal({\n                        type: 'success',\n                        title: 'Files Deleted'\n                    });\n                }).fail(jqXHR => {\n                    console.error(jqXHR);\n                    swal({\n                        type: 'error',\n                        title: 'Whoops!',\n                        html: true,\n                        text: 'An error occurred while attempting to delete these files. Please try again.',\n                    });\n                });\n            });\n        } else {\n            swal({\n              type: 'warning',\n              title: '',\n              text: 'Please select files/folders to delete.',\n            });\n        }\n    }\n\n    decompress() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const compPath = decodeURIComponent(nameBlock.data('path'));\n        const compName = decodeURIComponent(nameBlock.data('name'));\n\n        swal({\n            title: '<i class=\"fa fa-refresh fa-spin\"></i> Decompressing...',\n            text: 'This might take a few seconds to complete.',\n            html: true,\n            allowOutsideClick: false,\n            allowEscapeKey: false,\n            showConfirmButton: false,\n        });\n\n        $.ajax({\n            type: 'POST',\n            url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/decompress`,\n            headers: {\n                'X-Access-Token': Pterodactyl.server.daemonSecret,\n                'X-Access-Server': Pterodactyl.server.uuid,\n            },\n            contentType: 'application/json; charset=utf-8',\n            data: JSON.stringify({\n                files: `${compPath}${compName}`\n            })\n        }).done(data => {\n            swal.close();\n            Files.list(compPath);\n        }).fail(jqXHR => {\n            console.error(jqXHR);\n            var error = 'An error occurred while trying to process this request.';\n            if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                error = jqXHR.responseJSON.error;\n            }\n            swal({\n                type: 'error',\n                title: 'Whoops!',\n                html: true,\n                text: error\n            });\n        });\n    }\n\n    compress() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const compPath = decodeURIComponent(nameBlock.data('path'));\n        const compName = decodeURIComponent(nameBlock.data('name'));\n\n        $.ajax({\n            type: 'POST',\n            url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/compress`,\n            headers: {\n                'X-Access-Token': Pterodactyl.server.daemonSecret,\n                'X-Access-Server': Pterodactyl.server.uuid,\n            },\n            contentType: 'application/json; charset=utf-8',\n            data: JSON.stringify({\n                files: `${compPath}${compName}`,\n                to: compPath.toString()\n            })\n        }).done(data => {\n            Files.list(compPath, err => {\n                if (err) return;\n                const fileListing = $('#file_listing').find(`[data-name=\"${data.saved_as}\"]`).parent();\n                fileListing.addClass('success pulsate').delay(3000).queue(() => {\n                    fileListing.removeClass('success pulsate').dequeue();\n                });\n            });\n        }).fail(jqXHR => {\n            console.error(jqXHR);\n            var error = 'An error occurred while trying to process this request.';\n            if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                error = jqXHR.responseJSON.error;\n            }\n            swal({\n                type: 'error',\n                title: 'Whoops!',\n                html: true,\n                text: error\n            });\n        });\n    }\n}\n","\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass ContextMenuClass {\n    constructor() {\n        this.activeLine = null;\n    }\n\n    run() {\n        this.directoryClick();\n        this.rightClick();\n    }\n\n    makeMenu(parent) {\n        $(document).find('#fileOptionMenu').remove();\n        if (!_.isNull(this.activeLine)) this.activeLine.removeClass('active');\n\n        let newFilePath = $('#file_listing').data('current-dir');\n        if (parent.data('type') === 'folder') {\n            const nameBlock = parent.find('td[data-identifier=\"name\"]');\n            const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n            newFilePath = `${currentPath}${currentName}`;\n        }\n\n        let buildMenu = '<ul id=\"fileOptionMenu\" class=\"dropdown-menu\" role=\"menu\" style=\"display:none\" >';\n\n        if (Pterodactyl.permissions.moveFiles) {\n            buildMenu += '<li data-action=\"rename\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-pencil-square-o\"></i> Rename</a></li> \\\n                          <li data-action=\"move\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-arrow-right\"></i> Move</a></li>';\n        }\n\n        if (Pterodactyl.permissions.copyFiles) {\n            buildMenu += '<li data-action=\"copy\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-clone\"></i> Copy</a></li>';\n        }\n\n        if (Pterodactyl.permissions.compressFiles) {\n            buildMenu += '<li data-action=\"compress\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-file-archive-o\"></i> Compress</a></li>';\n        }\n\n        if (Pterodactyl.permissions.decompressFiles) {\n            buildMenu += '<li data-action=\"decompress\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-expand\"></i> Decompress</a></li>';\n        }\n\n        if (Pterodactyl.permissions.createFiles) {\n            buildMenu += '<li class=\"divider\"></li> \\\n                          <li data-action=\"file\"><a href=\"/server/'+ Pterodactyl.server.uuidShort +'/files/add/?dir=' + newFilePath + '\" class=\"text-muted\"><i class=\"fa fa-fw fa-plus\"></i> New File</a></li> \\\n                          <li data-action=\"folder\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-folder\"></i> New Folder</a></li>';\n        }\n\n        if (Pterodactyl.permissions.downloadFiles || Pterodactyl.permissions.deleteFiles) {\n            buildMenu += '<li class=\"divider\"></li>';\n        }\n\n        if (Pterodactyl.permissions.downloadFiles) {\n            buildMenu += '<li data-action=\"download\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-download\"></i> Download</a></li>';\n        }\n\n        if (Pterodactyl.permissions.deleteFiles) {\n            buildMenu += '<li data-action=\"delete\" class=\"bg-danger\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-trash-o\"></i> Delete</a></li>';\n        }\n\n        buildMenu += '</ul>';\n        return buildMenu;\n    }\n\n    rightClick() {\n        $('[data-action=\"toggleMenu\"]').on('mousedown', event => {\n            event.preventDefault();\n            if ($(document).find('#fileOptionMenu').is(':visible')) {\n                $('body').trigger('click');\n                return;\n            }\n            this.showMenu(event);\n        });\n        $('#file_listing > tbody td').on('contextmenu', event => {\n            this.showMenu(event);\n        });\n    }\n\n    showMenu(event) {\n        const parent = $(event.target).closest('tr');\n        const menu = $(this.makeMenu(parent));\n\n        if (parent.data('type') === 'disabled') return;\n        event.preventDefault();\n\n        $(menu).appendTo('body');\n        $(menu).data('invokedOn', $(event.target)).show().css({\n            position: 'absolute',\n            left: event.pageX - 150,\n            top: event.pageY,\n        });\n\n        this.activeLine = parent;\n        this.activeLine.addClass('active');\n\n        // Handle Events\n        const Actions = new ActionsClass(parent, menu);\n        if (Pterodactyl.permissions.moveFiles) {\n            $(menu).find('li[data-action=\"move\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.move();\n            });\n            $(menu).find('li[data-action=\"rename\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.rename();\n            });\n        }\n\n        if (Pterodactyl.permissions.copyFiles) {\n            $(menu).find('li[data-action=\"copy\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.copy();\n            });\n        }\n\n        if (Pterodactyl.permissions.compressFiles) {\n            if (parent.data('type') === 'folder') {\n                $(menu).find('li[data-action=\"compress\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"compress\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.compress();\n            });\n        }\n\n        if (Pterodactyl.permissions.decompressFiles) {\n            if (_.without(['application/zip', 'application/gzip', 'application/x-gzip'], parent.data('mime')).length < 3) {\n                $(menu).find('li[data-action=\"decompress\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"decompress\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.decompress();\n            });\n        }\n\n        if (Pterodactyl.permissions.createFiles) {\n            $(menu).find('li[data-action=\"folder\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.folder();\n            });\n        }\n\n        if (Pterodactyl.permissions.downloadFiles) {\n            if (parent.data('type') === 'file') {\n                $(menu).find('li[data-action=\"download\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"download\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.download();\n            });\n        }\n\n        if (Pterodactyl.permissions.deleteFiles) {\n            $(menu).find('li[data-action=\"delete\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.delete();\n            });\n        }\n\n        $(window).unbind().on('click', event => {\n            if($(event.target).is('.disable-menu-hide')) {\n                event.preventDefault();\n                return;\n            }\n            $(menu).unbind().remove();\n            if(!_.isNull(this.activeLine)) this.activeLine.removeClass('active');\n        });\n    }\n\n    directoryClick() {\n        $('a[data-action=\"directory-view\"]').on('click', function (event) {\n            event.preventDefault();\n\n            const path = $(this).parent().data('path') || '';\n            const name = $(this).parent().data('name') || '';\n\n            window.location.hash = encodeURIComponent(path + name);\n            Files.list();\n        });\n    }\n}\n\nwindow.ContextMenu = new ContextMenuClass;\n","\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass FileManager {\n    constructor() {\n        this.list(this.decodeHash());\n    }\n\n    list(path, next) {\n        if (_.isUndefined(path)) {\n            path = this.decodeHash();\n        }\n\n        this.loader(true);\n        $.ajax({\n            type: 'POST',\n            url: Pterodactyl.meta.directoryList,\n            headers: {\n                'X-CSRF-Token': Pterodactyl.meta.csrftoken,\n            },\n            data: {\n                directory: path,\n            },\n        }).done(data => {\n            this.loader(false);\n            $('#load_files').slideUp(10).html(data).slideDown(10, () => {\n                ContextMenu.run();\n                this.reloadFilesButton();\n                this.addFolderButton();\n                this.selectItem();\n                this.selectAll();\n                this.selectiveDeletion();\n                this.selectRow();\n                if (_.isFunction(next)) {\n                    return next();\n                }\n            });\n            $('#internal_alert').slideUp();\n\n            if (typeof Siofu === 'object') {\n                Siofu.listenOnInput(document.getElementById(\"files_touch_target\"));\n            }\n        }).fail(jqXHR => {\n            this.loader(false);\n            if (_.isFunction(next)) {\n                return next(new Error('Failed to load file listing.'));\n            }\n\n            if ((path !== '' && path !== '/') && jqXHR.status === 404) {\n                return this.list('', next);\n            }\n\n            swal({\n                type: 'error',\n                title: 'File Error',\n                text: jqXHR.responseJSON.errors[0].detail || 'An error occurred while attempting to process this request. Please try again.',\n            });\n            console.error(jqXHR);\n        });\n    }\n\n    loader(show) {\n        if (show){\n            $('.file-overlay').fadeIn(100);\n        } else {\n            $('.file-overlay').fadeOut(100);\n        }\n    }\n\n    reloadFilesButton() {\n        $('i[data-action=\"reload-files\"]').unbind().on('click', () => {\n            $('i[data-action=\"reload-files\"]').addClass('fa-spin');\n            this.list();\n        });\n    }\n\n    selectItem() {\n        $('[data-action=\"addSelection\"]').on('click', event => {\n            event.preventDefault();\n        });\n    }\n\n    selectAll() {\n        $('[data-action=\"selectAll\"]').on('click', event => {\n            event.preventDefault();\n        });\n    }\n\n    selectiveDeletion() {\n        $('[data-action=\"selective-deletion\"]').on('mousedown', event => {\n            new ActionsClass().deleteSelected();\n        });\n    }\n\n    addFolderButton() {\n        $('[data-action=\"add-folder\"]').unbind().on('click', () => {\n            new ActionsClass().folder($('#file_listing').data('current-dir') || '/');\n        })\n    }\n\n    selectRow() {\n      $('#file_listing tr').on('mousedown', event => {\n          if (event.which === 1) {\n              if ($(event.target).is('th') || $(event.target).is('input[data-action=\"selectAll\"]')) {\n                  new ActionsClass().highlightAll(event);\n              } else if ($(event.target).is('td') || $(event.target).is('input[data-action=\"addSelection\"]')) {\n                  new ActionsClass().toggleHighlight(event);\n              }\n\n              new ActionsClass().toggleMassActions();\n          }\n      });\n    }\n\n    decodeHash() {\n        return decodeURIComponent(window.location.hash.substring(1));\n    }\n\n}\n\nwindow.Files = new FileManager;\n"]}
\ No newline at end of file
+{"version":3,"sources":["src/actions.js","src/contextmenu.js","src/index.js"],"names":[],"mappings":"AAAA,a,8oBAqBM,a,YACF,sBAAY,OAAZ,CAAqB,IAArB,CAA2B,oCACvB,KAAK,OAAL,CAAe,OAAf,CACA,KAAK,IAAL,CAAY,IACf,C,kEAES,CACN,KAAK,OAAL,CAAe,SAClB,C,sCAEM,I,CAAM,CACT,GAAI,kBAAJ,CACA,GAAI,IAAJ,CAAU,CACN,WAAa,IAChB,CAFD,IAEO,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,GAAI,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,MAArB,IAAiC,MAArC,CAA6C,CACzC,WAAa,WAChB,CAFD,IAEO,CACH,cAAgB,WAAhB,CAA8B,WAA9B,IACH,CACJ,CAED,KAAK,CACD,KAAM,OADL,CAED,MAAO,eAFN,CAGD,KAAM,8CAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,WAAY,UARX,CAAL,CASG,SAAC,GAAD,CAAS,CACR,GAAI,MAAQ,KAAZ,CAAmB,CACf,MAAO,MACV,CAED,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,KAAM,GADW,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,KAAK,KAAL,GACA,MAAM,IAAN,EACH,CAfD,EAeG,IAfH,CAeQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA1BD,CA2BH,CAzCD,CA0CH,C,mCAEM,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,KAAK,CACD,KAAM,OADL,CAED,MAAO,WAFN,CAGD,KAAM,+CAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,cAAe,WAAf,CAA6B,WAR5B,CAAL,CASG,SAAC,GAAD,CAAS,CACR,GAAI,MAAQ,KAAZ,CAAmB,CACf,MAAO,MACV,CAED,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,uBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,GAFU,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,UAAU,MAAV,GAAmB,QAAnB,CAA4B,SAA5B,EAAuC,KAAvC,CAA6C,GAA7C,EAAkD,OAAlD,GACA,KAAK,KAAL,EACH,CAhBD,EAgBG,IAhBH,CAgBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA3BD,CA4BH,CA1CD,CA4CH,C,uCAEQ,CACL,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,UAAU,IAAV,CAAe,GAAf,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,uFACwD,WADxD,4GAAN,CAKA,UAAU,IAAV,CAAe,YAAf,EACA,GAAM,YAAa,UAAU,IAAV,CAAe,OAAf,CAAnB,CACA,GAAM,aAAc,UAAU,IAAV,CAAe,eAAf,CAApB,CAEA,WAAW,KAAX,GACA,WAAW,EAAX,CAAc,cAAd,CAA8B,WAAK,CAE/B,GACK,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAArC,EACG,EAAE,IAAF,GAAW,MADd,EAEI,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAApC,EAA0C,cAAgB,WAAW,GAAX,EAHlE,CAIE,CACE,GAAI,CAAC,EAAE,OAAF,CAAU,WAAV,CAAL,CAA6B,CACzB,UAAU,IAAV,CAAe,WAAf,CACH,CAFD,IAEO,CACH,UAAU,IAAV,CAAe,WAAf,CACH,CACD,WAAW,MAAX,GACA,YAAY,MAAZ,GAAqB,GAArB,GACA,MACH,CAED,GAAI,EAAE,IAAF,GAAW,SAAX,EAAwB,EAAE,KAAF,GAAY,EAAxC,CAA4C,OAE5C,YAAY,IAAZ,GACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,WAAP,CAAqB,WAAW,GAAX,EAFJ,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,UAAU,IAAV,CAAe,WAAf,CAA4B,WAAW,GAAX,EAA5B,EACA,GAAI,CAAC,EAAE,OAAF,CAAU,WAAV,CAAL,CAA6B,CACzB,GAAI,SAAU,YAAY,IAAZ,CAAiB,MAAjB,CAAd,CACA,GAAI,UAAU,MAAV,GAAmB,IAAnB,CAAwB,MAAxB,IAAoC,QAAxC,CAAkD,CAC9C,QAAU,QAAQ,MAAR,CAAe,CAAf,CAAkB,QAAQ,WAAR,CAAoB,GAApB,CAAlB,EAA8C,GAA9C,CAAoD,WAAW,GAAX,EACjE,CACD,YAAY,IAAZ,CAAiB,MAAjB,CAAyB,OAAzB,EACA,UAAU,IAAV,CACI,YAAY,IAAZ,CAAiB,WAAW,GAAX,EAAjB,CADJ,CAGH,CATD,IASO,CACH,UAAU,IAAV,CAAe,WAAW,GAAX,EAAf,CACH,CACD,WAAW,MAAX,EACH,CA5BD,EA4BG,IA5BH,CA4BQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,UAAU,QAAV,CAAmB,WAAnB,EAAgC,KAAhC,CAAsC,IAAtC,EAA4C,KAA5C,CAAkD,UAAM,CACpD,UAAU,WAAV,CAAsB,WAAtB,EAAmC,OAAnC,EACH,CAFD,EAGA,WAAW,OAAX,CAAmB,CACf,UAAW,IADI,CAEf,UAAW,KAFI,CAGf,QAAS,KAHM,CAIf,MAAO,YAJQ,CAAnB,EAKG,OALH,CAKW,MALX,CAMH,CA3CD,EA2CG,MA3CH,CA2CU,UAAM,CACZ,YAAY,MAAZ,GACA,YAAY,MAAZ,GAAqB,GAArB,EACH,CA9CD,CA+CH,CArED,CAsEH,C,mCAEM,CACH,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CAEA,KAAK,CACD,KAAM,OADL,CAED,MAAO,WAFN,CAGD,KAAM,sDAHL,CAID,iBAAkB,IAJjB,CAKD,kBAAmB,IALlB,CAMD,eAAgB,KANf,CAOD,oBAAqB,IAPpB,CAQD,cAAe,WAAf,CAA6B,WAR5B,CAAL,CASG,SAAC,GAAD,CAAS,CACR,GAAI,MAAQ,KAAZ,CAAmB,CACf,MAAO,MACV,CAED,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,uBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,QAAS,WAAT,CAAuB,WADN,CAEjB,MAAO,GAFU,CAAf,CATH,CAAP,EAaG,IAbH,CAaQ,cAAQ,CACZ,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,2BAHL,CAAL,EAKA,MAAM,IAAN,EACH,CApBD,EAoBG,IApBH,CAoBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,EAFN,CAGD,KAAM,KAHL,CAAL,CAKH,CA/BD,CAgCH,CA9CD,CA+CH,C,2CAEU,CACP,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,OAAO,QAAP,YAA6B,YAAY,MAAZ,CAAmB,SAAhD,oBAA4E,QAA5E,CAAuF,QAC1F,C,wCAEQ,CACL,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,SAAU,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAhB,CACA,GAAM,SAAU,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAhB,CAEA,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,yCAA2C,OAA3C,CAAqD,UAH1D,CAID,KAAM,IAJL,CAKD,iBAAkB,IALjB,CAMD,kBAAmB,IANlB,CAOD,eAAgB,KAPf,CAQD,oBAAqB,IARpB,CAAL,CASG,UAAM,CACL,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,MAAO,IAAI,OAAJ,CAAc,OAAd,CADU,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,UAAU,MAAV,GAAmB,QAAnB,CAA4B,SAA5B,EAAuC,KAAvC,CAA6C,GAA7C,EAAkD,OAAlD,GACA,KAAK,CACD,KAAM,SADL,CAED,MAAO,cAFN,CAAL,CAIH,CAlBD,EAkBG,IAlBH,CAkBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,2EAJL,CAAL,CAMH,CA1BD,CA2BH,CArCD,CAsCH,C,6DAEmB,CAChB,GAAI,EAAE,8CAAF,EAAkD,MAAtD,CAA8D,CAC1D,EAAE,eAAF,EAAmB,WAAnB,CAA+B,UAA/B,CACH,CAFD,IAEO,CACH,EAAE,eAAF,EAAmB,QAAnB,CAA4B,UAA5B,CACH,CACJ,C,wDAEe,K,CAAO,CACnB,GAAM,QAAS,EAAE,MAAM,aAAR,CAAf,CACA,GAAM,MAAO,EAAE,MAAM,aAAR,EAAuB,IAAvB,CAA4B,OAA5B,CAAb,CAEA,GAAG,EAAE,IAAF,EAAQ,EAAR,CAAW,UAAX,CAAH,CAA2B,CACvB,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,KAAxB,EACA,OAAO,WAAP,CAAmB,SAAnB,EAA8B,KAA9B,CAAoC,GAApC,CACH,CAHD,IAGO,CACH,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,IAAxB,EACA,OAAO,QAAP,CAAgB,SAAhB,EAA2B,KAA3B,CAAiC,GAAjC,CACH,CACJ,C,kDAEY,K,CAAO,CAChB,GAAI,cAAJ,CACA,GAAM,MAAO,EAAE,MAAM,aAAR,EAAuB,IAAvB,CAA4B,OAA5B,CAAb,CAEA,GAAG,EAAE,IAAF,EAAQ,EAAR,CAAW,UAAX,CAAH,CAA2B,CACzB,EAAE,oCAAF,EAAwC,IAAxC,CAA6C,SAA7C,CAAwD,KAAxD,EACA,EAAE,iDAAF,EAAqD,IAArD,CAA0D,UAAW,CACjE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,OAAO,WAAP,CAAmB,SAAnB,EAA8B,KAA9B,CAAoC,GAApC,CACH,CAHD,CAID,CAND,IAMO,CACL,EAAE,oCAAF,EAAwC,IAAxC,CAA6C,SAA7C,CAAwD,IAAxD,EACA,EAAE,iDAAF,EAAqD,IAArD,CAA0D,UAAW,CACjE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,OAAO,QAAP,CAAgB,SAAhB,EAA2B,KAA3B,CAAiC,GAAjC,CACH,CAHD,CAID,CACJ,C,uDAEgB,CACb,GAAI,eAAgB,EAApB,CACA,GAAI,uBAAwB,EAA5B,CACA,GAAI,cAAJ,CACA,GAAI,iBAAJ,CACA,GAAI,mBAAJ,CAEA,EAAE,yDAAF,EAA6D,IAA7D,CAAkE,UAAW,CACzE,OAAS,EAAE,IAAF,EAAQ,OAAR,CAAgB,IAAhB,CAAT,CACA,UAAY,EAAE,MAAF,EAAU,IAAV,CAAe,4BAAf,CAAZ,CACA,YAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,EAA6C,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAA3D,CAEA,cAAc,IAAd,CAAmB,WAAnB,EACA,sBAAsB,IAAtB,CAA2B,MAA3B,CACH,CAPD,EASA,GAAI,cAAc,MAAd,EAAwB,CAA5B,CACA,CACI,GAAI,gBAAiB,EAArB,CACA,GAAI,GAAI,CAAR,CACA,EAAE,IAAF,CAAO,aAAP,CAAsB,SAAS,GAAT,CAAc,KAAd,CAAqB,CACvC,gBAAmB,SAAW,KAAX,CAAmB,WAAtC,CACA,IACA,MAAO,GAAI,CACd,CAJD,EAMA,eAAiB,eAAe,KAAf,CAAqB,CAArB,CAAwB,CAAC,CAAzB,CAAjB,CACA,GAAI,cAAc,MAAd,CAAuB,CAA3B,CAA8B,CAC1B,gBAAkB,UAAY,cAAc,MAAd,CAAuB,CAAnC,EAAwC,WAC7D,CAED,KAAK,CACD,KAAM,SADL,CAED,MAAO,EAFN,CAGD,KAAM,wDAA0D,cAA1D,CAA2E,GAHhF,CAID,KAAM,IAJL,CAKD,iBAAkB,IALjB,CAMD,kBAAmB,IANlB,CAOD,eAAgB,KAPf,CAQD,oBAAqB,IARpB,CAAL,CASG,UAAM,CACL,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAFN,CAMH,YAAa,iCANV,CAOH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,yBAPG,CAQH,QAAS,KARN,CASH,KAAM,KAAK,SAAL,CAAe,CACjB,MAAO,aADU,CAAf,CATH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,EAAE,6BAAF,EAAiC,IAAjC,CAAsC,UAAW,CAC7C,EAAE,IAAF,EAAQ,IAAR,CAAa,SAAb,CAAwB,KAAxB,CACH,CAFD,EAIA,EAAE,IAAF,CAAO,qBAAP,CAA8B,UAAW,CACrC,EAAE,IAAF,EAAQ,QAAR,CAAiB,SAAjB,EAA4B,KAA5B,CAAkC,GAAlC,EAAuC,OAAvC,EACH,CAFD,EAIA,KAAK,CACD,KAAM,SADL,CAED,MAAO,eAFN,CAAL,CAIH,CAzBD,EAyBG,IAzBH,CAyBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,6EAJL,CAAL,CAMH,CAjCD,CAkCH,CA5CD,CA6CH,CA5DD,IA4DO,CACH,KAAK,CACH,KAAM,SADH,CAEH,MAAO,EAFJ,CAGH,KAAM,wCAHH,CAAL,CAKH,CACJ,C,+CAEY,CACT,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,KAAK,CACD,MAAO,wDADN,CAED,KAAM,4CAFL,CAGD,KAAM,IAHL,CAID,kBAAmB,KAJlB,CAKD,eAAgB,KALf,CAMD,kBAAmB,KANlB,CAAL,EASA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,6BAFG,CAGH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAHN,CAOH,YAAa,iCAPV,CAQH,KAAM,KAAK,SAAL,CAAe,CACjB,SAAU,QAAV,CAAqB,QADJ,CAAf,CARH,CAAP,EAWG,IAXH,CAWQ,cAAQ,CACZ,KAAK,KAAL,GACA,MAAM,IAAN,CAAW,QAAX,CACH,CAdD,EAcG,IAdH,CAcQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,KAJL,CAAL,CAMH,CA1BD,CA2BH,C,2CAEU,CACP,GAAM,WAAY,EAAE,KAAK,OAAP,EAAgB,IAAhB,CAAqB,4BAArB,CAAlB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CACA,GAAM,UAAW,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAAjB,CAEA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAQ,YAAY,IAAZ,CAAiB,MAAzB,OAAqC,YAAY,IAAZ,CAAiB,IAAtD,KAA8D,YAAY,IAAZ,CAAiB,YAA/E,2BAFG,CAGH,QAAS,CACL,iBAAkB,YAAY,MAAZ,CAAmB,YADhC,CAEL,kBAAmB,YAAY,MAAZ,CAAmB,IAFjC,CAHN,CAOH,YAAa,iCAPV,CAQH,KAAM,KAAK,SAAL,CAAe,CACjB,SAAU,QAAV,CAAqB,QADJ,CAEjB,GAAI,SAAS,QAAT,EAFa,CAAf,CARH,CAAP,EAYG,IAZH,CAYQ,cAAQ,CACZ,MAAM,IAAN,CAAW,QAAX,CAAqB,aAAO,CACxB,GAAI,GAAJ,CAAS,OACT,GAAM,aAAc,EAAE,eAAF,EAAmB,IAAnB,gBAAuC,KAAK,QAA5C,OAA0D,MAA1D,EAApB,CACA,YAAY,QAAZ,CAAqB,iBAArB,EAAwC,KAAxC,CAA8C,IAA9C,EAAoD,KAApD,CAA0D,UAAM,CAC5D,YAAY,WAAZ,CAAwB,iBAAxB,EAA2C,OAA3C,EACH,CAFD,CAGH,CAND,CAOH,CApBD,EAoBG,IApBH,CAoBQ,eAAS,CACb,QAAQ,KAAR,CAAc,KAAd,EACA,GAAI,OAAQ,yDAAZ,CACA,GAAI,MAAO,OAAM,YAAb,GAA8B,WAA9B,EAA6C,MAAO,OAAM,YAAN,CAAmB,KAA1B,GAAoC,WAArF,CAAkG,CAC9F,MAAQ,MAAM,YAAN,CAAmB,KAC9B,CACD,KAAK,CACD,KAAM,OADL,CAED,MAAO,SAFN,CAGD,KAAM,IAHL,CAID,KAAM,KAJL,CAAL,CAMH,CAhCD,CAiCH,C;;AC7hBL,a,8oBAqBM,iB,YACF,2BAAc,wCACV,KAAK,UAAL,CAAkB,IACrB,C,8DAEK,CACF,KAAK,cAAL,GACA,KAAK,UAAL,EACH,C,0CAEQ,M,CAAQ,CACb,EAAE,QAAF,EAAY,IAAZ,CAAiB,iBAAjB,EAAoC,MAApC,GACA,GAAI,CAAC,EAAE,MAAF,CAAS,KAAK,UAAd,CAAL,CAAgC,KAAK,UAAL,CAAgB,WAAhB,CAA4B,QAA5B,EAEhC,GAAI,aAAc,EAAE,eAAF,EAAmB,IAAnB,CAAwB,aAAxB,CAAlB,CACA,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,QAA5B,CAAsC,CAClC,GAAM,WAAY,OAAO,IAAP,CAAY,4BAAZ,CAAlB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,WAAf,CAAnB,CAApB,CACA,GAAM,aAAc,mBAAmB,UAAU,IAAV,CAAe,MAAf,CAAnB,CAApB,CACA,eAAiB,WAAjB,CAA+B,WAClC,CAED,GAAI,WAAY,kFAAhB,CAEA,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,WAAa,iPAEhB,CAED,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,WAAa,kGAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,WAAa,kIAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,eAA5B,CAA6C,CACzC,WAAa,8HAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,WAAa,+FAC4C,YAAY,MAAZ,CAAmB,SAD/D,CAC0E,kBAD1E,CAC+F,WAD/F,CAC6G,6MAE7H,CAED,GAAI,YAAY,WAAZ,CAAwB,aAAxB,EAAyC,YAAY,WAAZ,CAAwB,WAArE,CAAkF,CAC9E,WAAa,2BAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,WAAa,4HAChB,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,WAAa,0HAChB,CAED,WAAa,OAAb,CACA,MAAO,UACV,C,+CAEY,gBACT,EAAE,4BAAF,EAAgC,EAAhC,CAAmC,WAAnC,CAAgD,eAAS,CACrD,MAAM,cAAN,GACA,GAAI,EAAE,QAAF,EAAY,IAAZ,CAAiB,iBAAjB,EAAoC,EAApC,CAAuC,UAAvC,CAAJ,CAAwD,CACpD,EAAE,MAAF,EAAU,OAAV,CAAkB,OAAlB,EACA,MACH,CACD,MAAK,QAAL,CAAc,KAAd,CACH,CAPD,EAQA,EAAE,0BAAF,EAA8B,EAA9B,CAAiC,aAAjC,CAAgD,eAAS,CACrD,MAAK,QAAL,CAAc,KAAd,CACH,CAFD,CAGH,C,0CAEQ,K,CAAO,iBACZ,GAAM,QAAS,EAAE,MAAM,MAAR,EAAgB,OAAhB,CAAwB,IAAxB,CAAf,CACA,GAAM,MAAO,EAAE,KAAK,QAAL,CAAc,MAAd,CAAF,CAAb,CAEA,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,UAA5B,CAAwC,OACxC,MAAM,cAAN,GAEA,EAAE,IAAF,EAAQ,QAAR,CAAiB,MAAjB,EACA,EAAE,IAAF,EAAQ,IAAR,CAAa,WAAb,CAA0B,EAAE,MAAM,MAAR,CAA1B,EAA2C,IAA3C,GAAkD,GAAlD,CAAsD,CAClD,SAAU,UADwC,CAElD,KAAM,MAAM,KAAN,CAAc,GAF8B,CAGlD,IAAK,MAAM,KAHuC,CAAtD,EAMA,KAAK,UAAL,CAAkB,MAAlB,CACA,KAAK,UAAL,CAAgB,QAAhB,CAAyB,QAAzB,EAGA,GAAM,SAAU,GAAI,aAAJ,CAAiB,MAAjB,CAAyB,IAAzB,CAAhB,CACA,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,EAAE,IAAF,EAAQ,IAAR,CAAa,wBAAb,EAAuC,MAAvC,GAAgD,EAAhD,CAAmD,OAAnD,CAA4D,WAAK,CAC7D,EAAE,cAAF,GACA,QAAQ,IAAR,EACH,CAHD,EAIA,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,SAA5B,CAAuC,CACnC,EAAE,IAAF,EAAQ,IAAR,CAAa,wBAAb,EAAuC,MAAvC,GAAgD,EAAhD,CAAmD,OAAnD,CAA4D,WAAK,CAC7D,EAAE,cAAF,GACA,QAAQ,IAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,QAA5B,CAAsC,CAClC,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,WAA3C,CAAuD,QAAvD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,MAA3C,GAAoD,EAApD,CAAuD,OAAvD,CAAgE,WAAK,CACjE,EAAE,cAAF,GACA,QAAQ,QAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,eAA5B,CAA6C,CACzC,GAAI,EAAE,OAAF,CAAU,CAAC,iBAAD,CAAoB,kBAApB,CAAwC,oBAAxC,CAAV,CAAyE,OAAO,IAAP,CAAY,MAAZ,CAAzE,EAA8F,MAA9F,CAAuG,CAA3G,CAA8G,CAC1G,EAAE,IAAF,EAAQ,IAAR,CAAa,8BAAb,EAA6C,WAA7C,CAAyD,QAAzD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,8BAAb,EAA6C,MAA7C,GAAsD,EAAtD,CAAyD,OAAzD,CAAkE,WAAK,CACnE,EAAE,cAAF,GACA,QAAQ,UAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,aAA5B,CAA2C,CACvC,GAAI,OAAO,IAAP,CAAY,MAAZ,IAAwB,MAA5B,CAAoC,CAChC,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,WAA3C,CAAuD,QAAvD,CACH,CACD,EAAE,IAAF,EAAQ,IAAR,CAAa,4BAAb,EAA2C,MAA3C,GAAoD,EAApD,CAAuD,OAAvD,CAAgE,WAAK,CACjE,EAAE,cAAF,GACA,QAAQ,QAAR,EACH,CAHD,CAIH,CAED,GAAI,YAAY,WAAZ,CAAwB,WAA5B,CAAyC,CACrC,EAAE,IAAF,EAAQ,IAAR,CAAa,0BAAb,EAAyC,MAAzC,GAAkD,EAAlD,CAAqD,OAArD,CAA8D,WAAK,CAC/D,EAAE,cAAF,GACA,QAAQ,MAAR,EACH,CAHD,CAIH,CAED,EAAE,MAAF,EAAU,MAAV,GAAmB,EAAnB,CAAsB,OAAtB,CAA+B,eAAS,CACpC,GAAG,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,oBAAnB,CAAH,CAA6C,CACzC,MAAM,cAAN,GACA,MACH,CACD,EAAE,IAAF,EAAQ,MAAR,GAAiB,MAAjB,GACA,GAAG,CAAC,EAAE,MAAF,CAAS,OAAK,UAAd,CAAJ,CAA+B,OAAK,UAAL,CAAgB,WAAhB,CAA4B,QAA5B,CAClC,CAPD,CAQH,C,uDAEgB,CACb,EAAE,iCAAF,EAAqC,EAArC,CAAwC,OAAxC,CAAiD,SAAU,KAAV,CAAiB,CAC9D,MAAM,cAAN,GAEA,GAAM,MAAO,EAAE,IAAF,EAAQ,MAAR,GAAiB,IAAjB,CAAsB,MAAtB,GAAiC,EAA9C,CACA,GAAM,MAAO,EAAE,IAAF,EAAQ,MAAR,GAAiB,IAAjB,CAAsB,MAAtB,GAAiC,EAA9C,CAEA,OAAO,QAAP,CAAgB,IAAhB,CAAuB,mBAAmB,KAAO,IAA1B,CAAvB,CACA,MAAM,IAAN,EACH,CARD,CASH,C,+BAGL,OAAO,WAAP,CAAqB,GAAI,iBAAzB;AC1MA,a,q3BAqBM,Y,YACF,sBAAc,mCACV,KAAK,IAAL,CAAU,KAAK,UAAL,EAAV,CACH,C,0DAEI,I,CAAM,I,CAAM,gBACb,GAAI,EAAE,WAAF,CAAc,IAAd,CAAJ,CAAyB,CACrB,KAAO,KAAK,UAAL,EACV,CAED,KAAK,MAAL,CAAY,IAAZ,EACA,EAAE,IAAF,CAAO,CACH,KAAM,MADH,CAEH,IAAK,YAAY,IAAZ,CAAiB,aAFnB,CAGH,QAAS,CACL,eAAgB,YAAY,IAAZ,CAAiB,SAD5B,CAHN,CAMH,KAAM,CACF,UAAW,IADT,CANH,CAAP,EASG,IATH,CASQ,cAAQ,CACZ,MAAK,MAAL,CAAY,KAAZ,EACA,EAAE,aAAF,EAAiB,OAAjB,CAAyB,EAAzB,EAA6B,IAA7B,CAAkC,IAAlC,EAAwC,SAAxC,CAAkD,EAAlD,CAAsD,UAAM,CACxD,YAAY,GAAZ,GACA,MAAK,iBAAL,GACA,MAAK,eAAL,GACA,MAAK,UAAL,GACA,MAAK,SAAL,GACA,MAAK,iBAAL,GACA,MAAK,SAAL,GACA,GAAI,EAAE,UAAF,CAAa,IAAb,CAAJ,CAAwB,CACpB,MAAO,OACV,CACJ,CAXD,EAYA,EAAE,iBAAF,EAAqB,OAArB,GAEA,GAAI,OAAO,MAAP,mCAAO,KAAP,KAAiB,QAArB,CAA+B,CAC3B,MAAM,aAAN,CAAoB,SAAS,cAAT,CAAwB,oBAAxB,CAApB,CACH,CACJ,CA5BD,EA4BG,IA5BH,CA4BQ,eAAS,CACb,MAAK,MAAL,CAAY,KAAZ,EACA,GAAI,EAAE,UAAF,CAAa,IAAb,CAAJ,CAAwB,CACpB,MAAO,MAAK,GAAI,MAAJ,CAAU,8BAAV,CAAL,CACV,CAED,GAAK,OAAS,EAAT,EAAe,OAAS,GAAzB,EAAiC,MAAM,MAAN,GAAiB,GAAtD,CAA2D,CACvD,MAAO,OAAK,IAAL,CAAU,EAAV,CAAc,IAAd,CACV,CAED,KAAK,CACD,KAAM,OADL,CAED,MAAO,YAFN,CAGD,KAAM,MAAM,YAAN,CAAmB,MAAnB,CAA0B,CAA1B,EAA6B,MAA7B,EAAuC,+EAH5C,CAAL,EAKA,QAAQ,KAAR,CAAc,KAAd,CACH,CA5CD,CA6CH,C,sCAEM,I,CAAM,CACT,GAAI,IAAJ,CAAS,CACL,EAAE,eAAF,EAAmB,MAAnB,CAA0B,GAA1B,CACH,CAFD,IAEO,CACH,EAAE,eAAF,EAAmB,OAAnB,CAA2B,GAA3B,CACH,CACJ,C,6DAEmB,iBAChB,EAAE,+BAAF,EAAmC,MAAnC,GAA4C,EAA5C,CAA+C,OAA/C,CAAwD,UAAM,CAC1D,EAAE,+BAAF,EAAmC,QAAnC,CAA4C,SAA5C,EACA,OAAK,IAAL,EACH,CAHD,CAIH,C,+CAEY,CACT,EAAE,8BAAF,EAAkC,EAAlC,CAAqC,OAArC,CAA8C,eAAS,CACnD,MAAM,cAAN,EACH,CAFD,CAGH,C,6CAEW,CACR,EAAE,2BAAF,EAA+B,EAA/B,CAAkC,OAAlC,CAA2C,eAAS,CAChD,MAAM,cAAN,EACH,CAFD,CAGH,C,6DAEmB,CAChB,EAAE,oCAAF,EAAwC,EAAxC,CAA2C,WAA3C,CAAwD,eAAS,CAC7D,GAAI,aAAJ,GAAmB,cAAnB,EACH,CAFD,CAGH,C,yDAEiB,CACd,EAAE,4BAAF,EAAgC,MAAhC,GAAyC,EAAzC,CAA4C,OAA5C,CAAqD,UAAM,CACvD,GAAI,aAAJ,GAAmB,MAAnB,CAA0B,EAAE,eAAF,EAAmB,IAAnB,CAAwB,aAAxB,GAA0C,GAApE,CACH,CAFD,CAGH,C,6CAEW,CACV,EAAE,kBAAF,EAAsB,EAAtB,CAAyB,WAAzB,CAAsC,eAAS,CAC3C,GAAI,MAAM,KAAN,GAAgB,CAApB,CAAuB,CACnB,GAAI,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,IAAnB,GAA4B,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,gCAAnB,CAAhC,CAAsF,CAClF,GAAI,aAAJ,GAAmB,YAAnB,CAAgC,KAAhC,CACH,CAFD,IAEO,IAAI,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,IAAnB,GAA4B,EAAE,MAAM,MAAR,EAAgB,EAAhB,CAAmB,mCAAnB,CAAhC,CAAyF,CAC5F,GAAI,aAAJ,GAAmB,eAAnB,CAAmC,KAAnC,CACH,CAED,GAAI,aAAJ,GAAmB,iBAAnB,EACH,CACJ,CAVD,CAWD,C,+CAEY,CACT,MAAO,oBAAmB,OAAO,QAAP,CAAgB,IAAhB,CAAqB,SAArB,CAA+B,CAA/B,CAAnB,CACV,C,0BAIL,OAAO,KAAP,CAAe,GAAI,YAAnB","file":"filemanager.min.js","sourcesContent":["\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass ActionsClass {\n    constructor(element, menu) {\n        this.element = element;\n        this.menu = menu;\n    }\n\n    destroy() {\n        this.element = undefined;\n    }\n\n    folder(path) {\n        let inputValue\n        if (path) {\n            inputValue = path\n        } else {\n            const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n            const currentName = decodeURIComponent(nameBlock.data('name'));\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n            if ($(this.element).data('type') === 'file') {\n                inputValue = currentPath;\n            } else {\n                inputValue = `${currentPath}${currentName}/`;\n            }\n        }\n\n        swal({\n            type: 'input',\n            title: 'Create Folder',\n            text: 'Please enter the path and folder name below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: inputValue\n        }, (val) => {\n            if (val === false) {\n                return false;\n            }\n\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/folder`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    path: val,\n                }),\n            }).done(data => {\n                swal.close();\n                Files.list();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n    }\n\n    move() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n        swal({\n            type: 'input',\n            title: 'Move File',\n            text: 'Please enter the new path for the file below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: `${currentPath}${currentName}`,\n        }, (val) => {\n            if (val === false) {\n                return false;\n            }\n\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/move`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${val}`,\n                }),\n            }).done(data => {\n                nameBlock.parent().addClass('warning').delay(200).fadeOut();\n                swal.close();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n\n    }\n\n    rename() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentLink = nameBlock.find('a');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const attachEditor = `\n            <input class=\"form-control input-sm\" type=\"text\" value=\"${currentName}\" />\n            <span class=\"input-loader\"><i class=\"fa fa-refresh fa-spin fa-fw\"></i></span>\n        `;\n\n        nameBlock.html(attachEditor);\n        const inputField = nameBlock.find('input');\n        const inputLoader = nameBlock.find('.input-loader');\n\n        inputField.focus();\n        inputField.on('blur keydown', e => {\n            // Save Field\n            if (\n                (e.type === 'keydown' && e.which === 27)\n                || e.type === 'blur'\n                || (e.type === 'keydown' && e.which === 13 && currentName === inputField.val())\n            ) {\n                if (!