app/Repositories/User/UserRepository.php

<?php
/**
 * UserRepository.php
 * Copyright (c) 2017 thegrumpydictator@gmail.com
 *
 * This file is part of Firefly III.
 *
 * Firefly III is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * Firefly III is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with Firefly III. If not, see <http://www.gnu.org/licenses/>.
 */
declare(strict_types=1);

namespace FireflyIII\Repositories\User;

use FireflyIII\Models\BudgetLimit;
use FireflyIII\Models\Role;
use FireflyIII\User;
use Illuminate\Support\Collection;
use Log;
use Preferences;

/**
 * Class UserRepository.
 */
class UserRepository implements UserRepositoryInterface
{
    /**
     * @return Collection
     */
    public function all(): Collection
    {
        return User::orderBy('id', 'DESC')->get(['users.*']);
    }

    /**
     * @param User   $user
     * @param string $role
     *
     * @return bool
     */
    public function attachRole(User $user, string $role): bool
    {
        $admin = Role::where('name', 'owner')->first();
        $user->attachRole($admin);
        $user->save();

        return true;
    }

    /**
     * This updates the users email address and records some things so it can be confirmed or undone later.
     * The user is blocked until the change is confirmed.
     *
     * @param User   $user
     * @param string $newEmail
     *
     * @see updateEmail
     *
     * @return bool
     */
    public function changeEmail(User $user, string $newEmail): bool
    {
        $oldEmail = $user->email;

        // save old email as pref
        Preferences::setForUser($user, 'previous_email_latest', $oldEmail);
        Preferences::setForUser($user, 'previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);

        // set undo and confirm token:
        Preferences::setForUser($user, 'email_change_undo_token', (string)bin2hex(random_bytes(16)));
        Preferences::setForUser($user, 'email_change_confirm_token', (string)bin2hex(random_bytes(16)));
        // update user

        $user->email        = $newEmail;
        $user->blocked      = 1;
        $user->blocked_code = 'email_changed';
        $user->save();

        return true;
    }

    /**
     * @param User   $user
     * @param string $password
     *
     * @return bool
     */
    public function changePassword(User $user, string $password): bool
    {
        $user->password = bcrypt($password);
        $user->save();

        return true;
    }

    /**
     * @param User   $user
     * @param bool   $isBlocked
     * @param string $code
     *
     * @return bool
     */
    public function changeStatus(User $user, bool $isBlocked, string $code): bool
    {
        // change blocked status and code:
        $user->blocked      = $isBlocked;
        $user->blocked_code = $code;
        $user->save();

        return true;
    }

    /**
     * @return int
     */
    public function count(): int
    {
        return $this->all()->count();
    }

    /**
     * @param string $name
     * @param string $displayName
     * @param string $description
     *
     * @return Role
     */
    public function createRole(string $name, string $displayName, string $description): Role
    {
        return Role::create(['name' => $name, 'display_name' => $displayName, 'description' => $description]);
    }

    /**
     * @param User $user
     *
     * @return bool
     *

     */
    public function destroy(User $user): bool
    {
        Log::debug(sprintf('Calling delete() on user %d', $user->id));
        $user->delete();

        return true;
    }

    /**
     * @param int $userId
     *
     * @deprecated
     * @return User
     */
    public function find(int $userId): User
    {
        $user = User::find($userId);
        if (null !== $user) {
            return $user;
        }

        return new User;
    }

    /**
     * @param string $email
     *
     * @return User|null
     */
    public function findByEmail(string $email): ?User
    {
        return User::where('email', $email)->first();
    }

    /**
     * @param int $userId
     *
     * @return User|null
     */
    public function findNull(int $userId): ?User
    {
        return User::find($userId);
    }

    /**
     * Returns the first user in the DB. Generally only works when there is just one.
     *
     * @return null|User
     */
    public function first(): ?User
    {
        return User::first();
    }