_.isEmpty(currentLink)) {\n                    nameBlock.html(currentLink);\n                } else {\n                    nameBlock.html(currentName);\n                }\n                inputField.remove();\n                ContextMenu.unbind().run();\n                return;\n            }\n\n            if (e.type === 'keydown' && e.which !== 13) return;\n\n            inputLoader.show();\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/rename`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${currentPath}${inputField.val()}`,\n                }),\n            }).done(data => {\n                nameBlock.attr('data-name', inputField.val());\n                if (!_.isEmpty(currentLink)) {\n                    let newLink = currentLink.attr('href');\n                    if (nameBlock.parent().data('type') !== 'folder') {\n                        newLink = newLink.substr(0, newLink.lastIndexOf('/')) + '/' + inputField.val();\n                    }\n                    currentLink.attr('href', newLink);\n                    nameBlock.html(\n                        currentLink.html(inputField.val())\n                    );\n                } else {\n                    nameBlock.html(inputField.val());\n                }\n                inputField.remove();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                nameBlock.addClass('has-error').delay(2000).queue(() => {\n                    nameBlock.removeClass('has-error').dequeue();\n                });\n                inputField.popover({\n                    animation: true,\n                    placement: 'top',\n                    content: error,\n                    title: 'Save Error'\n                }).popover('show');\n            }).always(() => {\n                inputLoader.remove();\n                ContextMenu.unbind().run();\n            });\n        });\n    }\n\n    copy() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n        const currentPath = decodeURIComponent(nameBlock.data('path'));\n\n        swal({\n            type: 'input',\n            title: 'Copy File',\n            text: 'Please enter the new path for the copied file below.',\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true,\n            inputValue: `${currentPath}${currentName}`,\n        }, (val) => {\n            if (val === false) {\n                return false;\n            }\n\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/copy`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    from: `${currentPath}${currentName}`,\n                    to: `${val}`,\n                }),\n            }).done(data => {\n                swal({\n                    type: 'success',\n                    title: '',\n                    text: 'File successfully copied.'\n                });\n                Files.list();\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                var error = 'An error occurred while trying to process this request.';\n                if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                    error = jqXHR.responseJSON.error;\n                }\n                swal({\n                    type: 'error',\n                    title: '',\n                    text: error,\n                });\n            });\n        });\n    }\n\n    download() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const fileName = decodeURIComponent(nameBlock.attr('data-name'));\n        const filePath = decodeURIComponent(nameBlock.data('path'));\n\n        window.location = `/server/${Pterodactyl.server.uuidShort}/files/download/${filePath}${fileName}`;\n    }\n\n    delete() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const delPath = decodeURIComponent(nameBlock.data('path'));\n        const delName = decodeURIComponent(nameBlock.data('name'));\n\n        swal({\n            type: 'warning',\n            title: '',\n            text: 'Are you sure you want to delete <code>' + delName + '</code>?',\n            html: true,\n            showCancelButton: true,\n            showConfirmButton: true,\n            closeOnConfirm: false,\n            showLoaderOnConfirm: true\n        }, () => {\n            $.ajax({\n                type: 'POST',\n                headers: {\n                    'X-Access-Token': Pterodactyl.server.daemonSecret,\n                    'X-Access-Server': Pterodactyl.server.uuid,\n                },\n                contentType: 'application/json; charset=utf-8',\n                url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/delete`,\n                timeout: 10000,\n                data: JSON.stringify({\n                    items: [`${delPath}${delName}`]\n                }),\n            }).done(data => {\n                nameBlock.parent().addClass('warning').delay(200).fadeOut();\n                swal({\n                    type: 'success',\n                    title: 'File Deleted'\n                });\n            }).fail(jqXHR => {\n                console.error(jqXHR);\n                swal({\n                    type: 'error',\n                    title: 'Whoops!',\n                    html: true,\n                    text: 'An error occurred while attempting to delete this file. Please try again.',\n                });\n            });\n        });\n    }\n\n    toggleMassActions() {\n        if ($('#file_listing input[type=\"checkbox\"]:checked').length) {\n            $('#mass_actions').removeClass('disabled');\n        } else {\n            $('#mass_actions').addClass('disabled');\n        }\n    }\n\n    toggleHighlight(event) {\n        const parent = $(event.currentTarget);\n        const item = $(event.currentTarget).find('input');\n\n        if($(item).is(':checked')) {\n            $(item).prop('checked', false);\n            parent.removeClass('warning').delay(200);\n        } else {\n            $(item).prop('checked', true);\n            parent.addClass('warning').delay(200);\n        }\n    }\n\n    highlightAll(event) {\n        let parent;\n        const item = $(event.currentTarget).find('input');\n\n        if($(item).is(':checked')) {\n          $('#file_listing input[type=checkbox]').prop('checked', false);\n          $('#file_listing input[data-action=\"addSelection\"]').each(function() {\n              parent = $(this).closest('tr');\n              parent.removeClass('warning').delay(200);\n          });\n        } else {\n          $('#file_listing input[type=checkbox]').prop('checked', true);\n          $('#file_listing input[data-action=\"addSelection\"]').each(function() {\n              parent = $(this).closest('tr');\n              parent.addClass('warning').delay(200);\n          });\n        }\n    }\n\n    deleteSelected() {\n        let selectedItems = [];\n        let selectedItemsElements = [];\n        let parent;\n        let nameBlock;\n        let delLocation;\n\n        $('#file_listing input[data-action=\"addSelection\"]:checked').each(function() {\n            parent = $(this).closest('tr');\n            nameBlock = $(parent).find('td[data-identifier=\"name\"]');\n            delLocation = decodeURIComponent(nameBlock.data('path')) + decodeURIComponent(nameBlock.data('name'));\n\n            selectedItems.push(delLocation);\n            selectedItemsElements.push(parent);\n        });\n\n        if (selectedItems.length != 0)\n        {\n            let formattedItems = \"\";\n            let i = 0;\n            $.each(selectedItems, function(key, value) {\n                formattedItems += (\"<code>\" + value + \"</code>, \");\n                i++;\n                return i < 5;\n            });\n\n            formattedItems = formattedItems.slice(0, -2);\n            if (selectedItems.length > 5) {\n                formattedItems += ', and ' + (selectedItems.length - 5) + ' other(s)';\n            }\n\n            swal({\n                type: 'warning',\n                title: '',\n                text: 'Are you sure you want to delete the following files: ' + formattedItems + '?',\n                html: true,\n                showCancelButton: true,\n                showConfirmButton: true,\n                closeOnConfirm: false,\n                showLoaderOnConfirm: true\n            }, () => {\n                $.ajax({\n                    type: 'POST',\n                    headers: {\n                        'X-Access-Token': Pterodactyl.server.daemonSecret,\n                        'X-Access-Server': Pterodactyl.server.uuid,\n                    },\n                    contentType: 'application/json; charset=utf-8',\n                    url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/delete`,\n                    timeout: 10000,\n                    data: JSON.stringify({\n                        items: selectedItems\n                    }),\n                }).done(data => {\n                    $('#file_listing input:checked').each(function() {\n                        $(this).prop('checked', false);\n                    });\n\n                    $.each(selectedItemsElements, function() {\n                        $(this).addClass('warning').delay(200).fadeOut();\n                    })\n\n                    swal({\n                        type: 'success',\n                        title: 'Files Deleted'\n                    });\n                }).fail(jqXHR => {\n                    console.error(jqXHR);\n                    swal({\n                        type: 'error',\n                        title: 'Whoops!',\n                        html: true,\n                        text: 'An error occurred while attempting to delete these files. Please try again.',\n                    });\n                });\n            });\n        } else {\n            swal({\n              type: 'warning',\n              title: '',\n              text: 'Please select files/folders to delete.',\n            });\n        }\n    }\n\n    decompress() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const compPath = decodeURIComponent(nameBlock.data('path'));\n        const compName = decodeURIComponent(nameBlock.data('name'));\n\n        swal({\n            title: '<i class=\"fa fa-refresh fa-spin\"></i> Decompressing...',\n            text: 'This might take a few seconds to complete.',\n            html: true,\n            allowOutsideClick: false,\n            allowEscapeKey: false,\n            showConfirmButton: false,\n        });\n\n        $.ajax({\n            type: 'POST',\n            url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/decompress`,\n            headers: {\n                'X-Access-Token': Pterodactyl.server.daemonSecret,\n                'X-Access-Server': Pterodactyl.server.uuid,\n            },\n            contentType: 'application/json; charset=utf-8',\n            data: JSON.stringify({\n                files: `${compPath}${compName}`\n            })\n        }).done(data => {\n            swal.close();\n            Files.list(compPath);\n        }).fail(jqXHR => {\n            console.error(jqXHR);\n            var error = 'An error occurred while trying to process this request.';\n            if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                error = jqXHR.responseJSON.error;\n            }\n            swal({\n                type: 'error',\n                title: 'Whoops!',\n                html: true,\n                text: error\n            });\n        });\n    }\n\n    compress() {\n        const nameBlock = $(this.element).find('td[data-identifier=\"name\"]');\n        const compPath = decodeURIComponent(nameBlock.data('path'));\n        const compName = decodeURIComponent(nameBlock.data('name'));\n\n        $.ajax({\n            type: 'POST',\n            url: `${Pterodactyl.node.scheme}://${Pterodactyl.node.fqdn}:${Pterodactyl.node.daemonListen}/v1/server/file/compress`,\n            headers: {\n                'X-Access-Token': Pterodactyl.server.daemonSecret,\n                'X-Access-Server': Pterodactyl.server.uuid,\n            },\n            contentType: 'application/json; charset=utf-8',\n            data: JSON.stringify({\n                files: `${compPath}${compName}`,\n                to: compPath.toString()\n            })\n        }).done(data => {\n            Files.list(compPath, err => {\n                if (err) return;\n                const fileListing = $('#file_listing').find(`[data-name=\"${data.saved_as}\"]`).parent();\n                fileListing.addClass('success pulsate').delay(3000).queue(() => {\n                    fileListing.removeClass('success pulsate').dequeue();\n                });\n            });\n        }).fail(jqXHR => {\n            console.error(jqXHR);\n            var error = 'An error occurred while trying to process this request.';\n            if (typeof jqXHR.responseJSON !== 'undefined' && typeof jqXHR.responseJSON.error !== 'undefined') {\n                error = jqXHR.responseJSON.error;\n            }\n            swal({\n                type: 'error',\n                title: 'Whoops!',\n                html: true,\n                text: error\n            });\n        });\n    }\n}\n","\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass ContextMenuClass {\n    constructor() {\n        this.activeLine = null;\n    }\n\n    run() {\n        this.directoryClick();\n        this.rightClick();\n    }\n\n    makeMenu(parent) {\n        $(document).find('#fileOptionMenu').remove();\n        if (!_.isNull(this.activeLine)) this.activeLine.removeClass('active');\n\n        let newFilePath = $('#file_listing').data('current-dir');\n        if (parent.data('type') === 'folder') {\n            const nameBlock = parent.find('td[data-identifier=\"name\"]');\n            const currentName = decodeURIComponent(nameBlock.attr('data-name'));\n            const currentPath = decodeURIComponent(nameBlock.data('path'));\n            newFilePath = `${currentPath}${currentName}`;\n        }\n\n        let buildMenu = '<ul id=\"fileOptionMenu\" class=\"dropdown-menu\" role=\"menu\" style=\"display:none\" >';\n\n        if (Pterodactyl.permissions.moveFiles) {\n            buildMenu += '<li data-action=\"rename\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-pencil-square-o\"></i> Rename</a></li> \\\n                          <li data-action=\"move\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-arrow-right\"></i> Move</a></li>';\n        }\n\n        if (Pterodactyl.permissions.copyFiles) {\n            buildMenu += '<li data-action=\"copy\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-clone\"></i> Copy</a></li>';\n        }\n\n        if (Pterodactyl.permissions.compressFiles) {\n            buildMenu += '<li data-action=\"compress\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-file-archive-o\"></i> Compress</a></li>';\n        }\n\n        if (Pterodactyl.permissions.decompressFiles) {\n            buildMenu += '<li data-action=\"decompress\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-expand\"></i> Decompress</a></li>';\n        }\n\n        if (Pterodactyl.permissions.createFiles) {\n            buildMenu += '<li class=\"divider\"></li> \\\n                          <li data-action=\"file\"><a href=\"/server/'+ Pterodactyl.server.uuidShort +'/files/add/?dir=' + newFilePath + '\" class=\"text-muted\"><i class=\"fa fa-fw fa-plus\"></i> New File</a></li> \\\n                          <li data-action=\"folder\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-folder\"></i> New Folder</a></li>';\n        }\n\n        if (Pterodactyl.permissions.downloadFiles || Pterodactyl.permissions.deleteFiles) {\n            buildMenu += '<li class=\"divider\"></li>';\n        }\n\n        if (Pterodactyl.permissions.downloadFiles) {\n            buildMenu += '<li data-action=\"download\" class=\"hidden\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-download\"></i> Download</a></li>';\n        }\n\n        if (Pterodactyl.permissions.deleteFiles) {\n            buildMenu += '<li data-action=\"delete\" class=\"bg-danger\"><a tabindex=\"-1\" href=\"#\"><i class=\"fa fa-fw fa-trash-o\"></i> Delete</a></li>';\n        }\n\n        buildMenu += '</ul>';\n        return buildMenu;\n    }\n\n    rightClick() {\n        $('[data-action=\"toggleMenu\"]').on('mousedown', event => {\n            event.preventDefault();\n            if ($(document).find('#fileOptionMenu').is(':visible')) {\n                $('body').trigger('click');\n                return;\n            }\n            this.showMenu(event);\n        });\n        $('#file_listing > tbody td').on('contextmenu', event => {\n            this.showMenu(event);\n        });\n    }\n\n    showMenu(event) {\n        const parent = $(event.target).closest('tr');\n        const menu = $(this.makeMenu(parent));\n\n        if (parent.data('type') === 'disabled') return;\n        event.preventDefault();\n\n        $(menu).appendTo('body');\n        $(menu).data('invokedOn', $(event.target)).show().css({\n            position: 'absolute',\n            left: event.pageX - 150,\n            top: event.pageY,\n        });\n\n        this.activeLine = parent;\n        this.activeLine.addClass('active');\n\n        // Handle Events\n        const Actions = new ActionsClass(parent, menu);\n        if (Pterodactyl.permissions.moveFiles) {\n            $(menu).find('li[data-action=\"move\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.move();\n            });\n            $(menu).find('li[data-action=\"rename\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.rename();\n            });\n        }\n\n        if (Pterodactyl.permissions.copyFiles) {\n            $(menu).find('li[data-action=\"copy\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.copy();\n            });\n        }\n\n        if (Pterodactyl.permissions.compressFiles) {\n            if (parent.data('type') === 'folder') {\n                $(menu).find('li[data-action=\"compress\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"compress\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.compress();\n            });\n        }\n\n        if (Pterodactyl.permissions.decompressFiles) {\n            if (_.without(['application/zip', 'application/gzip', 'application/x-gzip'], parent.data('mime')).length < 3) {\n                $(menu).find('li[data-action=\"decompress\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"decompress\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.decompress();\n            });\n        }\n\n        if (Pterodactyl.permissions.createFiles) {\n            $(menu).find('li[data-action=\"folder\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.folder();\n            });\n        }\n\n        if (Pterodactyl.permissions.downloadFiles) {\n            if (parent.data('type') === 'file') {\n                $(menu).find('li[data-action=\"download\"]').removeClass('hidden');\n            }\n            $(menu).find('li[data-action=\"download\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.download();\n            });\n        }\n\n        if (Pterodactyl.permissions.deleteFiles) {\n            $(menu).find('li[data-action=\"delete\"]').unbind().on('click', e => {\n                e.preventDefault();\n                Actions.delete();\n            });\n        }\n\n        $(window).unbind().on('click', event => {\n            if($(event.target).is('.disable-menu-hide')) {\n                event.preventDefault();\n                return;\n            }\n            $(menu).unbind().remove();\n            if(!_.isNull(this.activeLine)) this.activeLine.removeClass('active');\n        });\n    }\n\n    directoryClick() {\n        $('a[data-action=\"directory-view\"]').on('click', function (event) {\n            event.preventDefault();\n\n            const path = $(this).parent().data('path') || '';\n            const name = $(this).parent().data('name') || '';\n\n            window.location.hash = encodeURIComponent(path + name);\n            Files.list();\n        });\n    }\n}\n\nwindow.ContextMenu = new ContextMenuClass;\n","\"use strict\";\n\n// Copyright (c) 2015 - 2017 Dane Everitt <dane@daneeveritt.com>\n//\n// Permission is hereby granted, free of charge, to any person obtaining a copy\n// of this software and associated documentation files (the \"Software\"), to deal\n// in the Software without restriction, including without limitation the rights\n// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n// copies of the Software, and to permit persons to whom the Software is\n// furnished to do so, subject to the following conditions:\n//\n// The above copyright notice and this permission notice shall be included in all\n// copies or substantial portions of the Software.\n//\n// THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n// SOFTWARE.\nclass FileManager {\n    constructor() {\n        this.list(this.decodeHash());\n    }\n\n    list(path, next) {\n        if (_.isUndefined(path)) {\n            path = this.decodeHash();\n        }\n\n        this.loader(true);\n        $.ajax({\n            type: 'POST',\n            url: Pterodactyl.meta.directoryList,\n            headers: {\n                'X-CSRF-Token': Pterodactyl.meta.csrftoken,\n            },\n            data: {\n                directory: path,\n            },\n        }).done(data => {\n            this.loader(false);\n            $('#load_files').slideUp(10).html(data).slideDown(10, () => {\n                ContextMenu.run();\n                this.reloadFilesButton();\n                this.addFolderButton();\n                this.selectItem();\n                this.selectAll();\n                this.selectiveDeletion();\n                this.selectRow();\n                if (_.isFunction(next)) {\n                    return next();\n                }\n            });\n            $('#internal_alert').slideUp();\n\n            if (typeof Siofu === 'object') {\n                Siofu.listenOnInput(document.getElementById(\"files_touch_target\"));\n            }\n        }).fail(jqXHR => {\n            this.loader(false);\n            if (_.isFunction(next)) {\n                return next(new Error('Failed to load file listing.'));\n            }\n\n            if ((path !== '' && path !== '/') && jqXHR.status === 404) {\n                return this.list('', next);\n            }\n\n            swal({\n                type: 'error',\n                title: 'File Error',\n                text: jqXHR.responseJSON.errors[0].detail || 'An error occurred while attempting to process this request. Please try again.',\n            });\n            console.error(jqXHR);\n        });\n    }\n\n    loader(show) {\n        if (show){\n            $('.file-overlay').fadeIn(100);\n        } else {\n            $('.file-overlay').fadeOut(100);\n        }\n    }\n\n    reloadFilesButton() {\n        $('i[data-action=\"reload-files\"]').unbind().on('click', () => {\n            $('i[data-action=\"reload-files\"]').addClass('fa-spin');\n            this.list();\n        });\n    }\n\n    selectItem() {\n        $('[data-action=\"addSelection\"]').on('click', event => {\n            event.preventDefault();\n        });\n    }\n\n    selectAll() {\n        $('[data-action=\"selectAll\"]').on('click', event => {\n            event.preventDefault();\n        });\n    }\n\n    selectiveDeletion() {\n        $('[data-action=\"selective-deletion\"]').on('mousedown', event => {\n            new ActionsClass().deleteSelected();\n        });\n    }\n\n    addFolderButton() {\n        $('[data-action=\"add-folder\"]').unbind().on('click', () => {\n            new ActionsClass().folder($('#file_listing').data('current-dir') || '/');\n        })\n    }\n\n    selectRow() {\n      $('#file_listing tr').on('mousedown', event => {\n          if (event.which === 1) {\n              if ($(event.target).is('th') || $(event.target).is('input[data-action=\"selectAll\"]')) {\n                  new ActionsClass().highlightAll(event);\n              } else if ($(event.target).is('td') || $(event.target).is('input[data-action=\"addSelection\"]')) {\n                  new ActionsClass().toggleHighlight(event);\n              }\n\n              new ActionsClass().toggleMassActions();\n          }\n      });\n    }\n\n    decodeHash() {\n        return decodeURIComponent(window.location.hash.substring(1));\n    }\n\n}\n\nwindow.Files = new FileManager;\n"]}
\ No newline at end of file
diff --git a/public/themes/pterodactyl/js/frontend/files/src/actions.js b/public/themes/pterodactyl/js/frontend/files/src/actions.js
index d2d6f42e2..0c3b839d6 100644
--- a/public/themes/pterodactyl/js/frontend/files/src/actions.js
+++ b/public/themes/pterodactyl/js/frontend/files/src/actions.js
@@ -55,6 +55,10 @@ class ActionsClass {
             showLoaderOnConfirm: true,
             inputValue: inputValue
         }, (val) => {
+            if (val === false) {
+                return false;
+            }
+
             $.ajax({
                 type: 'POST',
                 headers: {
@@ -100,6 +104,10 @@ class ActionsClass {
             showLoaderOnConfirm: true,
             inputValue: `${currentPath}${currentName}`,
         }, (val) => {
+            if (val === false) {
+                return false;
+            }
+
             $.ajax({
                 type: 'POST',
                 headers: {
@@ -233,6 +241,10 @@ class ActionsClass {
             showLoaderOnConfirm: true,
             inputValue: `${currentPath}${currentName}`,
         }, (val) => {
+            if (val === false) {
+                return false;
+            }
+
             $.ajax({
                 type: 'POST',
                 headers: {
diff --git a/resources/themes/pterodactyl/server/files/index.blade.php b/resources/themes/pterodactyl/server/files/index.blade.php
index 73e23ee36..0c1181b8f 100644
--- a/resources/themes/pterodactyl/server/files/index.blade.php
+++ b/resources/themes/pterodactyl/server/files/index.blade.php
@@ -44,7 +44,7 @@
     {!! Theme::js('vendor/lodash/lodash.js') !!}
     {!! Theme::js('vendor/siofu/client.min.js') !!}
     @if(App::environment('production'))
-        {!! Theme::js('js/frontend/files/filemanager.min.js') !!}
+        {!! Theme::js('js/frontend/files/filemanager.min.js?updated-cancel-buttons') !!}
     @else
         {!! Theme::js('js/frontend/files/src/index.js') !!}
         {!! Theme::js('js/frontend/files/src/contextmenu.js') !!}

From 8915c3ec2898b4be52e933f00621bbb498c47791 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 1 Jul 2018 14:50:11 -0700
Subject: [PATCH 40/62] Update dependencies

---
 composer.lock | 561 +++++++++++++++++++++++++-------------------------
 1 file changed, 281 insertions(+), 280 deletions(-)

diff --git a/composer.lock b/composer.lock
index ea58eb51c..2c24ee8a3 100644
--- a/composer.lock
+++ b/composer.lock
@@ -61,16 +61,16 @@
         },
         {
             "name": "aws/aws-sdk-php",
-            "version": "3.57.1",
+            "version": "3.62.6",
             "source": {
                 "type": "git",
                 "url": "https://github.com/aws/aws-sdk-php.git",
-                "reference": "795332f5f3a81474e85653e62d1d7b306bd4eeae"
+                "reference": "0be301c36a5c337b40e69ce3b4698cca5427e4b9"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/aws/aws-sdk-php/zipball/795332f5f3a81474e85653e62d1d7b306bd4eeae",
-                "reference": "795332f5f3a81474e85653e62d1d7b306bd4eeae",
+                "url": "https://api.github.com/repos/aws/aws-sdk-php/zipball/0be301c36a5c337b40e69ce3b4698cca5427e4b9",
+                "reference": "0be301c36a5c337b40e69ce3b4698cca5427e4b9",
                 "shasum": ""
             },
             "require": {
@@ -137,20 +137,20 @@
                 "s3",
                 "sdk"
             ],
-            "time": "2018-05-25T21:34:30+00:00"
+            "time": "2018-06-29T22:12:11+00:00"
         },
         {
             "name": "cakephp/chronos",
-            "version": "1.1.4",
+            "version": "1.2.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/cakephp/chronos.git",
-                "reference": "85bcaea6a832684b32ef54b2487b0c14a172e9e6"
+                "reference": "243bb7bc3411b549e190703dbef49a96be5b4233"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/cakephp/chronos/zipball/85bcaea6a832684b32ef54b2487b0c14a172e9e6",
-                "reference": "85bcaea6a832684b32ef54b2487b0c14a172e9e6",
+                "url": "https://api.github.com/repos/cakephp/chronos/zipball/243bb7bc3411b549e190703dbef49a96be5b4233",
+                "reference": "243bb7bc3411b549e190703dbef49a96be5b4233",
                 "shasum": ""
             },
             "require": {
@@ -158,15 +158,15 @@
             },
             "require-dev": {
                 "athletic/athletic": "~0.1",
-                "cakephp/cakephp-codesniffer": "~2.3",
+                "cakephp/cakephp-codesniffer": "^3.0",
                 "phpbench/phpbench": "@dev",
                 "phpstan/phpstan": "^0.6.4",
-                "phpunit/phpunit": "<6.0"
+                "phpunit/phpunit": "<6.0 || ^7.0"
             },
             "type": "library",
             "autoload": {
                 "psr-4": {
-                    "Cake\\Chronos\\": "src"
+                    "Cake\\Chronos\\": "src/"
                 },
                 "files": [
                     "src/carbon_compat.php"
@@ -194,7 +194,7 @@
                 "datetime",
                 "time"
             ],
-            "time": "2018-01-13T12:19:50+00:00"
+            "time": "2018-06-23T01:51:58+00:00"
         },
         {
             "name": "dnoegel/php-xdg-base-dir",
@@ -709,16 +709,16 @@
         },
         {
             "name": "dragonmantank/cron-expression",
-            "version": "v2.1.0",
+            "version": "v2.2.0",
             "source": {
                 "type": "git",
                 "url": "https://github.com/dragonmantank/cron-expression.git",
-                "reference": "3f00985deec8df53d4cc1e5c33619bda1ee309a5"
+                "reference": "92a2c3768d50e21a1f26a53cb795ce72806266c5"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/dragonmantank/cron-expression/zipball/3f00985deec8df53d4cc1e5c33619bda1ee309a5",
-                "reference": "3f00985deec8df53d4cc1e5c33619bda1ee309a5",
+                "url": "https://api.github.com/repos/dragonmantank/cron-expression/zipball/92a2c3768d50e21a1f26a53cb795ce72806266c5",
+                "reference": "92a2c3768d50e21a1f26a53cb795ce72806266c5",
                 "shasum": ""
             },
             "require": {
@@ -754,7 +754,7 @@
                 "cron",
                 "schedule"
             ],
-            "time": "2018-04-06T15:51:55+00:00"
+            "time": "2018-06-06T03:12:17+00:00"
         },
         {
             "name": "egulias/email-validator",
@@ -1369,16 +1369,16 @@
         },
         {
             "name": "laravel/framework",
-            "version": "v5.6.23",
+            "version": "v5.6.26",
             "source": {
                 "type": "git",
                 "url": "https://github.com/laravel/framework.git",
-                "reference": "f547f0a71a12763d1adb8493237d541c9e3a5d10"
+                "reference": "7047df295e77cecb6a2f84736a732af66cc6789c"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/laravel/framework/zipball/f547f0a71a12763d1adb8493237d541c9e3a5d10",
-                "reference": "f547f0a71a12763d1adb8493237d541c9e3a5d10",
+                "url": "https://api.github.com/repos/laravel/framework/zipball/7047df295e77cecb6a2f84736a732af66cc6789c",
+                "reference": "7047df295e77cecb6a2f84736a732af66cc6789c",
                 "shasum": ""
             },
             "require": {
@@ -1504,7 +1504,7 @@
                 "framework",
                 "laravel"
             ],
-            "time": "2018-05-22T14:55:57+00:00"
+            "time": "2018-06-20T14:21:11+00:00"
         },
         {
             "name": "laravel/tinker",
@@ -2000,16 +2000,16 @@
         },
         {
             "name": "nikic/php-parser",
-            "version": "v4.0.1",
+            "version": "v4.0.2",
             "source": {
                 "type": "git",
                 "url": "https://github.com/nikic/PHP-Parser.git",
-                "reference": "e4a54fa90a5cd8e8dd3fb4099942681731c5cdd3"
+                "reference": "35b8caf75e791ba1b2d24fec1552168d72692b12"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/nikic/PHP-Parser/zipball/e4a54fa90a5cd8e8dd3fb4099942681731c5cdd3",
-                "reference": "e4a54fa90a5cd8e8dd3fb4099942681731c5cdd3",
+                "url": "https://api.github.com/repos/nikic/PHP-Parser/zipball/35b8caf75e791ba1b2d24fec1552168d72692b12",
+                "reference": "35b8caf75e791ba1b2d24fec1552168d72692b12",
                 "shasum": ""
             },
             "require": {
@@ -2047,7 +2047,7 @@
                 "parser",
                 "php"
             ],
-            "time": "2018-03-25T17:35:16+00:00"
+            "time": "2018-06-03T11:33:10+00:00"
         },
         {
             "name": "paragonie/constant_time_encoding",
@@ -2113,16 +2113,16 @@
         },
         {
             "name": "paragonie/random_compat",
-            "version": "v2.0.12",
+            "version": "v2.0.15",
             "source": {
                 "type": "git",
                 "url": "https://github.com/paragonie/random_compat.git",
-                "reference": "258c89a6b97de7dfaf5b8c7607d0478e236b04fb"
+                "reference": "10bcb46e8f3d365170f6de9d05245aa066b81f09"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/paragonie/random_compat/zipball/258c89a6b97de7dfaf5b8c7607d0478e236b04fb",
-                "reference": "258c89a6b97de7dfaf5b8c7607d0478e236b04fb",
+                "url": "https://api.github.com/repos/paragonie/random_compat/zipball/10bcb46e8f3d365170f6de9d05245aa066b81f09",
+                "reference": "10bcb46e8f3d365170f6de9d05245aa066b81f09",
                 "shasum": ""
             },
             "require": {
@@ -2154,10 +2154,11 @@
             "description": "PHP 5.x polyfill for random_bytes() and random_int() from PHP 7",
             "keywords": [
                 "csprng",
+                "polyfill",
                 "pseudorandom",
                 "random"
             ],
-            "time": "2018-04-04T21:24:14+00:00"
+            "time": "2018-06-08T15:26:40+00:00"
         },
         {
             "name": "pragmarx/google2fa",
@@ -2526,16 +2527,16 @@
         },
         {
             "name": "psy/psysh",
-            "version": "v0.9.4",
+            "version": "v0.9.6",
             "source": {
                 "type": "git",
                 "url": "https://github.com/bobthecow/psysh.git",
-                "reference": "4d969a0e08e1e05e7207c07cb4207017ecc9a331"
+                "reference": "4a2ce86f199d51b6e2524214dc06835e872f4fce"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/bobthecow/psysh/zipball/4d969a0e08e1e05e7207c07cb4207017ecc9a331",
-                "reference": "4d969a0e08e1e05e7207c07cb4207017ecc9a331",
+                "url": "https://api.github.com/repos/bobthecow/psysh/zipball/4a2ce86f199d51b6e2524214dc06835e872f4fce",
+                "reference": "4a2ce86f199d51b6e2524214dc06835e872f4fce",
                 "shasum": ""
             },
             "require": {
@@ -2594,7 +2595,7 @@
                 "interactive",
                 "shell"
             ],
-            "time": "2018-05-22T06:48:07+00:00"
+            "time": "2018-06-10T17:57:20+00:00"
         },
         {
             "name": "ramsey/uuid",
@@ -2940,16 +2941,16 @@
         },
         {
             "name": "spatie/laravel-fractal",
-            "version": "5.3.1",
+            "version": "5.3.2",
             "source": {
                 "type": "git",
                 "url": "https://github.com/spatie/laravel-fractal.git",
-                "reference": "e39e0865b66ca541337b45fed4ad6c22200b85d0"
+                "reference": "a0db87cf01593cc2cfe7aec3f82ce57c83566f3b"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/spatie/laravel-fractal/zipball/e39e0865b66ca541337b45fed4ad6c22200b85d0",
-                "reference": "e39e0865b66ca541337b45fed4ad6c22200b85d0",
+                "url": "https://api.github.com/repos/spatie/laravel-fractal/zipball/a0db87cf01593cc2cfe7aec3f82ce57c83566f3b",
+                "reference": "a0db87cf01593cc2cfe7aec3f82ce57c83566f3b",
                 "shasum": ""
             },
             "require": {
@@ -3004,7 +3005,7 @@
                 "spatie",
                 "transform"
             ],
-            "time": "2018-02-07T23:06:44+00:00"
+            "time": "2018-06-13T20:45:45+00:00"
         },
         {
             "name": "swiftmailer/swiftmailer",
@@ -3063,16 +3064,16 @@
         },
         {
             "name": "symfony/console",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/console.git",
-                "reference": "058f120b8e06ebcd7b211de5ffae07b2db00fbdd"
+                "reference": "70591cda56b4b47c55776ac78e157c4bb6c8b43f"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/console/zipball/058f120b8e06ebcd7b211de5ffae07b2db00fbdd",
-                "reference": "058f120b8e06ebcd7b211de5ffae07b2db00fbdd",
+                "url": "https://api.github.com/repos/symfony/console/zipball/70591cda56b4b47c55776ac78e157c4bb6c8b43f",
+                "reference": "70591cda56b4b47c55776ac78e157c4bb6c8b43f",
                 "shasum": ""
             },
             "require": {
@@ -3100,7 +3101,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3127,20 +3128,20 @@
             ],
             "description": "Symfony Console Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-16T09:05:32+00:00"
+            "time": "2018-05-31T10:17:53+00:00"
         },
         {
             "name": "symfony/css-selector",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/css-selector.git",
-                "reference": "0383a1a4eb1ffcac28719975d3e01bfa14be8ab3"
+                "reference": "03ac71606ecb0b0ce792faa17d74cc32c2949ef4"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/css-selector/zipball/0383a1a4eb1ffcac28719975d3e01bfa14be8ab3",
-                "reference": "0383a1a4eb1ffcac28719975d3e01bfa14be8ab3",
+                "url": "https://api.github.com/repos/symfony/css-selector/zipball/03ac71606ecb0b0ce792faa17d74cc32c2949ef4",
+                "reference": "03ac71606ecb0b0ce792faa17d74cc32c2949ef4",
                 "shasum": ""
             },
             "require": {
@@ -3149,7 +3150,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3180,20 +3181,20 @@
             ],
             "description": "Symfony CssSelector Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-11T15:58:37+00:00"
+            "time": "2018-05-30T07:26:09+00:00"
         },
         {
             "name": "symfony/debug",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/debug.git",
-                "reference": "4e7c98de67cc4171d4c986554e09a511da40f3d8"
+                "reference": "dbe0fad88046a755dcf9379f2964c61a02f5ae3d"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/debug/zipball/4e7c98de67cc4171d4c986554e09a511da40f3d8",
-                "reference": "4e7c98de67cc4171d4c986554e09a511da40f3d8",
+                "url": "https://api.github.com/repos/symfony/debug/zipball/dbe0fad88046a755dcf9379f2964c61a02f5ae3d",
+                "reference": "dbe0fad88046a755dcf9379f2964c61a02f5ae3d",
                 "shasum": ""
             },
             "require": {
@@ -3209,7 +3210,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3236,20 +3237,20 @@
             ],
             "description": "Symfony Debug Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-16T09:05:32+00:00"
+            "time": "2018-06-08T09:39:36+00:00"
         },
         {
             "name": "symfony/event-dispatcher",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/event-dispatcher.git",
-                "reference": "63353a71073faf08f62caab4e6889b06a787f07b"
+                "reference": "2391ed210a239868e7256eb6921b1bd83f3087b5"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/event-dispatcher/zipball/63353a71073faf08f62caab4e6889b06a787f07b",
-                "reference": "63353a71073faf08f62caab4e6889b06a787f07b",
+                "url": "https://api.github.com/repos/symfony/event-dispatcher/zipball/2391ed210a239868e7256eb6921b1bd83f3087b5",
+                "reference": "2391ed210a239868e7256eb6921b1bd83f3087b5",
                 "shasum": ""
             },
             "require": {
@@ -3272,7 +3273,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3299,20 +3300,20 @@
             ],
             "description": "Symfony EventDispatcher Component",
             "homepage": "https://symfony.com",
-            "time": "2018-04-06T07:35:43+00:00"
+            "time": "2018-04-06T07:35:57+00:00"
         },
         {
             "name": "symfony/finder",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/finder.git",
-                "reference": "8c633f5a815903a1fe6e3fc135f207267a8a79af"
+                "reference": "84714b8417d19e4ba02ea78a41a975b3efaafddb"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/finder/zipball/8c633f5a815903a1fe6e3fc135f207267a8a79af",
-                "reference": "8c633f5a815903a1fe6e3fc135f207267a8a79af",
+                "url": "https://api.github.com/repos/symfony/finder/zipball/84714b8417d19e4ba02ea78a41a975b3efaafddb",
+                "reference": "84714b8417d19e4ba02ea78a41a975b3efaafddb",
                 "shasum": ""
             },
             "require": {
@@ -3321,7 +3322,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3348,20 +3349,20 @@
             ],
             "description": "Symfony Finder Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-16T09:05:32+00:00"
+            "time": "2018-06-19T21:38:16+00:00"
         },
         {
             "name": "symfony/http-foundation",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/http-foundation.git",
-                "reference": "277b757a2d3960170d99d372e171a8a18916467a"
+                "reference": "4f9c7cf962e635b0b26b14500ac046e07dbef7f3"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/http-foundation/zipball/277b757a2d3960170d99d372e171a8a18916467a",
-                "reference": "277b757a2d3960170d99d372e171a8a18916467a",
+                "url": "https://api.github.com/repos/symfony/http-foundation/zipball/4f9c7cf962e635b0b26b14500ac046e07dbef7f3",
+                "reference": "4f9c7cf962e635b0b26b14500ac046e07dbef7f3",
                 "shasum": ""
             },
             "require": {
@@ -3369,12 +3370,13 @@
                 "symfony/polyfill-mbstring": "~1.1"
             },
             "require-dev": {
+                "predis/predis": "~1.0",
                 "symfony/expression-language": "~3.4|~4.0"
             },
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3401,34 +3403,34 @@
             ],
             "description": "Symfony HttpFoundation Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-25T11:08:56+00:00"
+            "time": "2018-06-19T21:38:16+00:00"
         },
         {
             "name": "symfony/http-kernel",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/http-kernel.git",
-                "reference": "450a1bda817f2dce25a9e13f0f011336743f2a48"
+                "reference": "29c094a1c4f8209b7e033f612cbbd69029e38955"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/http-kernel/zipball/450a1bda817f2dce25a9e13f0f011336743f2a48",
-                "reference": "450a1bda817f2dce25a9e13f0f011336743f2a48",
+                "url": "https://api.github.com/repos/symfony/http-kernel/zipball/29c094a1c4f8209b7e033f612cbbd69029e38955",
+                "reference": "29c094a1c4f8209b7e033f612cbbd69029e38955",
                 "shasum": ""
             },
             "require": {
                 "php": "^7.1.3",
                 "psr/log": "~1.0",
                 "symfony/debug": "~3.4|~4.0",
-                "symfony/event-dispatcher": "~3.4|~4.0",
-                "symfony/http-foundation": "~3.4.4|~4.0.4",
+                "symfony/event-dispatcher": "~4.1",
+                "symfony/http-foundation": "^4.1.1",
                 "symfony/polyfill-ctype": "~1.8"
             },
             "conflict": {
                 "symfony/config": "<3.4",
-                "symfony/dependency-injection": "<3.4.5|<4.0.5,>=4",
-                "symfony/var-dumper": "<3.4",
+                "symfony/dependency-injection": "<4.1",
+                "symfony/var-dumper": "<4.1.1",
                 "twig/twig": "<1.34|<2.4,>=2"
             },
             "provide": {
@@ -3440,7 +3442,7 @@
                 "symfony/config": "~3.4|~4.0",
                 "symfony/console": "~3.4|~4.0",
                 "symfony/css-selector": "~3.4|~4.0",
-                "symfony/dependency-injection": "^3.4.5|^4.0.5",
+                "symfony/dependency-injection": "^4.1",
                 "symfony/dom-crawler": "~3.4|~4.0",
                 "symfony/expression-language": "~3.4|~4.0",
                 "symfony/finder": "~3.4|~4.0",
@@ -3449,7 +3451,7 @@
                 "symfony/stopwatch": "~3.4|~4.0",
                 "symfony/templating": "~3.4|~4.0",
                 "symfony/translation": "~3.4|~4.0",
-                "symfony/var-dumper": "~3.4|~4.0"
+                "symfony/var-dumper": "^4.1.1"
             },
             "suggest": {
                 "symfony/browser-kit": "",
@@ -3461,7 +3463,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3488,7 +3490,7 @@
             ],
             "description": "Symfony HttpKernel Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-25T13:32:52+00:00"
+            "time": "2018-06-25T13:06:45+00:00"
         },
         {
             "name": "symfony/polyfill-ctype",
@@ -3769,16 +3771,16 @@
         },
         {
             "name": "symfony/process",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/process.git",
-                "reference": "3621fa74d0576a6f89d63bc44fabd376711bd0b0"
+                "reference": "1d1677391ecf00d1c5b9482d6050c0c27aa3ac3a"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/process/zipball/3621fa74d0576a6f89d63bc44fabd376711bd0b0",
-                "reference": "3621fa74d0576a6f89d63bc44fabd376711bd0b0",
+                "url": "https://api.github.com/repos/symfony/process/zipball/1d1677391ecf00d1c5b9482d6050c0c27aa3ac3a",
+                "reference": "1d1677391ecf00d1c5b9482d6050c0c27aa3ac3a",
                 "shasum": ""
             },
             "require": {
@@ -3787,7 +3789,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3814,20 +3816,20 @@
             ],
             "description": "Symfony Process Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-16T09:05:32+00:00"
+            "time": "2018-05-31T10:17:53+00:00"
         },
         {
             "name": "symfony/routing",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/routing.git",
-                "reference": "e8833b64b139926cbe1610d53722185e55c18e44"
+                "reference": "b38b9797327b26ea2e4146a40e6e2dc9820a6932"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/routing/zipball/e8833b64b139926cbe1610d53722185e55c18e44",
-                "reference": "e8833b64b139926cbe1610d53722185e55c18e44",
+                "url": "https://api.github.com/repos/symfony/routing/zipball/b38b9797327b26ea2e4146a40e6e2dc9820a6932",
+                "reference": "b38b9797327b26ea2e4146a40e6e2dc9820a6932",
                 "shasum": ""
             },
             "require": {
@@ -3840,7 +3842,6 @@
             },
             "require-dev": {
                 "doctrine/annotations": "~1.0",
-                "doctrine/common": "~2.2",
                 "psr/log": "~1.0",
                 "symfony/config": "~3.4|~4.0",
                 "symfony/dependency-injection": "~3.4|~4.0",
@@ -3859,7 +3860,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3892,20 +3893,20 @@
                 "uri",
                 "url"
             ],
-            "time": "2018-05-16T14:21:07+00:00"
+            "time": "2018-06-19T21:38:16+00:00"
         },
         {
             "name": "symfony/translation",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/translation.git",
-                "reference": "e1f5863d0a9e79cfec7f031421ced3fe1d403e66"
+                "reference": "b6d8164085ee0b6debcd1b7a131fd6f63bb04854"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/translation/zipball/e1f5863d0a9e79cfec7f031421ced3fe1d403e66",
-                "reference": "e1f5863d0a9e79cfec7f031421ced3fe1d403e66",
+                "url": "https://api.github.com/repos/symfony/translation/zipball/b6d8164085ee0b6debcd1b7a131fd6f63bb04854",
+                "reference": "b6d8164085ee0b6debcd1b7a131fd6f63bb04854",
                 "shasum": ""
             },
             "require": {
@@ -3920,6 +3921,7 @@
             "require-dev": {
                 "psr/log": "~1.0",
                 "symfony/config": "~3.4|~4.0",
+                "symfony/console": "~3.4|~4.0",
                 "symfony/dependency-injection": "~3.4|~4.0",
                 "symfony/finder": "~2.8|~3.0|~4.0",
                 "symfony/intl": "~3.4|~4.0",
@@ -3933,7 +3935,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -3960,20 +3962,20 @@
             ],
             "description": "Symfony Translation Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-21T10:09:47+00:00"
+            "time": "2018-06-22T08:59:39+00:00"
         },
         {
             "name": "symfony/var-dumper",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/var-dumper.git",
-                "reference": "3c34cf3f4bbac9e003d9325225e9ef1a49180a18"
+                "reference": "b2eebaec085d1f2cafbad7644733d494a3bbbc9b"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/var-dumper/zipball/3c34cf3f4bbac9e003d9325225e9ef1a49180a18",
-                "reference": "3c34cf3f4bbac9e003d9325225e9ef1a49180a18",
+                "url": "https://api.github.com/repos/symfony/var-dumper/zipball/b2eebaec085d1f2cafbad7644733d494a3bbbc9b",
+                "reference": "b2eebaec085d1f2cafbad7644733d494a3bbbc9b",
                 "shasum": ""
             },
             "require": {
@@ -3982,20 +3984,26 @@
                 "symfony/polyfill-php72": "~1.5"
             },
             "conflict": {
-                "phpunit/phpunit": "<4.8.35|<5.4.3,>=5.0"
+                "phpunit/phpunit": "<4.8.35|<5.4.3,>=5.0",
+                "symfony/console": "<3.4"
             },
             "require-dev": {
                 "ext-iconv": "*",
+                "symfony/process": "~3.4|~4.0",
                 "twig/twig": "~1.34|~2.4"
             },
             "suggest": {
                 "ext-iconv": "To convert non-UTF-8 strings to UTF-8 (or symfony/polyfill-iconv in case ext-iconv cannot be used).",
-                "ext-intl": "To show region name in time zone dump"
+                "ext-intl": "To show region name in time zone dump",
+                "symfony/console": "To use the ServerDumpCommand and/or the bin/var-dump-server script"
             },
+            "bin": [
+                "Resources/bin/var-dump-server"
+            ],
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -4029,7 +4037,7 @@
                 "debug",
                 "dump"
             ],
-            "time": "2018-04-26T16:12:06+00:00"
+            "time": "2018-06-23T12:23:56+00:00"
         },
         {
             "name": "tijsverkoyen/css-to-inline-styles",
@@ -4080,28 +4088,28 @@
         },
         {
             "name": "vlucas/phpdotenv",
-            "version": "v2.4.0",
+            "version": "v2.5.0",
             "source": {
                 "type": "git",
                 "url": "https://github.com/vlucas/phpdotenv.git",
-                "reference": "3cc116adbe4b11be5ec557bf1d24dc5e3a21d18c"
+                "reference": "6ae3e2e6494bb5e58c2decadafc3de7f1453f70a"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/vlucas/phpdotenv/zipball/3cc116adbe4b11be5ec557bf1d24dc5e3a21d18c",
-                "reference": "3cc116adbe4b11be5ec557bf1d24dc5e3a21d18c",
+                "url": "https://api.github.com/repos/vlucas/phpdotenv/zipball/6ae3e2e6494bb5e58c2decadafc3de7f1453f70a",
+                "reference": "6ae3e2e6494bb5e58c2decadafc3de7f1453f70a",
                 "shasum": ""
             },
             "require": {
                 "php": ">=5.3.9"
             },
             "require-dev": {
-                "phpunit/phpunit": "^4.8 || ^5.0"
+                "phpunit/phpunit": "^4.8.35 || ^5.0"
             },
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "2.4-dev"
+                    "dev-master": "2.5-dev"
                 }
             },
             "autoload": {
@@ -4111,7 +4119,7 @@
             },
             "notification-url": "https://packagist.org/downloads/",
             "license": [
-                "BSD-3-Clause-Attribution"
+                "BSD-3-Clause"
             ],
             "authors": [
                 {
@@ -4126,7 +4134,7 @@
                 "env",
                 "environment"
             ],
-            "time": "2016-09-01T10:05:43+00:00"
+            "time": "2018-07-01T10:25:50+00:00"
         },
         {
             "name": "webmozart/assert",
@@ -4580,6 +4588,50 @@
             ],
             "time": "2016-08-30T16:08:34+00:00"
         },
+        {
+            "name": "composer/xdebug-handler",