    /**
     * @param string $role
     *
     * @return Role|null
     */
    public function getRole(string $role): ?Role
    {
        return Role::where('name', $role)->first();
    }

    /**
     * Return basic user information.
     *
     * @param User $user
     *
     * @return array
     */
    public function getUserData(User $user): array
    {
        $return = [];

        // two factor:
        $is2faEnabled      = Preferences::getForUser($user, 'twoFactorAuthEnabled', false)->data;
        $has2faSecret      = null !== Preferences::getForUser($user, 'twoFactorAuthSecret');
        $return['has_2fa'] = false;
        if ($is2faEnabled && $has2faSecret) {
            $return['has_2fa'] = true;
        }

        $return['is_admin']            = $user->hasRole('owner');
        $return['blocked']             = 1 === (int)$user->blocked;
        $return['blocked_code']        = $user->blocked_code;
        $return['accounts']            = $user->accounts()->count();
        $return['journals']            = $user->transactionJournals()->count();
        $return['transactions']        = $user->transactions()->count();
        $return['attachments']         = $user->attachments()->count();
        $return['attachments_size']    = $user->attachments()->sum('size');
        $return['bills']               = $user->bills()->count();
        $return['categories']          = $user->categories()->count();
        $return['budgets']             = $user->budgets()->count();
        $return['budgets_with_limits'] = BudgetLimit::distinct()
                                                    ->leftJoin('budgets', 'budgets.id', '=', 'budget_limits.budget_id')
                                                    ->where('amount', '>', 0)
                                                    ->whereNull('budgets.deleted_at')
                                                    ->where('budgets.user_id', $user->id)->get(['budget_limits.budget_id'])->count();
        $return['export_jobs']         = $user->exportJobs()->count();
        $return['export_jobs_success'] = $user->exportJobs()->where('status', 'export_downloaded')->count();
        $return['import_jobs']         = $user->importJobs()->count();
        $return['import_jobs_success'] = $user->importJobs()->where('status', 'finished')->count();
        $return['rule_groups']         = $user->ruleGroups()->count();
        $return['rules']               = $user->rules()->count();
        $return['tags']                = $user->tags()->count();

        return $return;
    }

    /**
     * @param User   $user
     * @param string $role
     *
     * @return bool
     */
    public function hasRole(User $user, string $role): bool
    {
        return $user->hasRole($role);
    }

    /**
     * @param array $data
     *
     * @return User
     */
    public function store(array $data): User
    {
        return User::create(
            [
                'blocked'      => $data['blocked'] ?? false,
                'blocked_code' => $data['blocked_code'] ?? null,
                'email'        => $data['email'],
                'password'     => str_random(24),
            ]
        );
    }

    /**
     * @param User $user
     */
    public function unblockUser(User $user): void
    {
        $user->blocked      = 0;
        $user->blocked_code = '';
        $user->save();

        return;
    }

    /**
     * Update user info.
     *
     * @param User  $user
     * @param array $data
     *
     * @return User
     */
    public function update(User $user, array $data): User
    {
        $this->updateEmail($user, $data['email']);
        $user->blocked      = $data['blocked'] ?? false;
        $user->blocked_code = $data['blocked_code'] ?? null;
        $user->save();

        return $user;
    }

    /**
     * This updates the users email address. Same as changeEmail just without most logging. This makes sure that the undo/confirm routine can't catch this one.
     * The user is NOT blocked.
     *
     * @param User   $user
     * @param string $newEmail
     *
     * @see changeEmail
     *
     * @return bool
     */
    public function updateEmail(User $user, string $newEmail): bool
    {
        $oldEmail = $user->email;

        // save old email as pref
        Preferences::setForUser($user, 'admin_previous_email_latest', $oldEmail);
        Preferences::setForUser($user, 'admin_previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);