+            "version": "1.1.0",
+            "source": {
+                "type": "git",
+                "url": "https://github.com/composer/xdebug-handler.git",
+                "reference": "c919dc6c62e221fc6406f861ea13433c0aa24f08"
+            },
+            "dist": {
+                "type": "zip",
+                "url": "https://api.github.com/repos/composer/xdebug-handler/zipball/c919dc6c62e221fc6406f861ea13433c0aa24f08",
+                "reference": "c919dc6c62e221fc6406f861ea13433c0aa24f08",
+                "shasum": ""
+            },
+            "require": {
+                "php": "^5.3.2 || ^7.0",
+                "psr/log": "^1.0"
+            },
+            "require-dev": {
+                "phpunit/phpunit": "^4.8.35 || ^5.7 || ^6.5"
+            },
+            "type": "library",
+            "autoload": {
+                "psr-4": {
+                    "Composer\\XdebugHandler\\": "src"
+                }
+            },
+            "notification-url": "https://packagist.org/downloads/",
+            "license": [
+                "MIT"
+            ],
+            "authors": [
+                {
+                    "name": "John Stevenson",
+                    "email": "john-stevenson@blueyonder.co.uk"
+                }
+            ],
+            "description": "Restarts a process without xdebug.",
+            "keywords": [
+                "Xdebug",
+                "performance"
+            ],
+            "time": "2018-04-11T15:42:36+00:00"
+        },
         {
             "name": "doctrine/instantiator",
             "version": "1.1.0",
@@ -4636,16 +4688,16 @@
         },
         {
             "name": "filp/whoops",
-            "version": "2.1.14",
+            "version": "2.2.0",
             "source": {
                 "type": "git",
                 "url": "https://github.com/filp/whoops.git",
-                "reference": "c6081b8838686aa04f1e83ba7e91f78b7b2a23e6"
+                "reference": "181c4502d8f34db7aed7bfe88d4f87875b8e947a"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/filp/whoops/zipball/c6081b8838686aa04f1e83ba7e91f78b7b2a23e6",
-                "reference": "c6081b8838686aa04f1e83ba7e91f78b7b2a23e6",
+                "url": "https://api.github.com/repos/filp/whoops/zipball/181c4502d8f34db7aed7bfe88d4f87875b8e947a",
+                "reference": "181c4502d8f34db7aed7bfe88d4f87875b8e947a",
                 "shasum": ""
             },
             "require": {
@@ -4653,9 +4705,9 @@
                 "psr/log": "^1.0.1"
             },
             "require-dev": {
-                "mockery/mockery": "0.9.*",
+                "mockery/mockery": "^0.9 || ^1.0",
                 "phpunit/phpunit": "^4.8.35 || ^5.7",
-                "symfony/var-dumper": "^2.6 || ^3.0"
+                "symfony/var-dumper": "^2.6 || ^3.0 || ^4.0"
             },
             "suggest": {
                 "symfony/var-dumper": "Pretty print complex values better with var-dumper available",
@@ -4664,7 +4716,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "2.0-dev"
+                    "dev-master": "2.1-dev"
                 }
             },
             "autoload": {
@@ -4693,24 +4745,25 @@
                 "throwable",
                 "whoops"
             ],
-            "time": "2017-11-23T18:22:44+00:00"
+            "time": "2018-03-03T17:56:25+00:00"
         },
         {
             "name": "friendsofphp/php-cs-fixer",
-            "version": "v2.11.1",
+            "version": "v2.12.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/FriendsOfPHP/PHP-CS-Fixer.git",
-                "reference": "ad94441c17b8ef096e517acccdbf3238af8a2da8"
+                "reference": "beef6cbe6dec7205edcd143842a49f9a691859a6"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/FriendsOfPHP/PHP-CS-Fixer/zipball/ad94441c17b8ef096e517acccdbf3238af8a2da8",
-                "reference": "ad94441c17b8ef096e517acccdbf3238af8a2da8",
+                "url": "https://api.github.com/repos/FriendsOfPHP/PHP-CS-Fixer/zipball/beef6cbe6dec7205edcd143842a49f9a691859a6",
+                "reference": "beef6cbe6dec7205edcd143842a49f9a691859a6",
                 "shasum": ""
             },
             "require": {
                 "composer/semver": "^1.4",
+                "composer/xdebug-handler": "^1.0",
                 "doctrine/annotations": "^1.2",
                 "ext-json": "*",
                 "ext-tokenizer": "*",
@@ -4732,27 +4785,26 @@
             "require-dev": {
                 "johnkary/phpunit-speedtrap": "^1.1 || ^2.0 || ^3.0",
                 "justinrainbow/json-schema": "^5.0",
-                "keradus/cli-executor": "^1.0",
+                "keradus/cli-executor": "^1.1",
                 "mikey179/vfsstream": "^1.6",
-                "php-coveralls/php-coveralls": "^2.0",
+                "php-coveralls/php-coveralls": "^2.1",
                 "php-cs-fixer/accessible-object": "^1.0",
-                "phpunit/phpunit": "^5.7.23 || ^6.4.3 || ^7.0",
-                "phpunitgoodpractices/traits": "^1.3.1",
-                "symfony/phpunit-bridge": "^3.2.2 || ^4.0"
+                "php-cs-fixer/phpunit-constraint-isidenticalstring": "^1.0.1",
+                "php-cs-fixer/phpunit-constraint-xmlmatchesxsd": "^1.0.1",
+                "phpunit/phpunit": "^5.7.27 || ^6.5.8 || ^7.1",
+                "phpunitgoodpractices/traits": "^1.5",
+                "symfony/phpunit-bridge": "^4.0"
             },
             "suggest": {
                 "ext-mbstring": "For handling non-UTF8 characters in cache signature.",
+                "php-cs-fixer/phpunit-constraint-isidenticalstring": "For IsIdenticalString constraint.",
+                "php-cs-fixer/phpunit-constraint-xmlmatchesxsd": "For XmlMatchesXsd constraint.",
                 "symfony/polyfill-mbstring": "When enabling `ext-mbstring` is not possible."
             },
             "bin": [
                 "php-cs-fixer"
             ],
             "type": "application",
-            "extra": {
-                "branch-alias": {
-                    "dev-master": "2.11-dev"
-                }
-            },
             "autoload": {
                 "psr-4": {
                     "PhpCsFixer\\": "src/"
@@ -4762,9 +4814,6 @@
                     "tests/Test/AbstractIntegrationCaseFactory.php",
                     "tests/Test/AbstractIntegrationTestCase.php",
                     "tests/Test/Assert/AssertTokensTrait.php",
-                    "tests/Test/Constraint/SameStringsConstraint.php",
-                    "tests/Test/Constraint/SameStringsConstraintForV5.php",
-                    "tests/Test/Constraint/SameStringsConstraintForV7.php",
                     "tests/Test/IntegrationCase.php",
                     "tests/Test/IntegrationCaseFactory.php",
                     "tests/Test/IntegrationCaseFactoryInterface.php",
@@ -4787,7 +4836,7 @@
                 }
             ],
             "description": "A tool to automatically fix PHP code style",
-            "time": "2018-03-21T17:41:26+00:00"
+            "time": "2018-06-10T08:26:56+00:00"
         },
         {
             "name": "fzaninotto/faker",
@@ -5073,25 +5122,28 @@
         },
         {
             "name": "myclabs/deep-copy",
-            "version": "1.7.0",
+            "version": "1.8.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/myclabs/DeepCopy.git",
-                "reference": "3b8a3a99ba1f6a3952ac2747d989303cbd6b7a3e"
+                "reference": "3e01bdad3e18354c3dce54466b7fbe33a9f9f7f8"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/myclabs/DeepCopy/zipball/3b8a3a99ba1f6a3952ac2747d989303cbd6b7a3e",
-                "reference": "3b8a3a99ba1f6a3952ac2747d989303cbd6b7a3e",
+                "url": "https://api.github.com/repos/myclabs/DeepCopy/zipball/3e01bdad3e18354c3dce54466b7fbe33a9f9f7f8",
+                "reference": "3e01bdad3e18354c3dce54466b7fbe33a9f9f7f8",
                 "shasum": ""
             },
             "require": {
-                "php": "^5.6 || ^7.0"
+                "php": "^7.1"
+            },
+            "replace": {
+                "myclabs/deep-copy": "self.version"
             },
             "require-dev": {
                 "doctrine/collections": "^1.0",
                 "doctrine/common": "^2.6",
-                "phpunit/phpunit": "^4.1"
+                "phpunit/phpunit": "^7.1"
             },
             "type": "library",
             "autoload": {
@@ -5114,20 +5166,20 @@
                 "object",
                 "object graph"
             ],
-            "time": "2017-10-19T19:58:43+00:00"
+            "time": "2018-06-11T23:09:50+00:00"
         },
         {
             "name": "nunomaduro/collision",
-            "version": "v2.0.2",
+            "version": "v2.0.3",
             "source": {
                 "type": "git",
                 "url": "https://github.com/nunomaduro/collision.git",
-                "reference": "245958b02c6a9edf24627380f368333ac5413a51"
+                "reference": "b1f606399ae77e9479b5597cd1aa3d8ea0078176"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/nunomaduro/collision/zipball/245958b02c6a9edf24627380f368333ac5413a51",
-                "reference": "245958b02c6a9edf24627380f368333ac5413a51",
+                "url": "https://api.github.com/repos/nunomaduro/collision/zipball/b1f606399ae77e9479b5597cd1aa3d8ea0078176",
+                "reference": "b1f606399ae77e9479b5597cd1aa3d8ea0078176",
                 "shasum": ""
             },
             "require": {
@@ -5138,7 +5190,8 @@
             },
             "require-dev": {
                 "laravel/framework": "5.6.*",
-                "phpunit/phpunit": "~7.0"
+                "phpstan/phpstan": "^0.9.2",
+                "phpunit/phpunit": "~7.2"
             },
             "type": "library",
             "extra": {
@@ -5176,7 +5229,7 @@
                 "php",
                 "symfony"
             ],
-            "time": "2018-03-21T20:11:24+00:00"
+            "time": "2018-06-16T22:05:52+00:00"
         },
         {
             "name": "phar-io/manifest",
@@ -5716,23 +5769,23 @@
         },
         {
             "name": "phpunit/php-code-coverage",
-            "version": "6.0.4",
+            "version": "6.0.7",
             "source": {
                 "type": "git",
                 "url": "https://github.com/sebastianbergmann/php-code-coverage.git",
-                "reference": "52187754b0eed0b8159f62a6fa30073327e8c2ca"
+                "reference": "865662550c384bc1db7e51d29aeda1c2c161d69a"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/php-code-coverage/zipball/52187754b0eed0b8159f62a6fa30073327e8c2ca",
-                "reference": "52187754b0eed0b8159f62a6fa30073327e8c2ca",
+                "url": "https://api.github.com/repos/sebastianbergmann/php-code-coverage/zipball/865662550c384bc1db7e51d29aeda1c2c161d69a",
+                "reference": "865662550c384bc1db7e51d29aeda1c2c161d69a",
                 "shasum": ""
             },
             "require": {
                 "ext-dom": "*",
                 "ext-xmlwriter": "*",
                 "php": "^7.1",
-                "phpunit/php-file-iterator": "^1.4.2",
+                "phpunit/php-file-iterator": "^2.0",
                 "phpunit/php-text-template": "^1.2.1",
                 "phpunit/php-token-stream": "^3.0",
                 "sebastian/code-unit-reverse-lookup": "^1.0.1",
@@ -5775,29 +5828,29 @@
                 "testing",
                 "xunit"
             ],
-            "time": "2018-04-29T14:59:09+00:00"
+            "time": "2018-06-01T07:51:50+00:00"
         },
         {
             "name": "phpunit/php-file-iterator",
-            "version": "1.4.5",
+            "version": "2.0.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/sebastianbergmann/php-file-iterator.git",
-                "reference": "730b01bc3e867237eaac355e06a36b85dd93a8b4"
+                "reference": "cecbc684605bb0cc288828eb5d65d93d5c676d3c"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/php-file-iterator/zipball/730b01bc3e867237eaac355e06a36b85dd93a8b4",
-                "reference": "730b01bc3e867237eaac355e06a36b85dd93a8b4",
+                "url": "https://api.github.com/repos/sebastianbergmann/php-file-iterator/zipball/cecbc684605bb0cc288828eb5d65d93d5c676d3c",
+                "reference": "cecbc684605bb0cc288828eb5d65d93d5c676d3c",
                 "shasum": ""
             },
             "require": {
-                "php": ">=5.3.3"
+                "php": "^7.1"
             },
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "1.4.x-dev"
+                    "dev-master": "2.0.x-dev"
                 }
             },
             "autoload": {
@@ -5812,7 +5865,7 @@
             "authors": [
                 {
                     "name": "Sebastian Bergmann",
-                    "email": "sb@sebastian-bergmann.de",
+                    "email": "sebastian@phpunit.de",
                     "role": "lead"
                 }
             ],
@@ -5822,7 +5875,7 @@
                 "filesystem",
                 "iterator"
             ],
-            "time": "2017-11-27T13:52:08+00:00"
+            "time": "2018-06-11T11:44:00+00:00"
         },
         {
             "name": "phpunit/php-text-template",
@@ -5965,34 +6018,34 @@
         },
         {
             "name": "phpunit/phpunit",
-            "version": "7.1.5",
+            "version": "7.2.6",
             "source": {
                 "type": "git",
                 "url": "https://github.com/sebastianbergmann/phpunit.git",
-                "reference": "ca64dba53b88aba6af32aebc6b388068db95c435"
+                "reference": "400a3836ee549ae6f665323ac3f21e27eac7155f"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/phpunit/zipball/ca64dba53b88aba6af32aebc6b388068db95c435",
-                "reference": "ca64dba53b88aba6af32aebc6b388068db95c435",
+                "url": "https://api.github.com/repos/sebastianbergmann/phpunit/zipball/400a3836ee549ae6f665323ac3f21e27eac7155f",
+                "reference": "400a3836ee549ae6f665323ac3f21e27eac7155f",
                 "shasum": ""
             },
             "require": {
+                "doctrine/instantiator": "^1.1",
                 "ext-dom": "*",
                 "ext-json": "*",
                 "ext-libxml": "*",
                 "ext-mbstring": "*",
                 "ext-xml": "*",
-                "myclabs/deep-copy": "^1.6.1",
+                "myclabs/deep-copy": "^1.7",
                 "phar-io/manifest": "^1.0.1",
                 "phar-io/version": "^1.0",
                 "php": "^7.1",
                 "phpspec/prophecy": "^1.7",
-                "phpunit/php-code-coverage": "^6.0.1",
-                "phpunit/php-file-iterator": "^1.4.3",
+                "phpunit/php-code-coverage": "^6.0.7",
+                "phpunit/php-file-iterator": "^2.0.1",
                 "phpunit/php-text-template": "^1.2.1",
                 "phpunit/php-timer": "^2.0",
-                "phpunit/phpunit-mock-objects": "^6.1.1",
                 "sebastian/comparator": "^3.0",
                 "sebastian/diff": "^3.0",
                 "sebastian/environment": "^3.1",
@@ -6002,10 +6055,14 @@
                 "sebastian/resource-operations": "^1.0",
                 "sebastian/version": "^2.0.1"
             },
+            "conflict": {
+                "phpunit/phpunit-mock-objects": "*"
+            },
             "require-dev": {
                 "ext-pdo": "*"
             },
             "suggest": {
+                "ext-soap": "*",
                 "ext-xdebug": "*",
                 "phpunit/php-invoker": "^2.0"
             },
@@ -6015,7 +6072,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "7.1-dev"
+                    "dev-master": "7.2-dev"
                 }
             },
             "autoload": {
@@ -6041,63 +6098,7 @@
                 "testing",
                 "xunit"
             ],
-            "time": "2018-04-29T15:09:19+00:00"
-        },
-        {
-            "name": "phpunit/phpunit-mock-objects",
-            "version": "6.1.1",
-            "source": {
-                "type": "git",
-                "url": "https://github.com/sebastianbergmann/phpunit-mock-objects.git",
-                "reference": "70c740bde8fd9ea9ea295be1cd875dd7b267e157"
-            },
-            "dist": {
-                "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/phpunit-mock-objects/zipball/70c740bde8fd9ea9ea295be1cd875dd7b267e157",
-                "reference": "70c740bde8fd9ea9ea295be1cd875dd7b267e157",
-                "shasum": ""
-            },
-            "require": {
-                "doctrine/instantiator": "^1.0.5",
-                "php": "^7.1",
-                "phpunit/php-text-template": "^1.2.1",
-                "sebastian/exporter": "^3.1"
-            },
-            "require-dev": {
-                "phpunit/phpunit": "^7.0"
-            },
-            "suggest": {
-                "ext-soap": "*"
-            },
-            "type": "library",
-            "extra": {
-                "branch-alias": {
-                    "dev-master": "6.1-dev"
-                }
-            },
-            "autoload": {
-                "classmap": [
-                    "src/"
-                ]
-            },
-            "notification-url": "https://packagist.org/downloads/",
-            "license": [
-                "BSD-3-Clause"
-            ],
-            "authors": [
-                {
-                    "name": "Sebastian Bergmann",
-                    "email": "sebastian@phpunit.de",
-                    "role": "lead"
-                }
-            ],
-            "description": "Mock Object library for PHPUnit",
-            "homepage": "https://github.com/sebastianbergmann/phpunit-mock-objects/",
-            "keywords": [
-                "mock",
-                "xunit"
-            ],
-            "time": "2018-04-11T04:50:36+00:00"
+            "time": "2018-06-21T13:13:39+00:00"
         },
         {
             "name": "sebastian/code-unit-reverse-lookup",
@@ -6146,16 +6147,16 @@
         },
         {
             "name": "sebastian/comparator",
-            "version": "3.0.0",
+            "version": "3.0.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/sebastianbergmann/comparator.git",
-                "reference": "ed5fd2281113729f1ebcc64d101ad66028aeb3d5"
+                "reference": "591a30922f54656695e59b1f39501aec513403da"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/comparator/zipball/ed5fd2281113729f1ebcc64d101ad66028aeb3d5",
-                "reference": "ed5fd2281113729f1ebcc64d101ad66028aeb3d5",
+                "url": "https://api.github.com/repos/sebastianbergmann/comparator/zipball/591a30922f54656695e59b1f39501aec513403da",
+                "reference": "591a30922f54656695e59b1f39501aec513403da",
                 "shasum": ""
             },
             "require": {
@@ -6206,20 +6207,20 @@
                 "compare",
                 "equality"
             ],
-            "time": "2018-04-18T13:33:00+00:00"
+            "time": "2018-06-14T15:05:28+00:00"
         },
         {
             "name": "sebastian/diff",
-            "version": "3.0.0",
+            "version": "3.0.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/sebastianbergmann/diff.git",
-                "reference": "e09160918c66281713f1c324c1f4c4c3037ba1e8"
+                "reference": "366541b989927187c4ca70490a35615d3fef2dce"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/sebastianbergmann/diff/zipball/e09160918c66281713f1c324c1f4c4c3037ba1e8",
-                "reference": "e09160918c66281713f1c324c1f4c4c3037ba1e8",
+                "url": "https://api.github.com/repos/sebastianbergmann/diff/zipball/366541b989927187c4ca70490a35615d3fef2dce",
+                "reference": "366541b989927187c4ca70490a35615d3fef2dce",
                 "shasum": ""
             },
             "require": {
@@ -6262,7 +6263,7 @@
                 "unidiff",
                 "unified diff"
             ],
-            "time": "2018-02-01T13:45:15+00:00"
+            "time": "2018-06-10T07:54:39+00:00"
         },
         {
             "name": "sebastian/environment",
@@ -6664,7 +6665,7 @@
         },
         {
             "name": "symfony/class-loader",
-            "version": "v3.4.11",
+            "version": "v3.4.12",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/class-loader.git",
@@ -6720,16 +6721,16 @@
         },
         {
             "name": "symfony/filesystem",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/filesystem.git",
-                "reference": "7a69e728e9f0044958c2fd7d72bfe5e7bd1a4d04"
+                "reference": "562bf7005b55fd80d26b582d28e3e10f2dd5ae9c"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/filesystem/zipball/7a69e728e9f0044958c2fd7d72bfe5e7bd1a4d04",
-                "reference": "7a69e728e9f0044958c2fd7d72bfe5e7bd1a4d04",
+                "url": "https://api.github.com/repos/symfony/filesystem/zipball/562bf7005b55fd80d26b582d28e3e10f2dd5ae9c",
+                "reference": "562bf7005b55fd80d26b582d28e3e10f2dd5ae9c",
                 "shasum": ""
             },
             "require": {
@@ -6739,7 +6740,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -6766,20 +6767,20 @@
             ],
             "description": "Symfony Filesystem Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-16T09:05:32+00:00"
+            "time": "2018-05-30T07:26:09+00:00"
         },
         {
             "name": "symfony/options-resolver",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/options-resolver.git",
-                "reference": "ac1c3a814ddcad9d0cc2d0382e215d3bff8ae2d2"
+                "reference": "45cdcc8a96ef92b43a50723e6d1f5f83096e8cef"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/options-resolver/zipball/ac1c3a814ddcad9d0cc2d0382e215d3bff8ae2d2",
-                "reference": "ac1c3a814ddcad9d0cc2d0382e215d3bff8ae2d2",
+                "url": "https://api.github.com/repos/symfony/options-resolver/zipball/45cdcc8a96ef92b43a50723e6d1f5f83096e8cef",
+                "reference": "45cdcc8a96ef92b43a50723e6d1f5f83096e8cef",
                 "shasum": ""
             },
             "require": {
@@ -6788,7 +6789,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -6820,7 +6821,7 @@
                 "configuration",
                 "options"
             ],
-            "time": "2018-05-11T15:58:37+00:00"
+            "time": "2018-05-31T10:17:53+00:00"
         },
         {
             "name": "symfony/polyfill-php70",
@@ -6883,16 +6884,16 @@
         },
         {
             "name": "symfony/stopwatch",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/stopwatch.git",
-                "reference": "6795ffa2f8eebedac77f045aa62c0c10b2763042"
+                "reference": "07463bbbbbfe119045a24c4a516f92ebd2752784"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/stopwatch/zipball/6795ffa2f8eebedac77f045aa62c0c10b2763042",
-                "reference": "6795ffa2f8eebedac77f045aa62c0c10b2763042",
+                "url": "https://api.github.com/repos/symfony/stopwatch/zipball/07463bbbbbfe119045a24c4a516f92ebd2752784",
+                "reference": "07463bbbbbfe119045a24c4a516f92ebd2752784",
                 "shasum": ""
             },
             "require": {
@@ -6901,7 +6902,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -6928,20 +6929,20 @@
             ],
             "description": "Symfony Stopwatch Component",
             "homepage": "https://symfony.com",
-            "time": "2018-02-19T16:50:22+00:00"
+            "time": "2018-02-19T16:51:42+00:00"
         },
         {
             "name": "symfony/yaml",
-            "version": "v4.0.11",
+            "version": "v4.1.1",
             "source": {
                 "type": "git",
                 "url": "https://github.com/symfony/yaml.git",
-                "reference": "048b1be5fb96e73ff1d065f5e7e23f84415ac907"
+                "reference": "80e4bfa9685fc4a09acc4a857ec16974a9cd944e"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/symfony/yaml/zipball/048b1be5fb96e73ff1d065f5e7e23f84415ac907",
-                "reference": "048b1be5fb96e73ff1d065f5e7e23f84415ac907",
+                "url": "https://api.github.com/repos/symfony/yaml/zipball/80e4bfa9685fc4a09acc4a857ec16974a9cd944e",
+                "reference": "80e4bfa9685fc4a09acc4a857ec16974a9cd944e",
                 "shasum": ""
             },
             "require": {
@@ -6960,7 +6961,7 @@
             "type": "library",
             "extra": {
                 "branch-alias": {
-                    "dev-master": "4.0-dev"
+                    "dev-master": "4.1-dev"
                 }
             },
             "autoload": {
@@ -6987,7 +6988,7 @@
             ],
             "description": "Symfony Yaml Component",
             "homepage": "https://symfony.com",
-            "time": "2018-05-07T07:12:24+00:00"
+            "time": "2018-05-30T07:26:09+00:00"
         },
         {
             "name": "theseer/tokenizer",

From 422e5dd99fcacc9606ac4bdb1c1a8ce76678b4c8 Mon Sep 17 00:00:00 2001
From: Jan <j.schipper1@hotmail.de>
Date: Tue, 3 Jul 2018 00:04:16 +0200
Subject: [PATCH 41/62] Update strings.php (#1227)

Fixed typo.
---
 resources/lang/de/strings.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/lang/de/strings.php b/resources/lang/de/strings.php
index 2e2f2a751..299a7d67e 100644
--- a/resources/lang/de/strings.php
+++ b/resources/lang/de/strings.php
@@ -48,7 +48,7 @@ return [
     'select_none' => 'Alles abwählen',
     'alias' => 'Alias',
     'primary' => 'Primär',
-    'make_primary' => 'Primät machen',
+    'make_primary' => 'Primär machen',
     'none' => 'Nichts',
     'cancel' => 'Abbrechen',
     'created_at' => 'Erstellt am',

From b342d4dc6b6a202e82792e646155ac6a38709fdb Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Tue, 3 Jul 2018 23:11:22 -0700
Subject: [PATCH 42/62] Change v:serve to match the new vagrant setup

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 4e672967b..ecd4257b4 100644
--- a/package.json
+++ b/package.json
@@ -59,7 +59,7 @@
         "build": "NODE_ENV=development ./node_modules/.bin/webpack --progress",
         "build:production": "NODE_ENV=production ./node_modules/.bin/webpack",
         "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --no-clipboard --progress",
-        "v:serve": "PUBLIC_PATH=http://192.168.50.2:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.50.2 --no-clipboard",
+        "v:serve": "PUBLIC_PATH=http://pterodactyl.local:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.10.10 --no-clipboard",
         "compile:assets": "php artisan vue-i18n:generate & php artisan ziggy:generate resources/assets/scripts/helpers/ziggy.js"
     }
 }

From 8f5bd214a49a73edf50041ec35b5e6b97ccef12f Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 11:41:56 -0700
Subject: [PATCH 43/62] [Security] Address 2FA bypass in password reset
 functionality

Thanks to Trixter#0001 on Discord for this security report.

There was a two-factor authentication bypass present in all previous versions of Pterodactyl that would allow a user to login without providing a token by going through the password reset process. A person would still have to have access to the targeted account's email, but if they did manage to get a password reset link they would be able to reset the account password and then proceede to login without a token being required.

This logic has since been changed to check if 2FA is enabled on an account, and if so they will NOT be logged in when their password is changed. This will force them to continue through the normal login pathway where a token will be needed.

Overall the impact of this issue is minor, but I am still addressing it and disclosing the mechanism behind it.
---
 .../Auth/ResetPasswordController.php          | 92 +++++++++++++++++++
 1 file changed, 92 insertions(+)

diff --git a/app/Http/Controllers/Auth/ResetPasswordController.php b/app/Http/Controllers/Auth/ResetPasswordController.php
index 226958416..d1f21994f 100644
--- a/app/Http/Controllers/Auth/ResetPasswordController.php
+++ b/app/Http/Controllers/Auth/ResetPasswordController.php
@@ -2,8 +2,14 @@
 
 namespace Pterodactyl\Http\Controllers\Auth;
 
+use Illuminate\Support\Str;
+use Prologue\Alerts\AlertsMessageBag;
+use Illuminate\Contracts\Hashing\Hasher;
+use Illuminate\Auth\Events\PasswordReset;
+use Illuminate\Contracts\Events\Dispatcher;
 use Pterodactyl\Http\Controllers\Controller;
 use Illuminate\Foundation\Auth\ResetsPasswords;
+use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 
 class ResetPasswordController extends Controller
 {
@@ -16,6 +22,47 @@ class ResetPasswordController extends Controller
      */
     public $redirectTo = '/';
 
+    /**
+     * @var bool
+     */
+    protected $hasTwoFactor = false;
+
+    /**
+     * @var \Prologue\Alerts\AlertsMessageBag
+     */
+    private $alerts;
+
+    /**
+     * @var \Illuminate\Contracts\Events\Dispatcher
+     */
+    private $dispatcher;
+
+    /**
+     * @var \Illuminate\Contracts\Hashing\Hasher
+     */
+    private $hasher;
+
+    /**
+     * @var \Pterodactyl\Contracts\Repository\UserRepositoryInterface
+     */
+    private $userRepository;
+
+    /**
+     * ResetPasswordController constructor.
+     *
+     * @param \Prologue\Alerts\AlertsMessageBag                         $alerts
+     * @param \Illuminate\Contracts\Events\Dispatcher                   $dispatcher
+     * @param \Illuminate\Contracts\Hashing\Hasher                      $hasher
+     * @param \Pterodactyl\Contracts\Repository\UserRepositoryInterface $userRepository
+     */
+    public function __construct(AlertsMessageBag $alerts, Dispatcher $dispatcher, Hasher $hasher, UserRepositoryInterface $userRepository)
+    {
+        $this->alerts = $alerts;
+        $this->dispatcher = $dispatcher;
+        $this->hasher = $hasher;
+        $this->userRepository = $userRepository;
+    }
+
     /**
      * Return the rules used when validating password reset.
      *
@@ -29,4 +76,49 @@ class ResetPasswordController extends Controller
             'password' => 'required|confirmed|min:8',
         ];
     }
+
+    /**
+     * Reset the given user's password. If the user has two-factor authentication enabled on their
+     * account do not automatically log them in. In those cases, send the user back to the login
+     * form with a note telling them their password was changed and to log back in.
+     *
+     * @param \Illuminate\Contracts\Auth\CanResetPassword|\Pterodactyl\Models\User $user
+     * @param string                                                               $password
+     *
+     * @throws \Pterodactyl\Exceptions\Model\DataValidationException
+     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
+     */
+    protected function resetPassword($user, $password)
+    {
+        $user = $this->userRepository->update($user->id, [
+            'password' => $this->hasher->make($password),
+            $user->getRememberTokenName() => Str::random(60),
+        ]);
+
+        $this->dispatcher->dispatch(new PasswordReset($user));
+
+        // If the user is not using 2FA log them in, otherwise skip this step and force a
+        // fresh login where they'll be prompted to enter a token.
+        if (! $user->use_totp) {
+            $this->guard()->login($user);
+        }
+
+        $this->hasTwoFactor = $user->use_totp;
+    }
+
+    /**
+     * Get the response for a successful password reset.
+     *
+     * @param string $response
+     * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\JsonResponse
+     */
+    protected function sendResetResponse($response)
+    {
+        if ($this->hasTwoFactor) {
+            $this->alerts->success('Your password was successfully updated. Please log in to continue.')->flash();
+        }
+
+        return redirect($this->hasTwoFactor ? route('auth.login') : $this->redirectPath())
+            ->with('status', trans($response));
+    }
 }

From d9948f2876b4dd8bf21c949da96cff238597139a Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 11:42:57 -0700
Subject: [PATCH 44/62] Update changelog

---
 CHANGELOG.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index bdb7ae655..ab0365a17 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,10 @@ This file is a running track of new features and fixes to each version of the pa
 
 This project follows [Semantic Versioning](http://semver.org) guidelines.
 
+## v0.7.9 (Derelict Dermodactylus)
+### Fixed
+* Fixes a two-factor authentication bypass present in the password reset process for an account.
+
 ## v0.7.8 (Derelict Dermodactylus)
 ### Added
 * Nodes can now be put into maintenance mode to deny access to servers temporarily.

From 6419b1cf81e8f76ae79067f4fda51a192da341ff Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 18:11:43 -0700
Subject: [PATCH 45/62] Handle password reset logic change for 2fa

---
 resources/assets/scripts/components/auth/ResetPassword.vue | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/resources/assets/scripts/components/auth/ResetPassword.vue b/resources/assets/scripts/components/auth/ResetPassword.vue
index cda6716ac..ebfc588f8 100644
--- a/resources/assets/scripts/components/auth/ResetPassword.vue
+++ b/resources/assets/scripts/components/auth/ResetPassword.vue
@@ -97,6 +97,11 @@
                             throw new Error('An error was encountered while processing this login.');
                         }
 
+                        if (response.data.send_to_login) {
+                            self.success('Your password has been reset, please login to continue.');
+                            return self.$router.push({ name: 'login' });
+                        }
+
                         return window.location = response.data.redirect_to;
                     })
                     .catch(function (err) {

From ec8e4343758de6d1a6831be68389703838467bcd Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 19:00:20 -0700
Subject: [PATCH 46/62] Set the 2fa image to always have a consistent height,
 less jarring transition

---
 .../components/dashboard/account/TwoFactorAuthentication.vue  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
index a6b8b38da..a9399a37f 100644
--- a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
+++ b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
@@ -30,8 +30,8 @@
             <h2 class="font-medium text-grey-darkest">{{ $t('dashboard.account.two_factor.setup.title') }}</h2>
             <div class="flex mt-6">
                 <div class="flex-none w-full sm:w-1/2 text-center">
-                    <div>
-                        <img :src="response.qr_image" alt="Two-factor qr image" class="w-3/4">
+                    <div class="h-48">
+                        <img :src="response.qr_image" alt="Two-factor qr image" class="h-48">
                     </div>
                     <div>
                         <p class="text-xs text-grey-darker mb-2">{{ $t('dashboard.account.two_factor.setup.help') }}</p>

From 6c20ea988100588a8ae084e0f2441ab3cf7c4d68 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 19:20:33 -0700
Subject: [PATCH 47/62] Add tests for changed controllers

---
 .../Controllers/Base/AccountController.php    |  86 -----------
 .../Base/AccountControllerTest.php            | 132 -----------------
 .../Controllers/Base/IndexControllerTest.php  |   2 +-
 .../Base/SecurityControllerTest.php           | 133 +++++++-----------
 .../Http/Controllers/ControllerTestCase.php   |  13 ++
 5 files changed, 62 insertions(+), 304 deletions(-)
 delete mode 100644 app/Http/Controllers/Base/AccountController.php
 delete mode 100644 tests/Unit/Http/Controllers/Base/AccountControllerTest.php

diff --git a/app/Http/Controllers/Base/AccountController.php b/app/Http/Controllers/Base/AccountController.php
deleted file mode 100644
index 90d590ff2..000000000
--- a/app/Http/Controllers/Base/AccountController.php
+++ /dev/null
@@ -1,86 +0,0 @@
-<?php
-
-namespace Pterodactyl\Http\Controllers\Base;
-
-use Pterodactyl\Models\User;
-use Illuminate\Auth\AuthManager;
-use Prologue\Alerts\AlertsMessageBag;
-use Illuminate\Contracts\Session\Session;
-use Pterodactyl\Http\Controllers\Controller;
-use Pterodactyl\Services\Users\UserUpdateService;
-use Pterodactyl\Http\Requests\Base\AccountDataFormRequest;
-
-class AccountController extends Controller
-{
-    /**
-     * @var \Prologue\Alerts\AlertsMessageBag
-     */
-    protected $alert;
-
-    /**
-     * @var \Illuminate\Auth\SessionGuard
-     */
-    protected $sessionGuard;
-
-    /**
-     * @var \Pterodactyl\Services\Users\UserUpdateService
-     */
-    protected $updateService;
-
-    /**
-     * AccountController constructor.
-     *
-     * @param \Prologue\Alerts\AlertsMessageBag             $alert
-     * @param \Illuminate\Auth\AuthManager                  $authManager
-     * @param \Pterodactyl\Services\Users\UserUpdateService $updateService
-     */
-    public function __construct(AlertsMessageBag $alert, AuthManager $authManager, UserUpdateService $updateService)
-    {
-        $this->alert = $alert;
-        $this->updateService = $updateService;
-        $this->sessionGuard = $authManager->guard();
-    }
-
-    /**
-     * Display base account information page.
-     *
-     * @return \Illuminate\View\View
-     */
-    public function index()
-    {
-        return view('base.account');
-    }
-
-    /**
-     * Update details for a user's account.
-     *
-     * @param \Pterodactyl\Http\Requests\Base\AccountDataFormRequest $request
-     * @return \Illuminate\Http\RedirectResponse
-     *
-     * @throws \Pterodactyl\Exceptions\Model\DataValidationException
-     * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
-     */
-    public function update(AccountDataFormRequest $request)
-    {
-        // Prevent logging this specific session out when the password is changed. This will
-        // automatically update the user's password anyways, so no need to do anything else here.
-        if ($request->input('do_action') === 'password') {
-            $this->sessionGuard->logoutOtherDevices($request->input('new_password'));
-        } else {
-            if ($request->input('do_action') === 'email') {
-                $data = ['email' => $request->input('new_email')];
-            } elseif ($request->input('do_action') === 'identity') {
-                $data = $request->only(['name_first', 'name_last', 'username']);
-            } else {
-                $data = [];
-            }
-
-            $this->updateService->setUserLevel(User::USER_LEVEL_USER);
-            $this->updateService->handle($request->user(), $data);
-        }
-
-        $this->alert->success(trans('base.account.details_updated'))->flash();
-
-        return redirect()->route('account');
-    }
-}
diff --git a/tests/Unit/Http/Controllers/Base/AccountControllerTest.php b/tests/Unit/Http/Controllers/Base/AccountControllerTest.php
deleted file mode 100644
index 2b3fc674a..000000000
--- a/tests/Unit/Http/Controllers/Base/AccountControllerTest.php
+++ /dev/null
@@ -1,132 +0,0 @@
-<?php
-
-namespace Tests\Unit\Http\Controllers\Base;
-
-use Mockery as m;
-use Pterodactyl\Models\User;
-use Illuminate\Auth\AuthManager;
-use Illuminate\Auth\SessionGuard;
-use Prologue\Alerts\AlertsMessageBag;
-use Pterodactyl\Services\Users\UserUpdateService;
-use Tests\Unit\Http\Controllers\ControllerTestCase;
-use Pterodactyl\Http\Controllers\Base\AccountController;
-use Pterodactyl\Http\Requests\Base\AccountDataFormRequest;
-
-class AccountControllerTest extends ControllerTestCase
-{
-    /**
-     * @var \Prologue\Alerts\AlertsMessageBag|\Mockery\Mock
-     */
-    protected $alert;
-
-    /**
-     * @var \Illuminate\Auth\AuthManager|\Mockery\Mock
-     */
-    protected $authManager;
-
-    /**
-     * @var \Illuminate\Auth\SessionGuard|\Mockery\Mock
-     */
-    protected $sessionGuard;
-
-    /**
-     * @var \Pterodactyl\Services\Users\UserUpdateService|\Mockery\Mock
-     */
-    protected $updateService;
-
-    /**
-     * Setup tests.
-     */
-    public function setUp()
-    {
-        parent::setUp();
-
-        $this->alert = m::mock(AlertsMessageBag::class);
-        $this->updateService = m::mock(UserUpdateService::class);
-        $this->authManager = m::mock(AuthManager::class);
-        $this->sessionGuard = m::mock(SessionGuard::class);
-
-        $this->authManager->shouldReceive('guard')->once()->andReturn($this->sessionGuard);
-    }
-
-    /**
-     * Test the index controller.
-     */
-    public function testIndexController()
-    {
-        $response = $this->getController()->index();
-
-        $this->assertIsViewResponse($response);
-        $this->assertViewNameEquals('base.account', $response);
-    }
-
-    /**
-     * Test controller when password is being updated.
-     */
-    public function testUpdateControllerForPassword()
-    {
-        $this->setRequestMockClass(AccountDataFormRequest::class);
-
-        $this->request->shouldReceive('input')->with('do_action')->andReturn('password');
-        $this->request->shouldReceive('input')->with('new_password')->once()->andReturn('test-password');
-        $this->sessionGuard->shouldReceive('logoutOtherDevices')->once()->with('test-password')->andReturnSelf();
-
-        $this->alert->shouldReceive('success->flash')->once()->andReturnNull();
-
-        $response = $this->getController()->update($this->request);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account', $response);
-    }
-
-    /**
-     * Test controller when email is being updated.
-     */
-    public function testUpdateControllerForEmail()
-    {
-        $this->setRequestMockClass(AccountDataFormRequest::class);
-        $user = $this->generateRequestUserModel();
-
-        $this->request->shouldReceive('input')->with('do_action')->andReturn('email');
-        $this->request->shouldReceive('input')->with('new_email')->once()->andReturn('test@example.com');
-
-        $this->updateService->shouldReceive('setUserLevel')->with(User::USER_LEVEL_USER)->once()->andReturnNull();
-        $this->updateService->shouldReceive('handle')->with($user, ['email' => 'test@example.com'])->once()->andReturn(collect());
-        $this->alert->shouldReceive('success->flash')->once()->andReturnNull();
-
-        $response = $this->getController()->update($this->request);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account', $response);
-    }
-
-    /**
-     * Test controller when identity is being updated.
-     */
-    public function testUpdateControllerForIdentity()
-    {
-        $this->setRequestMockClass(AccountDataFormRequest::class);
-        $user = $this->generateRequestUserModel();
-
-        $this->request->shouldReceive('input')->with('do_action')->andReturn('identity');
-        $this->request->shouldReceive('only')->with(['name_first', 'name_last', 'username'])->once()->andReturn([
-            'test_data' => 'value',
-        ]);
-
-        $this->updateService->shouldReceive('setUserLevel')->with(User::USER_LEVEL_USER)->once()->andReturnNull();
-        $this->updateService->shouldReceive('handle')->with($user, ['test_data' => 'value'])->once()->andReturn(collect());
-        $this->alert->shouldReceive('success->flash')->once()->andReturnNull();
-
-        $response = $this->getController()->update($this->request);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account', $response);
-    }
-
-    /**
-     * Return an instance of the controller for testing.
-     *
-     * @return \Pterodactyl\Http\Controllers\Base\AccountController
-     */
-    private function getController(): AccountController
-    {
-        return new AccountController($this->alert, $this->authManager, $this->updateService);
-    }
-}
diff --git a/tests/Unit/Http/Controllers/Base/IndexControllerTest.php b/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
index 6f18138ad..6e8cd38cf 100644
--- a/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
+++ b/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
@@ -76,7 +76,7 @@ class IndexControllerTest extends ControllerTestCase
             ->shouldReceive('filterUserAccessServers')->with($model, User::FILTER_LEVEL_ALL)
             ->once()->andReturn($paginator);
 
-        $response = $this->controller->getIndex($this->request);
+        $response = $this->controller->index($this->request);
         $this->assertIsViewResponse($response);
         $this->assertViewNameEquals('base.index', $response);
         $this->assertViewHasKey('servers', $response);
diff --git a/tests/Unit/Http/Controllers/Base/SecurityControllerTest.php b/tests/Unit/Http/Controllers/Base/SecurityControllerTest.php
index 363a59801..5423f0938 100644
--- a/tests/Unit/Http/Controllers/Base/SecurityControllerTest.php
+++ b/tests/Unit/Http/Controllers/Base/SecurityControllerTest.php
@@ -3,6 +3,8 @@
 namespace Tests\Unit\Http\Controllers\Base;
 
 use Mockery as m;
+use Illuminate\Http\Response;
+use Illuminate\Support\Collection;
 use Prologue\Alerts\AlertsMessageBag;
 use Illuminate\Contracts\Config\Repository;
 use Tests\Unit\Http\Controllers\ControllerTestCase;
@@ -53,125 +55,86 @@ class SecurityControllerTest extends ControllerTestCase
         $this->twoFactorSetupService = m::mock(TwoFactorSetupService::class);
     }
 
-    /**
-     * Test the index controller when using a database driver.
-     */
-    public function testIndexControllerWithDatabaseDriver()
-    {
-        $model = $this->generateRequestUserModel();
-
-        $this->config->shouldReceive('get')->with('session.driver')->once()->andReturn('database');
-        $this->repository->shouldReceive('getUserSessions')->with($model->id)->once()->andReturn(collect(['sessions']));
-
-        $response = $this->getController()->index($this->request);
-        $this->assertIsViewResponse($response);
-        $this->assertViewNameEquals('base.security', $response);
-        $this->assertViewHasKey('sessions', $response);
-        $this->assertViewKeyEquals('sessions', collect(['sessions']), $response);
-    }
-
-    /**
-     * Test the index controller when not using the database driver.
-     */
-    public function testIndexControllerWithoutDatabaseDriver()
-    {
-        $this->config->shouldReceive('get')->with('session.driver')->once()->andReturn('redis');
-
-        $response = $this->getController()->index($this->request);
-        $this->assertIsViewResponse($response);
-        $this->assertViewNameEquals('base.security', $response);
-        $this->assertViewHasKey('sessions', $response);
-        $this->assertViewKeyEquals('sessions', null, $response);
-    }
-
     /**
      * Test TOTP generation controller.
      */
-    public function testGenerateTotpController()
+    public function testIndexWithout2FactorEnabled()
     {
-        $model = $this->generateRequestUserModel();
+        $model = $this->generateRequestUserModel(['use_totp' => 0]);
 
-        $this->twoFactorSetupService->shouldReceive('handle')->with($model)->once()->andReturn('qrCodeImage');
+        $this->twoFactorSetupService->shouldReceive('handle')->with($model)->once()->andReturn(new Collection([
+            'image' => 'test-image',
+            'secret' => 'secret-code',
+        ]));
 
-        $response = $this->getController()->generateTotp($this->request);
+        $response = $this->getController()->index($this->request);
         $this->assertIsJsonResponse($response);
-        $this->assertResponseJsonEquals(['qrImage' => 'qrCodeImage'], $response);
+        $this->assertResponseCodeEquals(Response::HTTP_OK, $response);
+        $this->assertResponseJsonEquals(['enabled' => false, 'qr_image' => 'test-image', 'secret' => 'secret-code'], $response);
     }
 
     /**
      * Test TOTP setting controller when no exception is thrown by the service.
      */
-    public function testSetTotpControllerSuccess()
+    public function testIndexWith2FactorEnabled()
     {
-        $model = $this->generateRequestUserModel();
+        $this->generateRequestUserModel(['use_totp' => 1]);
 
-        $this->request->shouldReceive('input')->with('token')->once()->andReturn('testToken');
-        $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'testToken')->once();
-
-        $response = $this->getController()->setTotp($this->request);
-        $this->assertIsResponse($response);
-        $this->assertSame('true', $response->getContent());
+        $response = $this->getController()->index($this->request);
+        $this->assertIsJsonResponse($response);
+        $this->assertResponseCodeEquals(Response::HTTP_OK, $response);
+        $this->assertResponseJsonEquals(['enabled' => true], $response);
     }
 
     /**
-     * Test TOTP setting controller when an exception is thrown by the service.
+     * Test that a 2FA token can be stored or deleted.
+     *
+     * @param string $func
+     * @dataProvider functionCallDataProvider
      */
-    public function testSetTotpControllerWhenExceptionIsThrown()
+    public function testStore(string $func)
     {
         $model = $this->generateRequestUserModel();
 
-        $this->request->shouldReceive('input')->with('token')->once()->andReturn('testToken');
-        $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'testToken')->once()->andThrow(new TwoFactorAuthenticationTokenInvalid());
+        $this->mockRequestInput('token', 'some-token');
 
-        $response = $this->getController()->setTotp($this->request);
-        $this->assertIsResponse($response);
-        $this->assertSame('false', $response->getContent());
+        if ($func === 'delete') {
+            $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'some-token', false);
+        } else {
+            $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'some-token');
+        }
+
+        $response = $this->getController()->{$func}($this->request);
+        $this->assertIsJsonResponse($response);
+        $this->assertResponseCodeEquals(Response::HTTP_OK, $response);
+        $this->assertResponseJsonEquals(['success' => true], $response);
     }
 
     /**
-     * Test the disable totp controller when no exception is thrown by the service.
+     * Test an invalid token exception is handled.
+     *
+     * @param string $func
+     * @dataProvider functionCallDataProvider
      */
-    public function testDisableTotpControllerSuccess()
+    public function testStoreWithInvalidTokenException(string $func)
     {
-        $model = $this->generateRequestUserModel();
+        $this->generateRequestUserModel();
 
-        $this->request->shouldReceive('input')->with('token')->once()->andReturn('testToken');
-        $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'testToken', false)->once()->andReturn(true);
+        $this->mockRequestInput('token');
+        $this->toggleTwoFactorService->shouldReceive('handle')->andThrow(new TwoFactorAuthenticationTokenInvalid);
 
-        $response = $this->getController()->disableTotp($this->request);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account.security', $response);
+        $response = $this->getController()->{$func}($this->request);
+        $this->assertIsJsonResponse($response);
+        $this->assertResponseCodeEquals(Response::HTTP_OK, $response);
+        $this->assertResponseJsonEquals(['success' => false], $response);
     }
 
     /**
-     * Test the disable totp controller when an exception is thrown by the service.
+     * @return array
      */
-    public function testDisableTotpControllerWhenExceptionIsThrown()
+    public function functionCallDataProvider()
     {
-        $model = $this->generateRequestUserModel();
-
-        $this->request->shouldReceive('input')->with('token')->once()->andReturn('testToken');
-        $this->toggleTwoFactorService->shouldReceive('handle')->with($model, 'testToken', false)->once()->andThrow(new TwoFactorAuthenticationTokenInvalid);
-        $this->alert->shouldReceive('danger')->with(trans('base.security.2fa_disable_error'))->once()->andReturnSelf();
-        $this->alert->shouldReceive('flash')->withNoArgs()->once()->andReturnNull();
-
-        $response = $this->getController()->disableTotp($this->request);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account.security', $response);
-    }
-
-    /**
-     * Test the revoke controller.
-     */
-    public function testRevokeController()
-    {
-        $model = $this->generateRequestUserModel();
-
-        $this->repository->shouldReceive('deleteUserSession')->with($model->id, 123)->once()->andReturnNull();
-
-        $response = $this->getController()->revoke($this->request, 123);
-        $this->assertIsRedirectResponse($response);
-        $this->assertRedirectRouteEquals('account.security', $response);
+        return [['store'], ['delete']];
     }
 
     /**
diff --git a/tests/Unit/Http/Controllers/ControllerTestCase.php b/tests/Unit/Http/Controllers/ControllerTestCase.php
index 6caf9abda..3a6ea5cb2 100644
--- a/tests/Unit/Http/Controllers/ControllerTestCase.php
+++ b/tests/Unit/Http/Controllers/ControllerTestCase.php
@@ -66,6 +66,19 @@ abstract class ControllerTestCase extends TestCase
         }
     }
 
+    /**
+     * Mocks a request input call.
+     *
+     * @param string $param
+     * @param mixed  $return
+     */
+    protected function mockRequestInput(string $param, $return = null)
+    {
+        $this->request->shouldReceive('input')->withArgs(function ($k) use ($param) {
+            return $k === $param;
+        })->andReturn($return);
+    }
+
     /**
      * Build and return a mocked controller instance to use for testing.
      *

From c82f273d85e24a18ba6249b246332d64ab7dc4c6 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Wed, 4 Jul 2018 19:38:23 -0700
Subject: [PATCH 48/62] Fix remaining broken tests

---
 app/Http/Middleware/Api/SetSessionDriver.php  | 12 ++-------
 .../RequireTwoFactorAuthentication.php        | 21 +++------------
 routes/base.php                               |  1 +
 .../Controllers/Base/IndexControllerTest.php  |  2 +-
 .../Middleware/API/SetSessionDriverTest.php   | 26 ++-----------------
 .../RequireTwoFactorAuthenticationTest.php    |  7 ++---
 .../Users/TwoFactorSetupServiceTest.php       | 14 +++++-----
 7 files changed, 22 insertions(+), 61 deletions(-)

diff --git a/app/Http/Middleware/Api/SetSessionDriver.php b/app/Http/Middleware/Api/SetSessionDriver.php
index e61604dbd..8ce50a8b5 100644
--- a/app/Http/Middleware/Api/SetSessionDriver.php
+++ b/app/Http/Middleware/Api/SetSessionDriver.php
@@ -4,16 +4,10 @@ namespace Pterodactyl\Http\Middleware\Api;
 
 use Closure;
 use Illuminate\Http\Request;
-use Illuminate\Contracts\Foundation\Application;
 use Illuminate\Contracts\Config\Repository as ConfigRepository;
 
 class SetSessionDriver
 {
-    /**
-     * @var \Illuminate\Contracts\Foundation\Application
-     */
-    private $app;
-
     /**
      * @var \Illuminate\Contracts\Config\Repository
      */
@@ -22,12 +16,10 @@ class SetSessionDriver
     /**
      * SetSessionDriver constructor.
      *
-     * @param \Illuminate\Contracts\Foundation\Application $app
-     * @param \Illuminate\Contracts\Config\Repository      $config
+     * @param \Illuminate\Contracts\Config\Repository $config
      */
-    public function __construct(Application $app, ConfigRepository $config)
+    public function __construct(ConfigRepository $config)
     {
-        $this->app = $app;
         $this->config = $config;
     }
 
diff --git a/app/Http/Middleware/RequireTwoFactorAuthentication.php b/app/Http/Middleware/RequireTwoFactorAuthentication.php
index aee1cf068..486b8e3cc 100644
--- a/app/Http/Middleware/RequireTwoFactorAuthentication.php
+++ b/app/Http/Middleware/RequireTwoFactorAuthentication.php
@@ -10,6 +10,7 @@
 namespace Pterodactyl\Http\Middleware;
 
 use Closure;
+use Illuminate\Support\Str;
 use Illuminate\Http\Request;
 use Prologue\Alerts\AlertsMessageBag;
 