        $user->email = $newEmail;
        $user->save();

        return true;
    }
}
Fix for #185 2016-03-12 14:18:28 +01:00			`<?php`
			`/**`
			`* UserRepository.php`
New copyright notice. 2017-10-21 08:40:00 +02:00			`* Copyright (c) 2017 thegrumpydictator@gmail.com`
Fix for #185 2016-03-12 14:18:28 +01:00			`*`
New copyright notice. 2017-10-21 08:40:00 +02:00			`* This file is part of Firefly III.`
Some code cleanup and copyright cleanup. [skip ci] 2016-10-05 06:52:15 +02:00			`*`
New copyright notice. 2017-10-21 08:40:00 +02:00			`* Firefly III is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* Firefly III is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
Update copyright [skip ci] 2017-12-17 14:44:05 +01:00			`* along with Firefly III. If not, see <http://www.gnu.org/licenses/>.`
Fix for #185 2016-03-12 14:18:28 +01:00			`*/`
Expanded test coverage. 2017-03-24 15:01:53 +01:00			`declare(strict_types=1);`
Copyright notices. [skip ci] 2016-05-20 12:41:23 +02:00
Fix for #185 2016-03-12 14:18:28 +01:00			`namespace FireflyIII\Repositories\User;`

Extended the user admin. 2016-10-15 07:11:53 +02:00			`use FireflyIII\Models\BudgetLimit;`
Fix for #185 2016-03-12 14:18:28 +01:00			`use FireflyIII\Models\Role;`
			`use FireflyIII\User;`
Basic user admin. 2016-04-03 07:07:17 +02:00			`use Illuminate\Support\Collection;`
Code for #456 2016-12-12 15:24:47 +01:00			`use Log;`
Extended the user admin. 2016-10-15 07:11:53 +02:00			`use Preferences;`
Fix for #185 2016-03-12 14:18:28 +01:00
			`/**`
Code clean up. 2017-11-15 12:25:49 +01:00			`* Class UserRepository.`
Fix for #185 2016-03-12 14:18:28 +01:00			`*/`
			`class UserRepository implements UserRepositoryInterface`
			`{`
Basic user admin. 2016-04-03 07:07:17 +02:00			`/**`
			`* @return Collection`
			`*/`
			`public function all(): Collection`
			`{`
			`return User::orderBy('id', 'DESC')->get(['users.*']);`
			`}`

Fix for #185 2016-03-12 14:18:28 +01:00			`/**`
			`* @param User $user`
			`* @param string $role`
			`*`
			`* @return bool`
			`*/`
			`public function attachRole(User $user, string $role): bool`
			`{`
			`$admin = Role::where('name', 'owner')->first();`
			`$user->attachRole($admin);`
Move code to event handlers instead of registration routine. 2016-03-28 19:50:24 +02:00			`$user->save();`
Fix for #185 2016-03-12 14:18:28 +01:00
			`return true;`
			`}`

New code for email address change in profile. See #857 2017-09-26 08:52:16 +02:00			`/**`
More code for #857 2017-09-26 09:15:21 +02:00			`* This updates the users email address and records some things so it can be confirmed or undone later.`
			`* The user is blocked until the change is confirmed.`
			`*`
New code for email address change in profile. See #857 2017-09-26 08:52:16 +02:00			`* @param User $user`
			`* @param string $newEmail`
			`*`
More code for #857 2017-09-26 09:15:21 +02:00			`* @see updateEmail`
			`*`
New code for email address change in profile. See #857 2017-09-26 08:52:16 +02:00			`* @return bool`
			`*/`
			`public function changeEmail(User $user, string $newEmail): bool`
			`{`
			`$oldEmail = $user->email;`

			`// save old email as pref`
			`Preferences::setForUser($user, 'previous_email_latest', $oldEmail);`
			`Preferences::setForUser($user, 'previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);`