@@ -24,27 +25,12 @@ class RequireTwoFactorAuthentication
      */
     private $alert;
 
-    /**
-     * The names of routes that should be accessible without 2FA enabled.
-     *
-     * @var array
-     */
-    protected $except = [
-        'account.security',
-        'account.security.revoke',
-        'account.security.totp',
-        'account.security.totp.set',
-        'account.security.totp.disable',
-        'auth.totp',
-        'auth.logout',
-    ];
-
     /**
      * The route to redirect a user to to enable 2FA.
      *
      * @var string
      */
-    protected $redirectRoute = 'account.security';
+    protected $redirectRoute = 'account';
 
     /**
      * RequireTwoFactorAuthentication constructor.
@@ -69,7 +55,8 @@ class RequireTwoFactorAuthentication
             return $next($request);
         }
 
-        if (in_array($request->route()->getName(), $this->except)) {
+        $current = $request->route()->getName();
+        if (in_array($current, ['auth', 'account']) || Str::startsWith($current, ['auth.', 'account.'])) {
             return $next($request);
         }
 
diff --git a/routes/base.php b/routes/base.php
index 3dc1aa672..39d07d6d6 100644
--- a/routes/base.php
+++ b/routes/base.php
@@ -1,6 +1,7 @@
 <?php
 
 Route::get('/', 'IndexController@index')->name('index');
+Route::get('/account', 'IndexController@index')->name('account');
 
 /*
 |--------------------------------------------------------------------------
diff --git a/tests/Unit/Http/Controllers/Base/IndexControllerTest.php b/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
index 6e8cd38cf..a8ed6c7f4 100644
--- a/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
+++ b/tests/Unit/Http/Controllers/Base/IndexControllerTest.php
@@ -78,7 +78,7 @@ class IndexControllerTest extends ControllerTestCase
 
         $response = $this->controller->index($this->request);
         $this->assertIsViewResponse($response);
-        $this->assertViewNameEquals('base.index', $response);
+        $this->assertViewNameEquals('templates.base.core', $response);
         $this->assertViewHasKey('servers', $response);
         $this->assertViewKeyEquals('servers', $paginator, $response);
     }
diff --git a/tests/Unit/Http/Middleware/API/SetSessionDriverTest.php b/tests/Unit/Http/Middleware/API/SetSessionDriverTest.php
index 36f1bc0b8..c65f8a6be 100644
--- a/tests/Unit/Http/Middleware/API/SetSessionDriverTest.php
+++ b/tests/Unit/Http/Middleware/API/SetSessionDriverTest.php
@@ -3,19 +3,12 @@
 namespace Tests\Unit\Http\Middleware\API;
 
 use Mockery as m;
-use Barryvdh\Debugbar\LaravelDebugbar;
 use Illuminate\Contracts\Config\Repository;
-use Illuminate\Contracts\Foundation\Application;
 use Tests\Unit\Http\Middleware\MiddlewareTestCase;
 use Pterodactyl\Http\Middleware\Api\SetSessionDriver;
 
 class SetSessionDriverTest extends MiddlewareTestCase
 {
-    /**
-     * @var \Illuminate\Contracts\Foundation\Application|\Mockery\Mock
-     */
-    private $appMock;
-
     /**
      * @var \Illuminate\Contracts\Config\Repository|\Mockery\Mock
      */
@@ -28,29 +21,14 @@ class SetSessionDriverTest extends MiddlewareTestCase
     {
         parent::setUp();
 
-        $this->appMock = m::mock(Application::class);
         $this->config = m::mock(Repository::class);
     }
 
     /**
      * Test that a production environment does not try to disable debug bar.
      */
-    public function testProductionEnvironment()
+    public function testMiddleware()
     {
-        $this->config->shouldReceive('get')->once()->with('app.debug')->andReturn(false);
-        $this->config->shouldReceive('set')->once()->with('session.driver', 'array')->andReturnNull();
-
-        $this->getMiddleware()->handle($this->request, $this->getClosureAssertions());
-    }
-
-    /**
-     * Test that a local environment does disable debug bar.
-     */
-    public function testLocalEnvironment()
-    {
-        $this->config->shouldReceive('get')->once()->with('app.debug')->andReturn(true);
-        $this->appMock->shouldReceive('make')->once()->with(LaravelDebugbar::class)->andReturnSelf();
-        $this->appMock->shouldReceive('disable')->once()->withNoArgs()->andReturnNull();
         $this->config->shouldReceive('set')->once()->with('session.driver', 'array')->andReturnNull();
 
         $this->getMiddleware()->handle($this->request, $this->getClosureAssertions());
@@ -63,6 +41,6 @@ class SetSessionDriverTest extends MiddlewareTestCase
      */
     private function getMiddleware(): SetSessionDriver
     {
-        return new SetSessionDriver($this->appMock, $this->config);
+        return new SetSessionDriver($this->config);
     }
 }
diff --git a/tests/Unit/Http/Middleware/RequireTwoFactorAuthenticationTest.php b/tests/Unit/Http/Middleware/RequireTwoFactorAuthenticationTest.php
index 19bd45129..562ff75cc 100644
--- a/tests/Unit/Http/Middleware/RequireTwoFactorAuthenticationTest.php
+++ b/tests/Unit/Http/Middleware/RequireTwoFactorAuthenticationTest.php
@@ -88,7 +88,7 @@ class RequireTwoFactorAuthenticationTest extends MiddlewareTestCase
 
         $response = $this->getMiddleware()->handle($this->request, $this->getClosureAssertions());
         $this->assertInstanceOf(RedirectResponse::class, $response);
-        $this->assertEquals(route('account.security'), $response->getTargetUrl());
+        $this->assertEquals(route('account'), $response->getTargetUrl());
     }
 
     /**
@@ -132,7 +132,7 @@ class RequireTwoFactorAuthenticationTest extends MiddlewareTestCase
 
         $response = $this->getMiddleware()->handle($this->request, $this->getClosureAssertions());
         $this->assertInstanceOf(RedirectResponse::class, $response);
-        $this->assertEquals(route('account.security'), $response->getTargetUrl());
+        $this->assertEquals(route('account'), $response->getTargetUrl());
     }
 
     /**
@@ -156,7 +156,8 @@ class RequireTwoFactorAuthenticationTest extends MiddlewareTestCase
     public function ignoredRoutesDataProvider()
     {
         return [
-            ['account.security'],
+            ['auth'],
+            ['account'],
             ['account.security.revoke'],
             ['account.security.totp'],
             ['account.security.totp.set'],
diff --git a/tests/Unit/Services/Users/TwoFactorSetupServiceTest.php b/tests/Unit/Services/Users/TwoFactorSetupServiceTest.php
index 8cb097537..3c0615425 100644
--- a/tests/Unit/Services/Users/TwoFactorSetupServiceTest.php
+++ b/tests/Unit/Services/Users/TwoFactorSetupServiceTest.php
@@ -6,7 +6,7 @@ use Mockery as m;
 use Tests\TestCase;
 use Pterodactyl\Models\User;
 use PragmaRX\Google2FA\Google2FA;
-use Illuminate\Contracts\Config\Repository;
+use Illuminate\Support\Collection;
 use Illuminate\Contracts\Encryption\Encrypter;
 use Pterodactyl\Services\Users\TwoFactorSetupService;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
@@ -40,7 +40,6 @@ class TwoFactorSetupServiceTest extends TestCase
     {
         parent::setUp();
 
-        $this->config = m::mock(Repository::class);
         $this->encrypter = m::mock(Encrypter::class);
         $this->google2FA = m::mock(Google2FA::class);
         $this->repository = m::mock(UserRepositoryInterface::class);
@@ -53,16 +52,19 @@ class TwoFactorSetupServiceTest extends TestCase
     {
         $model = factory(User::class)->make();
 
-        $this->config->shouldReceive('get')->with('pterodactyl.auth.2fa.bytes')->once()->andReturn(32);
+        config()->set('pterodactyl.auth.2fa.bytes', 32);
+        config()->set('app.name', 'CompanyName');
+
         $this->google2FA->shouldReceive('generateSecretKey')->with(32)->once()->andReturn('secretKey');
-        $this->config->shouldReceive('get')->with('app.name')->once()->andReturn('CompanyName');
         $this->google2FA->shouldReceive('getQRCodeGoogleUrl')->with('CompanyName', $model->email, 'secretKey')->once()->andReturn('http://url.com');
         $this->encrypter->shouldReceive('encrypt')->with('secretKey')->once()->andReturn('encryptedSecret');
         $this->repository->shouldReceive('withoutFreshModel->update')->with($model->id, ['totp_secret' => 'encryptedSecret'])->once()->andReturnNull();
 
         $response = $this->getService()->handle($model);
         $this->assertNotEmpty($response);
-        $this->assertSame('http://url.com', $response);
+        $this->assertInstanceOf(Collection::class, $response);
+        $this->assertSame('http://url.com', $response->get('image'));
+        $this->assertSame('secretKey', $response->get('secret'));
     }
 
     /**
@@ -72,6 +74,6 @@ class TwoFactorSetupServiceTest extends TestCase
      */
     private function getService(): TwoFactorSetupService
     {
-        return new TwoFactorSetupService($this->config, $this->encrypter, $this->google2FA, $this->repository);
+        return new TwoFactorSetupService($this->encrypter, $this->google2FA, $this->repository);
     }
 }

From d17442a096930c15a6e5308282fff6cf90121e49 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 15:07:19 -0700
Subject: [PATCH 49/62] Disable automatic optimization and change v:serve for
 new dev environment

---
 composer.json              | 2 +-
 package.json               | 2 +-
 storage/app/packs/.githold | 0
 3 files changed, 2 insertions(+), 2 deletions(-)
 mode change 100644 => 100755 storage/app/packs/.githold

diff --git a/composer.json b/composer.json
index e36bb6797..1d5e3a94f 100644
--- a/composer.json
+++ b/composer.json
@@ -90,6 +90,6 @@
     "config": {
         "preferred-install": "dist",
         "sort-packages": true,
-        "optimize-autoloader": true
+        "optimize-autoloader": false
     }
 }
diff --git a/package.json b/package.json
index ecd4257b4..0321cad99 100644
--- a/package.json
+++ b/package.json
@@ -59,7 +59,7 @@
         "build": "NODE_ENV=development ./node_modules/.bin/webpack --progress",
         "build:production": "NODE_ENV=production ./node_modules/.bin/webpack",
         "serve": "NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --no-clipboard --progress",
-        "v:serve": "PUBLIC_PATH=http://pterodactyl.local:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 192.168.10.10 --no-clipboard",
+        "v:serve": "PUBLIC_PATH=http://pterodactyl.local:8080 NODE_ENV=development webpack-serve --hot --config ./webpack.config.js --host 0.0.0.0 --no-clipboard",
         "compile:assets": "php artisan vue-i18n:generate & php artisan ziggy:generate resources/assets/scripts/helpers/ziggy.js"
     }
 }
diff --git a/storage/app/packs/.githold b/storage/app/packs/.githold
old mode 100644
new mode 100755

From 2ae43e1f612f4cecead013d471ab7183ccf5b4fc Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 21:16:18 -0700
Subject: [PATCH 50/62] Add changes for vagrant

---
 .env.dusk                         |  2 +-
 phpunit.dusk.xml                  | 21 +++++++++++++++++++++
 tests/Browser/BrowserTestCase.php |  2 +-
 3 files changed, 23 insertions(+), 2 deletions(-)
 create mode 100644 phpunit.dusk.xml

diff --git a/.env.dusk b/.env.dusk
index 4c8e50527..237f61d32 100644
--- a/.env.dusk
+++ b/.env.dusk
@@ -20,7 +20,7 @@ MAIL_FROM_NAME="Pterodactyl Panel"
 RECAPTCHA_ENABLED=false
 
 DB_CONNECTION=testing
-TESTING_DB_HOST=services.pterodactyl.local
+TESTING_DB_HOST=192.168.1.202
 TESTING_DB_DATABASE=panel_test
 TESTING_DB_USERNAME=panel_test
 TESTING_DB_PASSWORD=Test1234
diff --git a/phpunit.dusk.xml b/phpunit.dusk.xml
new file mode 100644
index 000000000..60392c932
--- /dev/null
+++ b/phpunit.dusk.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<phpunit backupGlobals="false"
+         backupStaticAttributes="false"
+         bootstrap="vendor/autoload.php"
+         colors="true"
+         convertErrorsToExceptions="true"
+         convertNoticesToExceptions="true"
+         convertWarningsToExceptions="true"
+         processIsolation="false"
+         stopOnFailure="false">
+    <testsuites>
+        <testsuite name="Browser Test Suite">
+            <directory suffix="Test.php">./tests/Browser</directory>
+        </testsuite>
+    </testsuites>
+    <filter>
+        <whitelist processUncoveredFilesFromWhitelist="true">
+            <directory suffix=".php">./app</directory>
+        </whitelist>
+    </filter>
+</phpunit>
diff --git a/tests/Browser/BrowserTestCase.php b/tests/Browser/BrowserTestCase.php
index dd96930a8..7451fa1e8 100644
--- a/tests/Browser/BrowserTestCase.php
+++ b/tests/Browser/BrowserTestCase.php
@@ -45,7 +45,7 @@ abstract class BrowserTestCase extends TestCase
         ]);
 
         return RemoteWebDriver::create(
-            'http://services.pterodactyl.local:4444/wd/hub', DesiredCapabilities::chrome()->setCapability(
+            'http://host.pterodactyl.local:4444/wd/hub', DesiredCapabilities::chrome()->setCapability(
                 ChromeOptions::CAPABILITY, $options
             )
         );

From 8b9c2465f31a54f3746e52b563117887081d224e Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 21:26:08 -0700
Subject: [PATCH 51/62] Correct behavior of errors on the login form

---
 resources/assets/scripts/components/auth/LoginForm.vue | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/resources/assets/scripts/components/auth/LoginForm.vue b/resources/assets/scripts/components/auth/LoginForm.vue
index 127343546..cb0e2a5f7 100644
--- a/resources/assets/scripts/components/auth/LoginForm.vue
+++ b/resources/assets/scripts/components/auth/LoginForm.vue
@@ -62,7 +62,6 @@
         },
         data: function () {
             return {
-                errors: [],
                 showSpinner: false,
             }
         },
@@ -91,7 +90,7 @@
                         this.$props.user.password = '';
                         this.$data.showSpinner = false;
                         this.$refs.password.focus();
-                        this.$store.dispatch('auth/logout');
+                        this.$store.commit('auth/logout');
 
                         if (!err.response) {
                             return console.error(err);

From eafc4408eb1000e015fefe3808af7250febb3d03 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 21:49:49 -0700
Subject: [PATCH 52/62] Fix broken unit tests

---
 app/Http/Kernel.php                            |  2 +-
 .../Middleware/Server/AccessingValidServer.php | 18 ++----------------
 .../Server/AccessingValidServerTest.php        | 14 +++-----------
 3 files changed, 6 insertions(+), 28 deletions(-)

diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index 2383363c3..7d19dc43c 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -17,7 +17,6 @@ use Pterodactyl\Http\Middleware\LanguageMiddleware;
 use Illuminate\Foundation\Http\Kernel as HttpKernel;
 use Pterodactyl\Http\Middleware\Api\AuthenticateKey;
 use Illuminate\Routing\Middleware\SubstituteBindings;
-use Pterodactyl\Http\Middleware\AccessingValidServer;
 use Pterodactyl\Http\Middleware\Api\SetSessionDriver;
 use Illuminate\Session\Middleware\AuthenticateSession;
 use Illuminate\View\Middleware\ShareErrorsFromSession;
@@ -28,6 +27,7 @@ use Pterodactyl\Http\Middleware\Api\AuthenticateIPAccess;
 use Pterodactyl\Http\Middleware\Api\ApiSubstituteBindings;
 use Illuminate\Foundation\Http\Middleware\ValidatePostSize;
 use Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse;
+use Pterodactyl\Http\Middleware\Server\AccessingValidServer;
 use Pterodactyl\Http\Middleware\Server\AuthenticateAsSubuser;
 use Pterodactyl\Http\Middleware\Api\Daemon\DaemonAuthenticate;
 use Pterodactyl\Http\Middleware\Server\SubuserBelongsToServer;
diff --git a/app/Http/Middleware/Server/AccessingValidServer.php b/app/Http/Middleware/Server/AccessingValidServer.php
index ddca28251..894dcaa1e 100644
--- a/app/Http/Middleware/Server/AccessingValidServer.php
+++ b/app/Http/Middleware/Server/AccessingValidServer.php
@@ -1,11 +1,10 @@
 <?php
 
-namespace Pterodactyl\Http\Middleware;
+namespace Pterodactyl\Http\Middleware\Server;
 
 use Closure;
 use Illuminate\Http\Request;
 use Pterodactyl\Models\Server;
-use Illuminate\Contracts\Session\Session;
 use Illuminate\Contracts\Routing\ResponseFactory;
 use Illuminate\Contracts\Config\Repository as ConfigRepository;
 use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
@@ -29,29 +28,21 @@ class AccessingValidServer
      */
     private $response;
 
-    /**
-     * @var \Illuminate\Contracts\Session\Session
-     */
-    private $session;
-
     /**
      * AccessingValidServer constructor.
      *
      * @param \Illuminate\Contracts\Config\Repository                     $config
      * @param \Illuminate\Contracts\Routing\ResponseFactory               $response
      * @param \Pterodactyl\Contracts\Repository\ServerRepositoryInterface $repository
-     * @param \Illuminate\Contracts\Session\Session                       $session
      */
     public function __construct(
         ConfigRepository $config,
         ResponseFactory $response,
-        ServerRepositoryInterface $repository,
-        Session $session
+        ServerRepositoryInterface $repository
     ) {
         $this->config = $config;
         $this->repository = $repository;
         $this->response = $response;
-        $this->session = $session;
     }
 
     /**
@@ -61,7 +52,6 @@ class AccessingValidServer
      * @param \Closure                 $next
      * @return \Illuminate\Http\Response|mixed
      *
-     * @throws \Illuminate\Auth\AuthenticationException
      * @throws \Pterodactyl\Exceptions\Repository\RecordNotFoundException
      * @throws \Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException
      * @throws \Symfony\Component\HttpKernel\Exception\NotFoundHttpException
@@ -90,10 +80,6 @@ class AccessingValidServer
             return $this->response->view('errors.installing', [], 409);
         }
 
-        // Store the server in the session.
-        // @todo remove from session. use request attributes.
-        $this->session->now('server_data.model', $server);
-
         // Add server to the request attributes. This will replace sessions
         // as files are updated.
         $request->attributes->set('server', $server);
diff --git a/tests/Unit/Http/Middleware/Server/AccessingValidServerTest.php b/tests/Unit/Http/Middleware/Server/AccessingValidServerTest.php
index 8bafebe9f..67f61d688 100644
--- a/tests/Unit/Http/Middleware/Server/AccessingValidServerTest.php
+++ b/tests/Unit/Http/Middleware/Server/AccessingValidServerTest.php
@@ -4,11 +4,10 @@ namespace Tests\Unit\Http\Middleware\Server;
 
 use Mockery as m;
 use Pterodactyl\Models\Server;
-use Illuminate\Contracts\Session\Session;
 use Illuminate\Contracts\Config\Repository;
 use Illuminate\Contracts\Routing\ResponseFactory;
 use Tests\Unit\Http\Middleware\MiddlewareTestCase;
-use Pterodactyl\Http\Middleware\AccessingValidServer;
+use Pterodactyl\Http\Middleware\Server\AccessingValidServer;
 use Pterodactyl\Contracts\Repository\ServerRepositoryInterface;
 
 class AccessingValidServerTest extends MiddlewareTestCase
@@ -28,11 +27,6 @@ class AccessingValidServerTest extends MiddlewareTestCase
      */
     private $response;
 
-    /**
-     * @var \Illuminate\Contracts\Session\Session|\Mockery\Mock
-     */
-    private $session;
-
     /**
      * Setup tests.
      */
@@ -43,7 +37,6 @@ class AccessingValidServerTest extends MiddlewareTestCase
         $this->config = m::mock(Repository::class);
         $this->repository = m::mock(ServerRepositoryInterface::class);
         $this->response = m::mock(ResponseFactory::class);
-        $this->session = m::mock(Session::class);
     }
 
     /**
@@ -114,7 +107,6 @@ class AccessingValidServerTest extends MiddlewareTestCase
         $this->request->shouldReceive('is')->with(...[])->once()->andReturn(false);
 
         $this->repository->shouldReceive('getByUuid')->with('123456')->once()->andReturn($model);
-        $this->session->shouldReceive('now')->with('server_data.model', $model)->once()->andReturnNull();
 
         $this->getMiddleware()->handle($this->request, $this->getClosureAssertions());
         $this->assertRequestHasAttribute('server');
@@ -141,10 +133,10 @@ class AccessingValidServerTest extends MiddlewareTestCase
     /**
      * Return an instance of the middleware using mocked dependencies.
      *
-     * @return \Pterodactyl\Http\Middleware\AccessingValidServer
+     * @return \Pterodactyl\Http\Middleware\Server\AccessingValidServer
      */
     private function getMiddleware(): AccessingValidServer
     {
-        return new AccessingValidServer($this->config, $this->response, $this->repository, $this->session);
+        return new AccessingValidServer($this->config, $this->response, $this->repository);
     }
 }

From a44b4c44269d8b99da2dddf6280cb2fe7e743d0f Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:03:19 -0700
Subject: [PATCH 53/62] Fix changing email address error handling

---
 .../scripts/components/dashboard/account/ChangePassword.vue   | 2 +-
 .../scripts/components/dashboard/account/UpdateEmail.vue      | 2 +-
 resources/assets/scripts/store/modules/auth.js                | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
index 02b2f2e71..494c76be2 100644
--- a/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
+++ b/resources/assets/scripts/components/dashboard/account/ChangePassword.vue
@@ -1,5 +1,5 @@
 <template>
-    <div>
+    <div id="change-password-container" :class>
         <form method="post" v-on:submit.prevent="submitForm">
             <div class="content-box">
                 <h2 class="mb-6 text-grey-darkest font-medium">{{ $t('dashboard.account.password.title') }}</h2>
diff --git a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
index b3e0de476..a228480a1 100644
--- a/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
+++ b/resources/assets/scripts/components/dashboard/account/UpdateEmail.vue
@@ -1,5 +1,5 @@
 <template>
-    <div :class>
+    <div id="update-email-container" :class>
         <form method="post" v-on:submit.prevent="submitForm">
             <div class="content-box">
                 <h2 class="mb-6 text-grey-darkest font-medium">{{ $t('dashboard.account.email.title') }}</h2>
diff --git a/resources/assets/scripts/store/modules/auth.js b/resources/assets/scripts/store/modules/auth.js
index 04c679700..03a60f489 100644
--- a/resources/assets/scripts/store/modules/auth.js
+++ b/resources/assets/scripts/store/modules/auth.js
@@ -71,11 +71,11 @@ export default {
                     .then(response => {
                         // If there is a 302 redirect or some other odd behavior (basically, response that isnt
                         // in JSON format) throw an error and don't try to continue with the login.
-                        if (!(response.data instanceof Object)) {
+                        if (!(response.data instanceof Object) && response.status !== 201) {
                             return reject(new Error('An error was encountered while processing this request.'));
                         }
 
-                        commit('setEmail', response.data.email);
+                        commit('setEmail', email);
                         return resolve();
                     })
                     .catch(reject);

From aba1b297c865212285cbfc3907a9ef4c6fc2c9e6 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:11:56 -0700
Subject: [PATCH 54/62] Add a test that wont work due to auth issues currently

---
 tests/Browser/Pages/BasePage.php              |  4 +-
 tests/Browser/Pages/Dashboard/AccountPage.php | 28 +++++++++++
 .../Dashboard/AccountEmailProcessTest.php     | 46 +++++++++++++++++++
 3 files changed, 77 insertions(+), 1 deletion(-)
 create mode 100644 tests/Browser/Pages/Dashboard/AccountPage.php
 create mode 100644 tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php

diff --git a/tests/Browser/Pages/BasePage.php b/tests/Browser/Pages/BasePage.php
index 7d8efb513..075634c40 100644
--- a/tests/Browser/Pages/BasePage.php
+++ b/tests/Browser/Pages/BasePage.php
@@ -11,6 +11,8 @@ abstract class BasePage extends Page
      */
     public static function siteElements()
     {
-        return [];
+        return [
+            '@@success' => '.alert.success[role="alert"]',
+        ];
     }
 }
diff --git a/tests/Browser/Pages/Dashboard/AccountPage.php b/tests/Browser/Pages/Dashboard/AccountPage.php
new file mode 100644
index 000000000..ea46791c4
--- /dev/null
+++ b/tests/Browser/Pages/Dashboard/AccountPage.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace Pterodactyl\Tests\Browser\Pages\Dashboard;
+
+use Pterodactyl\Tests\Browser\Pages\BasePage;
+
+class AccountPage extends BasePage
+{
+    /**
+     * @return string
+     */
+    public function url()
+    {
+        return '/account';
+    }
+
+    /**
+     * @return array
+     */
+    public function elements()
+    {
+        return array_merge(parent::elements(), [
+            '@email' => '#update-email-container #grid-email',
+            '@password' => '#update-email-container #grid-password',
+            '@submit' => '#update-email-container button[type="submit"]',
+        ]);
+    }
+}
diff --git a/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
new file mode 100644
index 000000000..7e249d6cd
--- /dev/null
+++ b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
@@ -0,0 +1,46 @@
+<?php
+
+namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
+
+use Pterodactyl\Models\User;
+use Illuminate\Support\Facades\Hash;
+use Pterodactyl\Tests\Browser\BrowserTestCase;
+use Pterodactyl\Tests\Browser\PterodactylBrowser;
+use Pterodactyl\Tests\Browser\Pages\Dashboard\AccountPage;
+
+class AccountEmailProcessTest extends BrowserTestCase
+{
+    /**
+     * @var \Pterodactyl\Models\User
+     */
+    private $user;
+
+    /**
+     * Setup a user for the test process to use.
+     */
+    public function setUp()
+    {
+        parent::setUp();
+
+        $this->user = factory(User::class)->create([
+            'password' => Hash::make('Password123'),
+        ]);
+    }
+
+    public function testEmailCanBeChanged()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->assertValue('@email', $this->user->email)
+                ->type('@email', 'new.email@example.com')
+                ->type('@password', 'Password123')
+                ->click('@submit')
+                ->waitFor('@@success')
+                ->assertSeeIn('@@success', trans('dashboard/account.email.updated'))
+                ->assertValue('@email', 'new.email@example.com');
+
+            $this->assertDatabaseHas('users', ['id' => $this->user->id, 'email' => 'new.email@example.com']);
+        });
+    }
+}

From a7fae86e589ebe40b4671da82dcfafd422cf0893 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:42:38 -0700
Subject: [PATCH 55/62] Treat unauthenticated exceptions the same as everything
 else

---
 app/Exceptions/Handler.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Exceptions/Handler.php b/app/Exceptions/Handler.php
index 9be53eb4f..a25990569 100644
--- a/app/Exceptions/Handler.php
+++ b/app/Exceptions/Handler.php
@@ -231,7 +231,7 @@ class Handler extends ExceptionHandler
     protected function unauthenticated($request, AuthenticationException $exception)
     {
         if ($request->expectsJson()) {
-            return response()->json(['error' => 'Unauthenticated.'], 401);
+            return response()->json(self::convertToArray($exception), 401);
         }
 
         return redirect()->guest(route('auth.login'));

From 6336e5191fb6bd3c59423fd689ffa95ad037a617 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:42:58 -0700
Subject: [PATCH 56/62] Strip out JWT usage and use cookies to track the
 currently logged in user

---
 .../Auth/AbstractLoginController.php          | 37 +-------------
 app/Http/Kernel.php                           |  6 ++-
 app/Http/Middleware/Api/AuthenticateKey.php   | 50 ++++---------------
 app/Models/User.php                           | 11 ++++
 resources/assets/scripts/helpers/axios.js     |  3 --
 resources/assets/scripts/models/user.js       | 47 +----------------
 resources/assets/scripts/router.js            | 16 ++----
 .../assets/scripts/store/modules/auth.js      | 10 ++--
 .../pterodactyl/templates/wrapper.blade.php   |  8 +++
 9 files changed, 44 insertions(+), 144 deletions(-)

diff --git a/app/Http/Controllers/Auth/AbstractLoginController.php b/app/Http/Controllers/Auth/AbstractLoginController.php
index 02f425216..199ecac84 100644
--- a/app/Http/Controllers/Auth/AbstractLoginController.php
+++ b/app/Http/Controllers/Auth/AbstractLoginController.php
@@ -2,8 +2,6 @@
 
 namespace Pterodactyl\Http\Controllers\Auth;
 
-use Cake\Chronos\Chronos;
-use Lcobucci\JWT\Builder;
 use Illuminate\Http\Request;
 use Pterodactyl\Models\User;
 use Illuminate\Auth\AuthManager;
@@ -16,7 +14,6 @@ use Illuminate\Contracts\Auth\Authenticatable;
 use Illuminate\Contracts\Encryption\Encrypter;
 use Illuminate\Foundation\Auth\AuthenticatesUsers;
 use Pterodactyl\Traits\Helpers\ProvidesJWTServices;
-use Pterodactyl\Transformers\Api\Client\AccountTransformer;
 use Illuminate\Contracts\Cache\Repository as CacheRepository;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 
@@ -29,11 +26,6 @@ abstract class AbstractLoginController extends Controller
      */
     protected $auth;
 
-    /**
-     * @var \Lcobucci\JWT\Builder
-     */
-    protected $builder;
-
     /**
      * @var \Illuminate\Contracts\Cache\Repository
      */
@@ -79,7 +71,6 @@ abstract class AbstractLoginController extends Controller
      * LoginController constructor.
      *
      * @param \Illuminate\Auth\AuthManager                              $auth
-     * @param \Lcobucci\JWT\Builder                                     $builder
      * @param \Illuminate\Contracts\Cache\Repository                    $cache
      * @param \Illuminate\Contracts\Encryption\Encrypter                $encrypter
      * @param \PragmaRX\Google2FA\Google2FA                             $google2FA
@@ -87,14 +78,12 @@ abstract class AbstractLoginController extends Controller
      */
     public function __construct(
         AuthManager $auth,
-        Builder $builder,
         CacheRepository $cache,
         Encrypter $encrypter,
         Google2FA $google2FA,
         UserRepositoryInterface $repository
     ) {
         $this->auth = $auth;
-        $this->builder = $builder;
         $this->cache = $cache;
         $this->encrypter = $encrypter;
         $this->google2FA = $google2FA;
@@ -143,34 +132,10 @@ abstract class AbstractLoginController extends Controller
         return response()->json([
             'complete' => true,
             'intended' => $this->redirectPath(),
-            'jwt' => $this->createJsonWebToken($user),
+            'user' => $user->toVueObject(),
         ]);
     }
 
-    /**
-     * Create a new JWT for the request and sign it using the signing key.
-     *
-     * @param User $user
-     * @return string
-     */
-    protected function createJsonWebToken(User $user): string
-    {
-        $now = Chronos::now('utc');
-
-        $token = $this->builder
-            ->setIssuer('Pterodactyl Panel')
-            ->setAudience(config('app.url'))
-            ->setId(str_random(16), true)
-            ->setIssuedAt($now->getTimestamp())
-            ->setNotBefore($now->getTimestamp())
-            ->setExpiration($now->addSeconds(config('jwt.lifetime'))->getTimestamp())
-            ->set('user', (new AccountTransformer())->transform($user))
-            ->sign($this->getJWTSigner(), $this->getJWTSigningKey())
-            ->getToken();
-
-        return $token->__toString();
-    }
-
     /**
      * Determine if the user is logging in using an email or username,.
      *
diff --git a/app/Http/Kernel.php b/app/Http/Kernel.php
index 7d19dc43c..e1e7f0082 100644
--- a/app/Http/Kernel.php
+++ b/app/Http/Kernel.php
@@ -49,6 +49,7 @@ class Kernel extends HttpKernel
      */
     protected $middleware = [
         CheckForMaintenanceMode::class,
+        EncryptCookies::class,
         ValidatePostSize::class,
         TrimStrings::class,
         ConvertEmptyStringsToNull::class,
@@ -62,7 +63,6 @@ class Kernel extends HttpKernel
      */
     protected $middlewareGroups = [
         'web' => [
-            EncryptCookies::class,
             AddQueuedCookiesToResponse::class,
             StartSession::class,
             AuthenticateSession::class,
@@ -82,8 +82,10 @@ class Kernel extends HttpKernel
         ],
         'client-api' => [
             'throttle:240,1',
-            SubstituteClientApiBindings::class,
+            StartSession::class,
             SetSessionDriver::class,
+            AuthenticateSession::class,
+            SubstituteClientApiBindings::class,
             'api..key:' . ApiKey::TYPE_ACCOUNT,
             AuthenticateIPAccess::class,
         ],
diff --git a/app/Http/Middleware/Api/AuthenticateKey.php b/app/Http/Middleware/Api/AuthenticateKey.php
index 4b8156dd1..ed3ed1b16 100644
--- a/app/Http/Middleware/Api/AuthenticateKey.php
+++ b/app/Http/Middleware/Api/AuthenticateKey.php
@@ -3,9 +3,9 @@
 namespace Pterodactyl\Http\Middleware\Api;
 
 use Closure;
-use Lcobucci\JWT\Parser;
 use Cake\Chronos\Chronos;
 use Illuminate\Http\Request;
+use Pterodactyl\Models\User;
 use Pterodactyl\Models\ApiKey;
 use Illuminate\Auth\AuthManager;
 use Illuminate\Contracts\Encryption\Encrypter;
@@ -62,15 +62,19 @@ class AuthenticateKey
      */
     public function handle(Request $request, Closure $next, int $keyType)
     {
-        if (is_null($request->bearerToken())) {
+        if (is_null($request->bearerToken()) && is_null($request->user())) {
             throw new HttpException(401, null, null, ['WWW-Authenticate' => 'Bearer']);
         }
 
         $raw = $request->bearerToken();
 
-        // This is an internal JWT, treat it differently to get the correct user before passing it along.
-        if (strlen($raw) > ApiKey::IDENTIFIER_LENGTH + ApiKey::KEY_LENGTH) {
-            $model = $this->authenticateJWT($raw);
+        // This is a request coming through using cookies, we have an authenticated user not using
+        // an API key. Make some fake API key models and continue on through the process.
+        if (empty($raw) && $request->user() instanceof User) {
+            $model = new ApiKey([
+                'user_id' => $request->user()->id,
+                'key_type' => ApiKey::TYPE_ACCOUNT,
+            ]);
         } else {
             $model = $this->authenticateApiKey($raw, $keyType);
         }
@@ -81,42 +85,6 @@ class AuthenticateKey
         return $next($request);
     }
 
-    /**
-     * Authenticate an API request using a JWT rather than an API key.
-     *
-     * @param string $token
-     * @return \Pterodactyl\Models\ApiKey
-     */
-    protected function authenticateJWT(string $token): ApiKey
-    {
-        $token = (new Parser)->parse($token);
-
-        // If the key cannot be verified throw an exception to indicate that a bad
-        // authorization header was provided.
-        if (! $token->verify($this->getJWTSigner(), $this->getJWTSigningKey())) {
-            throw new HttpException(401, null, null, ['WWW-Authenticate' => 'Bearer']);
-        }
-
-        // Run through the token validation and throw an exception if the token is not valid.
-        //
-        // The issued_at time is used for verification in order to allow rapid changing of session
-        // length on the Panel without having to wait on existing tokens to first expire.
-        $now = Chronos::now('utc');
-        if (
-            Chronos::createFromTimestampUTC($token->getClaim('nbf'))->gt($now)
-            || $token->getClaim('iss') !== 'Pterodactyl Panel'
-            || $token->getClaim('aud') !== config('app.url')
-            || Chronos::createFromTimestampUTC($token->getClaim('iat'))->addMinutes(config('jwt.lifetime'))->lte($now)
-        ) {
-            throw new AccessDeniedHttpException('The authentication parameters provided are not valid for accessing this resource.');
-        }
-
-        return (new ApiKey)->forceFill([
-            'user_id' => object_get($token->getClaim('user'), 'id', 0),
-            'key_type' => ApiKey::TYPE_ACCOUNT,
-        ]);
-    }
-
     /**
      * Authenticate an API key.
      *
diff --git a/app/Models/User.php b/app/Models/User.php
index 6732b23af..28f785e01 100644
--- a/app/Models/User.php
+++ b/app/Models/User.php
@@ -5,6 +5,7 @@ namespace Pterodactyl\Models;
 use Sofa\Eloquence\Eloquence;
 use Sofa\Eloquence\Validable;
 use Pterodactyl\Rules\Username;
+use Illuminate\Support\Collection;
 use Illuminate\Validation\Rules\In;
 use Illuminate\Auth\Authenticatable;
 use Illuminate\Database\Eloquent\Model;
@@ -177,6 +178,16 @@ class User extends Model implements
         return $rules;
     }
 
+    /**
+     * Return the user model in a format that can be passed over to Vue templates.
+     *
+     * @return array
+     */
+    public function toVueObject(): array
+    {
+        return (new Collection($this->toArray()))->except(['id', 'external_id'])->toArray();
+    }
+
     /**
      * Send the password reset notification.
      *
diff --git a/resources/assets/scripts/helpers/axios.js b/resources/assets/scripts/helpers/axios.js
index 9fd0cbbc2..376179118 100644
--- a/resources/assets/scripts/helpers/axios.js
+++ b/resources/assets/scripts/helpers/axios.js
@@ -1,5 +1,3 @@
-import User from './../models/user';
-
 /**
  * We'll load the axios HTTP library which allows us to easily issue requests
  * to our Laravel back-end. This library automatically handles sending the
@@ -9,7 +7,6 @@ import User from './../models/user';
 let axios = require('axios');
 axios.defaults.headers.common['X-Requested-With'] = 'XMLHttpRequest';
 axios.defaults.headers.common['Accept'] = 'application/json';
-axios.defaults.headers.common['Authorization'] = `Bearer ${User.getToken()}`;
 
 if (typeof phpdebugbar !== 'undefined') {
     axios.interceptors.response.use(function (response) {
diff --git a/resources/assets/scripts/models/user.js b/resources/assets/scripts/models/user.js
index d4b338d95..cfd4e4830 100644
--- a/resources/assets/scripts/models/user.js
+++ b/resources/assets/scripts/models/user.js
@@ -1,40 +1,4 @@
-import isString from 'lodash/isString';
-import jwtDecode from 'jwt-decode';
-
 export default class User {
-    /**
-     * Get a new user model from the JWT.
-     *
-     * @return {User | null}
-     */
-    static fromToken(token) {
-        if (!isString(token)) {
-            token = this.getToken();
-        }
-
-        if (!isString(token) || token.length < 1) {
-            return null;
-        }
-
-        try {
-            const data = jwtDecode(token);
-            if (data.user) {
-                return new User(data.user);
-            }
-        } catch (ex) {}
-
-        return null;
-    }
-
-    /**
-     * Return the JWT for the authenticated user.
-     *
-     * @returns {string | null}
-     */
-    static getToken() {
-        return localStorage.getItem('token');
-    }
-
     /**
      * Create a new user model.
      *
@@ -46,14 +10,14 @@ export default class User {
      * @param {String} language
      */
     constructor({
-        admin,
+        root_admin,
         username,
         email,
         first_name,
         last_name,
         language,
     }) {
-        this.admin = admin;
+        this.admin = root_admin;
         this.username = username;
         this.email = email;
         this.name = `${first_name} ${last_name}`;
@@ -61,11 +25,4 @@ export default class User {
         this.last_name = last_name;
         this.language = language;
     }
-
-    /**
-     * Returns the JWT belonging to the current user.
-     */
-    getJWT() {
-        return jwtDecode(User.getToken());
-    }
 }
diff --git a/resources/assets/scripts/router.js b/resources/assets/scripts/router.js
index 422c8474e..d03c6b47a 100644
--- a/resources/assets/scripts/router.js
+++ b/resources/assets/scripts/router.js
@@ -10,6 +10,7 @@ import Login from './components/auth/Login';
 import Dashboard from './components/dashboard/Dashboard';
 import Account from './components/dashboard/Account';
 import ResetPassword from './components/auth/ResetPassword';
+import User from './models/user';
 
 const routes = [
     { name: 'login', path: '/auth/login', component: Login },
@@ -52,17 +53,10 @@ router.beforeEach((to, from, next) => {
 
     const user = store.getters['auth/getUser'];
 
-    // If user is trying to access any of the non-authentication endpoints ensure that they have
-    // a valid, non-expired JWT.
-    if (!to.path.startsWith('/auth')) {
-        // Check if the JWT has expired. Don't use the exp field, but rather that issued at time
-        // so that we can adjust how long we want to wait for expiration on both server-side and
-        // client side without having to wait for older tokens to pass their expiration time if
-        // we lower it.
-        if (user === null || compareDate(addHours(dateParse(user.getJWT().iat * 1000), 12), new Date()) < 0) {
-            store.commit('auth/logout');
-            return window.location = route('auth.logout');
-        }
+    // Check that if we're accessing a non-auth route that a user exists on the page.
+    if (!to.path.startsWith('/auth') && !(user instanceof User)) {
+        store.commit('auth/logout');
+        return window.location = route('auth.logout');
     }
 
     // Continue on through the pipeline.
diff --git a/resources/assets/scripts/store/modules/auth.js b/resources/assets/scripts/store/modules/auth.js
index 03a60f489..24c5f3028 100644
--- a/resources/assets/scripts/store/modules/auth.js
+++ b/resources/assets/scripts/store/modules/auth.js
@@ -5,7 +5,7 @@ const route = require('./../../../../../vendor/tightenco/ziggy/src/js/route').de
 export default {
     namespaced: true,
     state: {
-        user: User.fromToken(),
+        user: typeof window.PterodactylUser === 'object' ? new User(window.PterodactylUser) : null,
     },
     getters: {
         /**
@@ -41,7 +41,7 @@ export default {
                         }
 
                         if (response.data.complete) {
-                            commit('login', {jwt: response.data.jwt});
+                            commit('login', response.data.user);
                             return resolve({
                                 complete: true,
                                 intended: response.data.intended,
@@ -86,12 +86,10 @@ export default {
         setEmail: function (state, email) {
             state.user.email = email;
         },
-        login: function (state, {jwt}) {
-            localStorage.setItem('token', jwt);
-            state.user = User.fromToken(jwt);
+        login: function (state, data) {
+            state.user = new User(data);
         },
         logout: function (state) {
-            localStorage.removeItem('token');
             state.user = null;
         },
     },
diff --git a/resources/themes/pterodactyl/templates/wrapper.blade.php b/resources/themes/pterodactyl/templates/wrapper.blade.php
index 9f8d8d50a..6bb3379b6 100644
--- a/resources/themes/pterodactyl/templates/wrapper.blade.php
+++ b/resources/themes/pterodactyl/templates/wrapper.blade.php
@@ -9,6 +9,14 @@
             <meta name="csrf-token" content="{{ csrf_token() }}">
         @show
 
+        @section('user-data')
+            @if(!is_null(Auth::user()))
+                <script>
+                    window.PterodactylUser = {!! json_encode(Auth::user()->toVueObject()) !!}
+                </script>
+            @endif
+        @show
+
         @section('assets')
             {!! $asset->css('main.css') !!}
         @show

From 550c622d3bf51bf6203b39df4b775a4e95c892a3 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:48:09 -0700
Subject: [PATCH 57/62] Obliterate JWT from codebase

---
 .../Auth/AbstractLoginController.php          |  3 +-
 app/Http/Middleware/Api/AuthenticateKey.php   |  3 -
 app/Traits/Helpers/ProvidesJWTServices.php    | 36 -----------
 composer.json                                 |  1 -
 composer.lock                                 | 62 +------------------
 config/jwt.php                                | 18 ------
 package.json                                  |  1 -
 yarn.lock                                     |  4 --
 8 files changed, 3 insertions(+), 125 deletions(-)
 delete mode 100644 app/Traits/Helpers/ProvidesJWTServices.php
 delete mode 100644 config/jwt.php

diff --git a/app/Http/Controllers/Auth/AbstractLoginController.php b/app/Http/Controllers/Auth/AbstractLoginController.php
index 199ecac84..b15e90b41 100644
--- a/app/Http/Controllers/Auth/AbstractLoginController.php
+++ b/app/Http/Controllers/Auth/AbstractLoginController.php
@@ -13,13 +13,12 @@ use Pterodactyl\Http\Controllers\Controller;
 use Illuminate\Contracts\Auth\Authenticatable;
 use Illuminate\Contracts\Encryption\Encrypter;
 use Illuminate\Foundation\Auth\AuthenticatesUsers;
-use Pterodactyl\Traits\Helpers\ProvidesJWTServices;
 use Illuminate\Contracts\Cache\Repository as CacheRepository;
 use Pterodactyl\Contracts\Repository\UserRepositoryInterface;
 
 abstract class AbstractLoginController extends Controller
 {
-    use AuthenticatesUsers, ProvidesJWTServices;
+    use AuthenticatesUsers;
 
     /**
      * @var \Illuminate\Auth\AuthManager
diff --git a/app/Http/Middleware/Api/AuthenticateKey.php b/app/Http/Middleware/Api/AuthenticateKey.php
index ed3ed1b16..591aeef94 100644
--- a/app/Http/Middleware/Api/AuthenticateKey.php
+++ b/app/Http/Middleware/Api/AuthenticateKey.php
@@ -9,7 +9,6 @@ use Pterodactyl\Models\User;
 use Pterodactyl\Models\ApiKey;
 use Illuminate\Auth\AuthManager;
 use Illuminate\Contracts\Encryption\Encrypter;
-use Pterodactyl\Traits\Helpers\ProvidesJWTServices;
 use Symfony\Component\HttpKernel\Exception\HttpException;
 use Pterodactyl\Exceptions\Repository\RecordNotFoundException;
 use Pterodactyl\Contracts\Repository\ApiKeyRepositoryInterface;
@@ -17,8 +16,6 @@ use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
 
 class AuthenticateKey
 {
-    use ProvidesJWTServices;
-
     /**
      * @var \Illuminate\Auth\AuthManager
      */
diff --git a/app/Traits/Helpers/ProvidesJWTServices.php b/app/Traits/Helpers/ProvidesJWTServices.php
deleted file mode 100644
index 1c5726fbd..000000000
--- a/app/Traits/Helpers/ProvidesJWTServices.php
+++ /dev/null
@@ -1,36 +0,0 @@
-<?php
-
-namespace Pterodactyl\Traits\Helpers;
-
-use Lcobucci\JWT\Signer;
-use Illuminate\Support\Str;
-
-trait ProvidesJWTServices
-{
-    /**
-     * Get the signing key to use when creating JWTs.
-     *
-     * @return string
-     */
-    public function getJWTSigningKey(): string
-    {
-        $key = config()->get('jwt.key', '');
-        if (Str::startsWith($key, 'base64:')) {
-            $key = base64_decode(substr($key, 7));
-        }
-
-        return $key;
-    }
-
-    /**
-     * Provide the signing algo to use for JWT.
-     *
-     * @return \Lcobucci\JWT\Signer
-     */
-    public function getJWTSigner(): Signer
-    {
-        $class = config()->get('jwt.signer');
-
-        return new $class;
-    }
-}
diff --git a/composer.json b/composer.json
index 1d5e3a94f..4f1990602 100644
--- a/composer.json
+++ b/composer.json
@@ -26,7 +26,6 @@
         "laracasts/utilities": "^3.0",
         "laravel/framework": "5.6.*",
         "laravel/tinker": "^1.0",
-        "lcobucci/jwt": "^3.2",
         "lord/laroute": "^2.4",
         "matriphe/iso-639": "^1.2",
         "nesbot/carbon": "^1.22",
diff --git a/composer.lock b/composer.lock
index 3126a7eb2..fe43e1477 100644
--- a/composer.lock
+++ b/composer.lock
@@ -1,10 +1,10 @@
 {
     "_readme": [
         "This file locks the dependencies of your project to a known state",
-        "Read more about it at https://getcomposer.org/doc/01-basic-usage.md#composer-lock-the-lock-file",
+        "Read more about it at https://getcomposer.org/doc/01-basic-usage.md#installing-dependencies",
         "This file is @generated automatically"
     ],
-    "content-hash": "069ebb3ec35c8b309b129189106ad45a",
+    "content-hash": "9055a451d415d482a2f7287e0787bbc3",
     "packages": [
         {
             "name": "appstract/laravel-blade-directives",
@@ -1569,64 +1569,6 @@
             ],
             "time": "2018-05-17T13:42:07+00:00"
         },
-        {
-            "name": "lcobucci/jwt",
-            "version": "3.2.2",
-            "source": {
-                "type": "git",
-                "url": "https://github.com/lcobucci/jwt.git",
-                "reference": "0b5930be73582369e10c4d4bb7a12bac927a203c"
-            },
-            "dist": {
-                "type": "zip",
-                "url": "https://api.github.com/repos/lcobucci/jwt/zipball/0b5930be73582369e10c4d4bb7a12bac927a203c",
-                "reference": "0b5930be73582369e10c4d4bb7a12bac927a203c",
-                "shasum": ""
-            },
-            "require": {
-                "ext-openssl": "*",
-                "php": ">=5.5"
-            },
-            "require-dev": {
-                "mdanter/ecc": "~0.3.1",
-                "mikey179/vfsstream": "~1.5",
-                "phpmd/phpmd": "~2.2",
-                "phpunit/php-invoker": "~1.1",
-                "phpunit/phpunit": "~4.5",
-                "squizlabs/php_codesniffer": "~2.3"
-            },
-            "suggest": {
-                "mdanter/ecc": "Required to use Elliptic Curves based algorithms."
-            },
-            "type": "library",
-            "extra": {
-                "branch-alias": {
-                    "dev-master": "3.1-dev"
-                }
-            },
-            "autoload": {
-                "psr-4": {
-                    "Lcobucci\\JWT\\": "src"
-                }
-            },
-            "notification-url": "https://packagist.org/downloads/",
-            "license": [
-                "BSD-3-Clause"
-            ],
-            "authors": [
-                {
-                    "name": "Luís Otávio Cobucci Oblonczyk",
-                    "email": "lcobucci@gmail.com",
-                    "role": "developer"
-                }
-            ],
-            "description": "A simple library to work with JSON Web Token and JSON Web Signature",
-            "keywords": [
-                "JWS",
-                "jwt"
-            ],
-            "time": "2017-09-01T08:23:26+00:00"
-        },
         {
             "name": "league/flysystem",
             "version": "1.0.45",
diff --git a/config/jwt.php b/config/jwt.php
deleted file mode 100644
index d51a7fae9..000000000
--- a/config/jwt.php
+++ /dev/null
@@ -1,18 +0,0 @@
-<?php
-
-return [
-    /*
-    |--------------------------------------------------------------------------
-    | JWT Signing Key
-    |--------------------------------------------------------------------------
-    |
-    | This key is used for the verification of JSON Web Tokens in flight and
-    | should be different than the application encryption key. This key should
-    | be kept private at all times.
-    |
-    */
-    'key' => env('APP_JWT_KEY'),
-    'lifetime' => env('APP_JWT_LIFETIME', 1440),
-
-    'signer' => \Lcobucci\JWT\Signer\Hmac\Sha256::class,
-];
diff --git a/package.json b/package.json
index 0321cad99..0376d2157 100644
--- a/package.json
+++ b/package.json
@@ -27,7 +27,6 @@
         "glob-all": "^3.1.0",
         "html-webpack-plugin": "^3.2.0",
         "jquery": "^3.3.1",
-        "jwt-decode": "^2.2.0",
         "lodash": "^4.17.5",
         "postcss": "^6.0.21",
         "postcss-import": "^11.1.0",
diff --git a/yarn.lock b/yarn.lock
index 36b084a64..e55365370 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -3404,10 +3404,6 @@ jsonfile@^4.0.0:
   optionalDependencies:
     graceful-fs "^4.1.6"
 
-jwt-decode@^2.2.0:
-  version "2.2.0"
-  resolved "https://registry.yarnpkg.com/jwt-decode/-/jwt-decode-2.2.0.tgz#7d86bd56679f58ce6a84704a657dd392bba81a79"
-
 keygrip@~1.0.2:
   version "1.0.2"
   resolved "https://registry.yarnpkg.com/keygrip/-/keygrip-1.0.2.tgz#ad3297c557069dea8bcfe7a4fa491b75c5ddeb91"

From 8bbe6bc2794776399adabac092b876d71d5dd51b Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sat, 14 Jul 2018 22:58:33 -0700
Subject: [PATCH 58/62] Add test, fix behavior of model creation

---
 app/Http/Middleware/Api/AuthenticateKey.php   |  4 ++--
 .../Middleware/API/AuthenticateKeyTest.php    | 21 +++++++++++++++++++
 2 files changed, 23 insertions(+), 2 deletions(-)

diff --git a/app/Http/Middleware/Api/AuthenticateKey.php b/app/Http/Middleware/Api/AuthenticateKey.php
index 591aeef94..429c26f90 100644
--- a/app/Http/Middleware/Api/AuthenticateKey.php
+++ b/app/Http/Middleware/Api/AuthenticateKey.php
@@ -68,15 +68,15 @@ class AuthenticateKey
         // This is a request coming through using cookies, we have an authenticated user not using
         // an API key. Make some fake API key models and continue on through the process.
         if (empty($raw) && $request->user() instanceof User) {
-            $model = new ApiKey([
+            $model = (new ApiKey())->forceFill([
                 'user_id' => $request->user()->id,
                 'key_type' => ApiKey::TYPE_ACCOUNT,
             ]);
         } else {
             $model = $this->authenticateApiKey($raw, $keyType);
+            $this->auth->guard()->loginUsingId($model->user_id);
         }
 
-        $this->auth->guard()->loginUsingId($model->user_id);
         $request->attributes->set('api_key', $model);
 
         return $next($request);
diff --git a/tests/Unit/Http/Middleware/API/AuthenticateKeyTest.php b/tests/Unit/Http/Middleware/API/AuthenticateKeyTest.php
index 075124e2b..0d68b2642 100644
--- a/tests/Unit/Http/Middleware/API/AuthenticateKeyTest.php
+++ b/tests/Unit/Http/Middleware/API/AuthenticateKeyTest.php
@@ -4,6 +4,7 @@ namespace Tests\Unit\Http\Middleware\API;
 
 use Mockery as m;
 use Cake\Chronos\Chronos;
+use Pterodactyl\Models\User;
 use Pterodactyl\Models\ApiKey;
 use Illuminate\Auth\AuthManager;
 use Illuminate\Contracts\Encryption\Encrypter;
@@ -48,6 +49,7 @@ class AuthenticateKeyTest extends MiddlewareTestCase
      */
     public function testMissingBearerTokenThrowsException()
     {
+        $this->request->shouldReceive('user')->andReturnNull();
         $this->request->shouldReceive('bearerToken')->withNoArgs()->once()->andReturnNull();
 
         try {
@@ -117,6 +119,25 @@ class AuthenticateKeyTest extends MiddlewareTestCase
         $this->assertEquals($model, $this->request->attributes->get('api_key'));
     }
 
+    /**
+     * Test that we can still make it though this middleware if the user is logged in and passing
+     * through a cookie.
+     */
+    public function testAccessWithoutToken()
+    {
+        $user = factory(User::class)->make(['id' => 123]);
+
+        $this->request->shouldReceive('user')->andReturn($user);
+        $this->request->shouldReceive('bearerToken')->withNoArgs()->twice()->andReturnNull();
+
+        $this->getMiddleware()->handle($this->request, $this->getClosureAssertions(), ApiKey::TYPE_ACCOUNT);
+        $model = $this->request->attributes->get('api_key');
+
+        $this->assertSame(ApiKey::TYPE_ACCOUNT, $model->key_type);
+        $this->assertSame(123, $model->user_id);
+        $this->assertNull($model->identifier);
+    }
+
     /**
      * Test that a valid token identifier with an invalid token attached to it
      * triggers an exception.

From 6e9123af196bc7226a2bba29d3e6464e92930d35 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 15 Jul 2018 11:44:08 -0700
Subject: [PATCH 59/62] Correctly tear down tests and remove cookies

---
 tests/Browser/BrowserTestCase.php | 36 +++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)

diff --git a/tests/Browser/BrowserTestCase.php b/tests/Browser/BrowserTestCase.php
index 7451fa1e8..3548f9885 100644
--- a/tests/Browser/BrowserTestCase.php
+++ b/tests/Browser/BrowserTestCase.php
@@ -4,7 +4,9 @@ namespace Pterodactyl\Tests\Browser;
 
 use Laravel\Dusk\TestCase;
 use BadMethodCallException;
+use Pterodactyl\Models\User;
 use Tests\CreatesApplication;
+use Illuminate\Support\Facades\Hash;
 use Illuminate\Database\Eloquent\Model;
 use Facebook\WebDriver\Chrome\ChromeOptions;
 use Facebook\WebDriver\Remote\RemoteWebDriver;
@@ -15,6 +17,13 @@ abstract class BrowserTestCase extends TestCase
 {
     use CreatesApplication, DatabaseMigrations;
 
+    /**
+     * The default password to use for new accounts.
+     *
+     * @var string
+     */
+    protected static $userPassword = 'Password123';
+
     /**
      * Setup tests.
      */
@@ -61,4 +70,31 @@ abstract class BrowserTestCase extends TestCase
     {
         return new PterodactylBrowser($driver);
     }
+
+    /**
+     * Tear down the test and delete all cookies from the browser instance to address
+     * instances where the test would be kicked over to the login page.
+     */
+    protected function tearDown()
+    {
+        /** @var \Pterodactyl\Tests\Browser\PterodactylBrowser $browser */
+        foreach (static::$browsers as $browser) {
+            $browser->driver->manage()->deleteAllCookies();
+        }
+
+        parent::tearDown();
+    }
+
+    /**
+     * Return a user model to authenticate aganist and use in the tests.
+     *
+     * @param array $attributes
+     * @return \Pterodactyl\Models\User
+     */
+    protected function user(array $attributes = []): User
+    {
+        return factory(User::class)->create(array_merge([
+            'password' => Hash::make(static::$userPassword),
+        ], $attributes));
+    }
 }

From be2c76c24a63683e8774c9fd439fcd7984b22c7d Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 15 Jul 2018 11:44:18 -0700
Subject: [PATCH 60/62] Add tests for password changing

---
 .../Api/Client/Account/UpdateEmailRequest.php |  2 +-
 .../Client/Account/UpdatePasswordRequest.php  |  2 +-
 .../Requests/Base/AccountDataFormRequest.php  |  2 +-
 resources/lang/en/validation.php              |  1 +
 tests/Browser/Pages/BasePage.php              |  1 +
 .../Dashboard/AccountEmailProcessTest.php     | 34 +++++++++++++++----
 6 files changed, 32 insertions(+), 10 deletions(-)

diff --git a/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
index 0d8f9ea74..a990e79ba 100644
--- a/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
+++ b/app/Http/Requests/Api/Client/Account/UpdateEmailRequest.php
@@ -21,7 +21,7 @@ class UpdateEmailRequest extends ClientApiRequest
 
         // Verify password matches when changing password or email.
         if (! password_verify($this->input('password'), $this->user()->password)) {
-            throw new InvalidPasswordProvidedException(trans('base.account.invalid_password'));
+            throw new InvalidPasswordProvidedException(trans('validation.internal.invalid_password'));
         }
 
         return true;
diff --git a/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php b/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php
index 2fe368f8c..12079f681 100644
--- a/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php
+++ b/app/Http/Requests/Api/Client/Account/UpdatePasswordRequest.php
@@ -21,7 +21,7 @@ class UpdatePasswordRequest extends ClientApiRequest
 
         // Verify password matches when changing password or email.
         if (! password_verify($this->input('current_password'), $this->user()->password)) {
-            throw new InvalidPasswordProvidedException(trans('base.account.invalid_password'));
+            throw new InvalidPasswordProvidedException(trans('validation.internal.invalid_password'));
         }
 
         return true;
diff --git a/app/Http/Requests/Base/AccountDataFormRequest.php b/app/Http/Requests/Base/AccountDataFormRequest.php
index 0d24b7a16..74a00f7c6 100644
--- a/app/Http/Requests/Base/AccountDataFormRequest.php
+++ b/app/Http/Requests/Base/AccountDataFormRequest.php
@@ -28,7 +28,7 @@ class AccountDataFormRequest extends FrontendUserFormRequest
         // Verify password matches when changing password or email.
         if (in_array($this->input('do_action'), ['password', 'email'])) {
             if (! password_verify($this->input('current_password'), $this->user()->password)) {
-                throw new InvalidPasswordProvidedException(trans('base.account.invalid_password'));
+                throw new InvalidPasswordProvidedException(trans('validation.internal.invalid_password'));
             }
         }
 
diff --git a/resources/lang/en/validation.php b/resources/lang/en/validation.php
index 201880ec9..a82aaa1be 100644
--- a/resources/lang/en/validation.php
+++ b/resources/lang/en/validation.php
@@ -101,5 +101,6 @@ return [
     // Internal validation logic for Pterodactyl
     'internal' => [
         'variable_value' => ':env variable',
+        'invalid_password' => 'The password provided was invalid for this account.',
     ],
 ];
diff --git a/tests/Browser/Pages/BasePage.php b/tests/Browser/Pages/BasePage.php
index 075634c40..c2e451a3d 100644
--- a/tests/Browser/Pages/BasePage.php
+++ b/tests/Browser/Pages/BasePage.php
@@ -13,6 +13,7 @@ abstract class BasePage extends Page
     {
         return [
             '@@success' => '.alert.success[role="alert"]',
+            '@@error' => '.alert.error[role="alert"]',
         ];
     }
 }
diff --git a/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
index 7e249d6cd..013bb9fc2 100644
--- a/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
+++ b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
@@ -2,8 +2,6 @@
 
 namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
 
-use Pterodactyl\Models\User;
-use Illuminate\Support\Facades\Hash;
 use Pterodactyl\Tests\Browser\BrowserTestCase;
 use Pterodactyl\Tests\Browser\PterodactylBrowser;
 use Pterodactyl\Tests\Browser\Pages\Dashboard\AccountPage;
@@ -16,17 +14,18 @@ class AccountEmailProcessTest extends BrowserTestCase
     private $user;
 
     /**
-     * Setup a user for the test process to use.
+     * Setup tests.
      */
-    public function setUp()
+    protected function setUp()
     {
         parent::setUp();
 
-        $this->user = factory(User::class)->create([
-            'password' => Hash::make('Password123'),
-        ]);
+        $this->user = $this->user();
     }
 
+    /**
+     * Test that an email address can be changed successfully.
+     */
     public function testEmailCanBeChanged()
     {
         $this->browse(function (PterodactylBrowser $browser) {
@@ -43,4 +42,25 @@ class AccountEmailProcessTest extends BrowserTestCase
             $this->assertDatabaseHas('users', ['id' => $this->user->id, 'email' => 'new.email@example.com']);
         });
     }
+
+    /**
+     * Test that entering the wrong password for an account returns an error.
+     */
+    public function testInvalidPasswordShowsError()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->type('@email', 'new.email@example.com')
+                ->click('@submit')
+                ->assertFocused('@password')
+                ->type('@password', 'test1234')
+                ->click('@submit')
+                ->waitFor('@@error')
+                ->assertSeeIn('@@error', trans('validation.internal.invalid_password'))
+                ->assertValue('@email', 'new.email@example.com');
+
+            $this->assertDatabaseMissing('users', ['id' => $this->user->id, 'email' => 'new.email@example.com']);
+        });
+    }
 }

From d9a09e92bd9e1e449207a0ba6d2aa60692199734 Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 15 Jul 2018 15:58:24 -0700
Subject: [PATCH 61/62] Add tests for all of the account actions

---
 .../assets/scripts/components/core/Modal.vue  |   2 +-
 .../scripts/components/dashboard/Account.vue  |   4 +-
 .../account/TwoFactorAuthentication.vue       |   8 +-
 tests/Browser/Pages/Dashboard/AccountPage.php |  15 ++-
 .../Dashboard/AccountEmailProcessTest.php     |  35 +++---
 .../Dashboard/AccountPasswordProcessTest.php  |  55 +++++++++
 .../Processes/Dashboard/DashboardTestCase.php |  23 ++++
 .../TwoFactorAuthenticationProcessTest.php    | 111 ++++++++++++++++++
 tests/Browser/PterodactylBrowser.php          |  14 +++
 9 files changed, 243 insertions(+), 24 deletions(-)
 create mode 100644 tests/Browser/Processes/Dashboard/AccountPasswordProcessTest.php
 create mode 100644 tests/Browser/Processes/Dashboard/DashboardTestCase.php
 create mode 100644 tests/Browser/Processes/Dashboard/TwoFactorAuthenticationProcessTest.php

diff --git a/resources/assets/scripts/components/core/Modal.vue b/resources/assets/scripts/components/core/Modal.vue
index 586b18f06..3f7db17f6 100644
--- a/resources/assets/scripts/components/core/Modal.vue
+++ b/resources/assets/scripts/components/core/Modal.vue
@@ -2,7 +2,7 @@
     <transition name="modal">
         <div class="modal-mask" v-show="show" v-on:click="close">
             <div class="modal-container" @click.stop>
-                <x-icon class="absolute pin-r pin-t m-2 text-grey cursor-pointer" aria-label="Close modal"
+                <x-icon class="absolute pin-r pin-t m-2 text-grey cursor-pointer" aria-label="Close modal" role="button"
                         v-on:click="close"
                 />
                 <slot/>
diff --git a/resources/assets/scripts/components/dashboard/Account.vue b/resources/assets/scripts/components/dashboard/Account.vue
index 0f2d882b7..f23f5dc8c 100644
--- a/resources/assets/scripts/components/dashboard/Account.vue
+++ b/resources/assets/scripts/components/dashboard/Account.vue
@@ -11,7 +11,9 @@
                     <div class="sm:m-4 md:ml-0">
                         <update-email class="mb-4 sm:mb-8"/>
                         <div class="content-box text-center mb-4 sm:mb-0">
-                            <button class="btn btn-green btn-sm" type="submit" v-on:click="openModal">Configure 2-Factor Authentication</button>
+                            <button class="btn btn-green btn-sm" type="submit" id="grid-open-two-factor-modal"
+                                    v-on:click="openModal"
+                            >Configure 2-Factor Authentication</button>
                         </div>
                     </div>
                 </div>
diff --git a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
index a9399a37f..387f275e8 100644
--- a/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
+++ b/resources/assets/scripts/components/dashboard/account/TwoFactorAuthentication.vue
@@ -1,9 +1,9 @@
 <template>
-    <div>
+    <div id="configure-two-factor">
         <div class="h-16 text-center" v-show="spinner">
             <span class="spinner spinner-xl text-blue"></span>
         </div>
-        <div v-if="response.enabled" v-show="!spinner">
+        <div id="container-disable-two-factor" v-if="response.enabled" v-show="!spinner">
             <h2 class="font-medium text-grey-darkest">{{ $t('dashboard.account.two_factor.disable.title') }}</h2>
             <div class="mt-6">
                 <label class="input-label" for="grid-two-factor-token-disable">{{ $t('dashboard.account.two_factor.disable.field') }}</label>
@@ -26,12 +26,12 @@
                 >{{ $t('strings.disable') }}</button>
             </div>
         </div>
-        <div v-else v-show="!spinner">
+        <div id="container-enable-two-factor" v-else v-show="!spinner">
             <h2 class="font-medium text-grey-darkest">{{ $t('dashboard.account.two_factor.setup.title') }}</h2>
             <div class="flex mt-6">
                 <div class="flex-none w-full sm:w-1/2 text-center">
                     <div class="h-48">
-                        <img :src="response.qr_image" alt="Two-factor qr image" class="h-48">
+                        <img :src="response.qr_image" id="grid-qr-code" alt="Two-factor qr image" class="h-48">
                     </div>
                     <div>
                         <p class="text-xs text-grey-darker mb-2">{{ $t('dashboard.account.two_factor.setup.help') }}</p>
diff --git a/tests/Browser/Pages/Dashboard/AccountPage.php b/tests/Browser/Pages/Dashboard/AccountPage.php
index ea46791c4..e1aef4c2a 100644
--- a/tests/Browser/Pages/Dashboard/AccountPage.php
+++ b/tests/Browser/Pages/Dashboard/AccountPage.php
@@ -21,8 +21,21 @@ class AccountPage extends BasePage
     {
         return array_merge(parent::elements(), [
             '@email' => '#update-email-container #grid-email',
-            '@password' => '#update-email-container #grid-password',
+            '@password' => '#update-email-container #grid-password[type="password"]',
             '@submit' => '#update-email-container button[type="submit"]',
+
+            '@current_password' => '#change-password-container #grid-password-current[type="password"]',
+            '@new_password' => '#change-password-container #grid-password-new[type="password"]',
+            '@confirm_password' => '#change-password-container #grid-password-new-confirm[type="password"]',
+            '@submit_password' => '#change-password-container button[type="submit"]',
+
+            '@2fa_button' => '#grid-open-two-factor-modal',
+            '@2fa_modal' => '.modal-mask #configure-two-factor',
+            '@2fa_token' => '#configure-two-factor #container-enable-two-factor #grid-two-factor-token[type="number"]',
+            '@2fa_token_disable' => '#configure-two-factor #container-disable-two-factor #grid-two-factor-token-disable',
+            '@2fa_enable' => '#configure-two-factor #container-enable-two-factor button[type="submit"]',
+            '@2fa_disable' => '#configure-two-factor #container-disable-two-factor button.btn-red[type="submit"]',
+            '@2fa_cancel' => '#configure-two-factor #container-disable-two-factor button.btn-secondary',
         ]);
     }
 }
diff --git a/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
index 013bb9fc2..311312b21 100644
--- a/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
+++ b/tests/Browser/Processes/Dashboard/AccountEmailProcessTest.php
@@ -2,27 +2,11 @@
 
 namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
 
-use Pterodactyl\Tests\Browser\BrowserTestCase;
 use Pterodactyl\Tests\Browser\PterodactylBrowser;
 use Pterodactyl\Tests\Browser\Pages\Dashboard\AccountPage;
 
-class AccountEmailProcessTest extends BrowserTestCase
+class AccountEmailProcessTest extends DashboardTestCase
 {
-    /**
-     * @var \Pterodactyl\Models\User
-     */
-    private $user;
-
-    /**
-     * Setup tests.
-     */
-    protected function setUp()
-    {
-        parent::setUp();
-
-        $this->user = $this->user();
-    }
-
     /**
      * Test that an email address can be changed successfully.
      */
@@ -43,6 +27,23 @@ class AccountEmailProcessTest extends BrowserTestCase
         });
     }
 
+    /**
+     * Test that the validation error message shows up when an invalid email is entered.
+     */
+    public function testInvalidEmailShowsErrors()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->assertMissing('@email ~ .input-help.error')
+                ->type('@email', 'admin')
+                ->assertVisible('@email ~ .input-help.error')
+                ->assertSeeIn('@email ~ .input-help.error', 'The email field must be a valid email.')
+                ->type('@email', 'admin@example.com')
+                ->assertMissing('@email ~ .input-help.error');
+        });
+    }
+
     /**
      * Test that entering the wrong password for an account returns an error.
      */
diff --git a/tests/Browser/Processes/Dashboard/AccountPasswordProcessTest.php b/tests/Browser/Processes/Dashboard/AccountPasswordProcessTest.php
new file mode 100644
index 000000000..0b5e48786
--- /dev/null
+++ b/tests/Browser/Processes/Dashboard/AccountPasswordProcessTest.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
+
+use Pterodactyl\Tests\Browser\PterodactylBrowser;
+use Pterodactyl\Tests\Browser\Pages\Dashboard\AccountPage;
+
+class AccountPasswordProcessTest extends DashboardTestCase
+{
+    /**
+     * Test that a user is able to change their password.
+     */
+    public function testPasswordCanBeChanged()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->type('@current_password', self::$userPassword)
+                ->assertMissing('@new_password ~ .input-help.error')
+                ->type('@new_password', 'test')
+                ->assertSeeIn('@new_password ~ .input-help.error', 'The password field must be at least 8 characters.')
+                ->type('@new_password', 'Test1234')
+                ->assertMissing('@new_password ~ .input-help.error')
+                ->assertMissing('@confirm_password ~ .input-help.error')
+                ->type('@confirm_password', 'test')
+                ->assertSeeIn('@confirm_password ~ .input-help.error', 'The password value is not valid.')
+                ->type('@confirm_password', 'Test1234')
+                ->assertMissing('@confirm_password ~ .input-help.error')
+                ->click('@submit_password')
+                ->waitFor('@@success')
+                ->assertSeeIn('@@success', 'Your password has been updated.')
+                ->assertInputValue('@current_password', '')
+                ->assertInputValue('@new_password', '')
+                ->assertInputValue('@confirm_password', '');
+        });
+    }
+
+    /**
+     * Test that invalid passwords result in the expected error message.
+     */
+    public function testInvalidPassword()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->type('@current_password', 'badpassword')
+                ->type('@new_password', 'testtest')
+                ->type('@confirm_password', 'testtest')
+                ->click('@submit_password')
+                ->waitFor('@@error')
+                ->assertSeeIn('@@error', trans('validation.internal.invalid_password'))
+                ->assertInputValue('@current_password', '');
+        });
+    }
+}
diff --git a/tests/Browser/Processes/Dashboard/DashboardTestCase.php b/tests/Browser/Processes/Dashboard/DashboardTestCase.php
new file mode 100644
index 000000000..b9641634e
--- /dev/null
+++ b/tests/Browser/Processes/Dashboard/DashboardTestCase.php
@@ -0,0 +1,23 @@
+<?php
+
+namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
+
+use Pterodactyl\Tests\Browser\BrowserTestCase;
+
+abstract class DashboardTestCase extends BrowserTestCase
+{
+    /**
+     * @var \Pterodactyl\Models\User
+     */
+    protected $user;
+
+    /**
+     * Setup tests and provide a default user to calling functions.
+     */
+    protected function setUp()
+    {
+        parent::setUp();
+
+        $this->user = $this->user();
+    }
+}
diff --git a/tests/Browser/Processes/Dashboard/TwoFactorAuthenticationProcessTest.php b/tests/Browser/Processes/Dashboard/TwoFactorAuthenticationProcessTest.php
new file mode 100644
index 000000000..26a13048e
--- /dev/null
+++ b/tests/Browser/Processes/Dashboard/TwoFactorAuthenticationProcessTest.php
@@ -0,0 +1,111 @@
+<?php
+
+namespace Pterodactyl\Tests\Browser\Processes\Dashboard;
+
+use PragmaRX\Google2FA\Google2FA;
+use Facebook\WebDriver\WebDriverKeys;
+use Illuminate\Support\Facades\Crypt;
+use Pterodactyl\Tests\Browser\PterodactylBrowser;
+use Pterodactyl\Tests\Browser\Pages\Dashboard\AccountPage;
+
+class TwoFactorAuthenticationProcessTest extends DashboardTestCase
+{
+    /**
+     * Test that the modal can be opened and closed.
+     */
+    public function testModalOpenAndClose()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->assertMissing('.modal-mask')
+                ->click('@2fa_button')
+                ->waitFor('@2fa_modal')
+                ->pause(500)// seems to fix fragile test
+                ->clickPosition(100, 100)
+                ->waitUntilMissing('@2fa_modal')
+                ->click('@2fa_button')
+                ->waitFor('@2fa_modal')
+                ->click('svg[role="button"][aria-label="Close modal"]')
+                ->waitUntilMissing('@2fa_modal')
+                ->click('@2fa_button')
+                ->waitFor('@2fa_modal')
+                ->keys('', [WebDriverKeys::ESCAPE])
+                ->waitUntilMissing('@2fa_modal');
+        });
+    }
+
+    /**
+     * Test that a user that does not have two-factor enabled can enable it on their account.
+     */
+    public function testTwoFactorCanBeEnabled()
+    {
+        $this->browse(function (PterodactylBrowser $browser) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->click('@2fa_button')
+                ->waitForText(trans('dashboard/account.two_factor.setup.title'))
+                ->assertFocused('@2fa_token')
+                ->waitFor('#grid-qr-code')
+                ->assertSee(trans('dashboard/account.two_factor.setup.help'));
+
+            // Grab information from the database so we can ensure the correct things are showing up.
+            // Also because we need to generate a code to send through and activate it with.
+            $updated = $this->user->fresh();
+
+            $secret = Crypt::decrypt($updated->totp_secret);
+            $code = (new Google2FA())->getCurrentOtp($secret);
+
+            $browser->assertSeeIn('code', $secret)
+                ->assertVisible('@2fa_enable[disabled="disabled"]')
+                ->assertMissing('@2fa_token ~ .input-help.error')
+                ->type('@2fa_token', '12')
+                ->assertSeeIn('@2fa_token ~ .input-help.error', 'The token length must be 6.')
+                ->type('@2fa_token', $code)
+                ->assertMissing('@2fa_token ~ .input-help.error')
+                ->click('@2fa_enable')
+                ->waitUntilMissing('@2fa_modal')
+                ->assertSeeIn('@@success', trans('dashboard/account.two_factor.enabled'));
+
+            $this->assertDatabaseHas('users', ['id' => $this->user->id, 'use_totp' => 1]);
+        });
+    }
+
+    /**
+     * Test that a user can disable two-factor authentication on thier account.
+     */
+    public function testTwoFactorCanBeDisabled()
+    {
+        $secret = (new Google2FA)->generateSecretKey(16);
+
+        $this->user->update([
+            'use_totp' => true,
+            'totp_secret' => Crypt::encrypt($secret),
+        ]);
+
+        $this->browse(function (PterodactylBrowser $browser) use ($secret) {
+            $browser->loginAs($this->user)
+                ->visit(new AccountPage)
+                ->click('@2fa_button')
+                ->waitForText(trans('dashboard/account.two_factor.disable.title'))
+                ->click('@2fa_cancel')
+                ->waitUntilMissing('@2fa_modal')
+                ->click('@2fa_button')
+                ->waitForText(trans('dashboard/account.two_factor.disable.title'))
+                ->assertVisible('@2fa_disable[disabled="disabled"]')
+                ->assertVisible('@2fa_cancel')
+                ->assertFocused('@2fa_token_disable')
+                ->assertMissing('@2fa_token_disable ~ .input-help.error')
+                ->type('@2fa_token_disable', '12')
+                ->assertSeeIn('@2fa_token_disable ~ .input-help.error', 'The token length must be 6.');
+
+            $token = (new Google2FA())->getCurrentOtp($secret);
+
+            $browser->type('@2fa_token_disable', $token)
+                ->assertMissing('@2fa_token_disable ~ .input-help.error')
+                ->click('@2fa_disable')
+                ->waitUntilMissing('@2fa_modal')
+                ->assertSeeIn('@@success', trans('dashboard/account.two_factor.disabled'));
+        });
+    }
+}
diff --git a/tests/Browser/PterodactylBrowser.php b/tests/Browser/PterodactylBrowser.php
index 57a790844..c7465ff3e 100644
--- a/tests/Browser/PterodactylBrowser.php
+++ b/tests/Browser/PterodactylBrowser.php
@@ -8,6 +8,20 @@ use PHPUnit\Framework\Assert as PHPUnit;
 
 class PterodactylBrowser extends Browser
 {
+    /**
+     * Move the mouse to a specific location and then perform a left click action.
+     *
+     * @param int $x
+     * @param int $y
+     * @return $this
+     */
+    public function clickPosition(int $x, int $y)
+    {
+        $this->driver->getMouse()->mouseMove(null, $x, $y)->click();
+
+        return $this;
+    }
+
     /**
      * Perform a case insensitive search for a string in the body.
      *

From b859ed61f4d493a570a8d10b16a055e224c6a2ed Mon Sep 17 00:00:00 2001
From: Dane Everitt <dane@daneeveritt.com>
Date: Sun, 15 Jul 2018 16:20:36 -0700
Subject: [PATCH 62/62] Performance improvements to browser tests

---
 tests/Browser/BrowserTestCase.php             | 26 +++++++++++++++++--
 .../Authentication/LoginProcessTest.php       | 19 +++++---------
 2 files changed, 31 insertions(+), 14 deletions(-)

diff --git a/tests/Browser/BrowserTestCase.php b/tests/Browser/BrowserTestCase.php
index 3548f9885..825978d3c 100644
--- a/tests/Browser/BrowserTestCase.php
+++ b/tests/Browser/BrowserTestCase.php
@@ -6,16 +6,16 @@ use Laravel\Dusk\TestCase;
 use BadMethodCallException;
 use Pterodactyl\Models\User;
 use Tests\CreatesApplication;
+use Pterodactyl\Console\Kernel;
 use Illuminate\Support\Facades\Hash;
 use Illuminate\Database\Eloquent\Model;
 use Facebook\WebDriver\Chrome\ChromeOptions;
 use Facebook\WebDriver\Remote\RemoteWebDriver;
 use Facebook\WebDriver\Remote\DesiredCapabilities;
-use Illuminate\Foundation\Testing\DatabaseMigrations;
 
 abstract class BrowserTestCase extends TestCase
 {
-    use CreatesApplication, DatabaseMigrations;
+    use CreatesApplication;
 
     /**
      * The default password to use for new accounts.
@@ -24,6 +24,28 @@ abstract class BrowserTestCase extends TestCase
      */
     protected static $userPassword = 'Password123';
 
+    /**
+     * Create a fresh database instance before each test class is initialized. This is different
+     * than the default DatabaseMigrations as it is only run when the class is setup. The trait
+     * provided by Laravel will run on EACH test function, slowing things down significantly.
+     *
+     * If you need to reset the DB between function runs just include the trait in that specific
+     * test. In most cases you probably wont need to do this, or can modify the test slightly to
+     * avoid the need to do so.
+     */
+    public static function setUpBeforeClass()
+    {
+        parent::setUpBeforeClass();
+
+        $app = require __DIR__ . '/../../bootstrap/app.php';
+
+        /** @var \Pterodactyl\Console\Kernel $kernel */
+        $kernel = $app->make(Kernel::class);
+
+        $kernel->bootstrap();
+        $kernel->call('migrate:fresh');
+    }
+
     /**
      * Setup tests.
      */
diff --git a/tests/Browser/Processes/Authentication/LoginProcessTest.php b/tests/Browser/Processes/Authentication/LoginProcessTest.php
index 1e0f8a0be..c6e58dd7a 100644
--- a/tests/Browser/Processes/Authentication/LoginProcessTest.php
+++ b/tests/Browser/Processes/Authentication/LoginProcessTest.php
@@ -2,8 +2,6 @@
 
 namespace Pterodactyl\Tests\Browser\Processes\Authentication;
 
-use Pterodactyl\Models\User;
-use Illuminate\Support\Facades\Hash;
 use Facebook\WebDriver\WebDriverKeys;
 use Pterodactyl\Tests\Browser\BrowserTestCase;
 use Pterodactyl\Tests\Browser\Pages\LoginPage;
@@ -20,10 +18,7 @@ class LoginProcessTest extends BrowserTestCase
     {
         parent::setUp();
 
-        $this->user = factory(User::class)->create([
-            'email' => 'test@example.com',
-            'password' => Hash::make('Password123'),
-        ]);
+        $this->user = $this->user();
     }
 
     /**
@@ -34,8 +29,8 @@ class LoginProcessTest extends BrowserTestCase
         $this->browse(function (PterodactylBrowser $browser) {
             $browser->visit(new LoginPage)
                 ->waitFor('@username')
-                ->type('@username', 'test@example.com')
-                ->type('@password', 'Password123')
+                ->type('@username', $this->user->email)
+                ->type('@password', self::$userPassword)
                 ->click('@loginButton')
                 ->waitForReload()
                 ->assertPathIs('/')
@@ -52,7 +47,7 @@ class LoginProcessTest extends BrowserTestCase
             $browser->visit(new LoginPage)
                 ->waitFor('@username')
                 ->type('@username', $this->user->username)
-                ->type('@password', 'Password123')
+                ->type('@password', self::$userPassword)
                 ->click('@loginButton')
                 ->waitForReload()
                 ->assertPathIs('/')
@@ -70,15 +65,15 @@ class LoginProcessTest extends BrowserTestCase
             $browser->logout()
                 ->visit(new LoginPage())
                 ->waitFor('@username')
-                ->type('@username', 'test@example.com')
+                ->type('@username', $this->user->email)
                 ->type('@password', 'invalid')
                 ->click('@loginButton')
                 ->waitFor('.alert.error')
                 ->assertSeeIn('.alert.error', trans('auth.failed'))
-                ->assertValue('@username', 'test@example.com')
+                ->assertValue('@username', $this->user->email)
                 ->assertValue('@password', '')
                 ->assertFocused('@password')
-                ->type('@password', 'Password123')
+                ->type('@password', self::$userPassword)
                 ->keys('@password', [WebDriverKeys::ENTER])
                 ->waitForReload()
                 ->assertPathIs('/')