			`// set undo and confirm token:`
Code cleanup 2018-04-02 14:50:17 +02:00			`Preferences::setForUser($user, 'email_change_undo_token', (string)bin2hex(random_bytes(16)));`
			`Preferences::setForUser($user, 'email_change_confirm_token', (string)bin2hex(random_bytes(16)));`
New code for email address change in profile. See #857 2017-09-26 08:52:16 +02:00			`// update user`

			`$user->email = $newEmail;`
			`$user->blocked = 1;`
			`$user->blocked_code = 'email_changed';`
			`$user->save();`

			`return true;`
			`}`

Updated test database. 2016-12-30 13:47:23 +01:00			`/**`
			`* @param User $user`
			`* @param string $password`
			`*`
			`* @return bool`
			`*/`
			`public function changePassword(User $user, string $password): bool`
			`{`
			`$user->password = bcrypt($password);`
			`$user->save();`

			`return true;`
			`}`

Expanded test coverage. 2017-03-24 15:01:53 +01:00			`/**`
			`* @param User $user`
			`* @param bool $isBlocked`
			`* @param string $code`
			`*`
			`* @return bool`
			`*/`
			`public function changeStatus(User $user, bool $isBlocked, string $code): bool`
			`{`
			`// change blocked status and code:`
			`$user->blocked = $isBlocked;`
			`$user->blocked_code = $code;`
			`$user->save();`

			`return true;`
			`}`

Fix for #185 2016-03-12 14:18:28 +01:00			`/**`
			`* @return int`
			`*/`
			`public function count(): int`
			`{`
Some code cleaning up and refactoring. 2016-04-26 08:09:10 +02:00			`return $this->all()->count();`
Fix for #185 2016-03-12 14:18:28 +01:00			`}`
Extended the user admin. 2016-10-15 07:11:53 +02:00
Improve some test coverage. 2018-01-21 18:06:57 +01:00			`/**`
			`* @param string $name`
			`* @param string $displayName`
			`* @param string $description`
			`*`
			`* @return Role`
			`*/`
			`public function createRole(string $name, string $displayName, string $description): Role`
			`{`
			`return Role::create(['name' => $name, 'display_name' => $displayName, 'description' => $description]);`
			`}`

This code fixes #349 2016-10-20 19:10:43 +02:00			`/**`
Code for #456 2016-12-12 15:24:47 +01:00			`* @param User $user`
			`*`
			`* @return bool`
Various code cleanup. 2017-12-22 18:32:43 +01:00			`*`
Code cleanup 2018-04-02 14:50:17 +02:00
Code for #456 2016-12-12 15:24:47 +01:00			`*/`
			`public function destroy(User $user): bool`
			`{`
			`Log::debug(sprintf('Calling delete() on user %d', $user->id));`
			`$user->delete();`

			`return true;`
			`}`

			`/**`
This code fixes #349 2016-10-20 19:10:43 +02:00			`* @param int $userId`
			`*`
Expand test code for create export routine. 2018-03-30 16:44:33 +02:00			`* @deprecated`
This code fixes #349 2016-10-20 19:10:43 +02:00			`* @return User`
			`*/`
			`public function find(int $userId): User`
			`{`
			`$user = User::find($userId);`
Code clean up. 2017-11-15 12:25:49 +01:00			`if (null !== $user) {`
This code fixes #349 2016-10-20 19:10:43 +02:00			`return $user;`
			`}`

			`return new User;`
			`}`

New code for email address change in profile. See #857 2017-09-26 08:52:16 +02:00			`/**`
			`* @param string $email`
			`*`
			`* @return User\|null`
			`*/`
			`public function findByEmail(string $email): ?User`
			`{`
			`return User::where('email', $email)->first();`
			`}`

Expand test code for create export routine. 2018-03-30 16:44:33 +02:00			`/**`
			`* @param int $userId`
			`*`
			`* @return User\|null`
			`*/`
			`public function findNull(int $userId): ?User`
			`{`
			`return User::find($userId);`
			`}`

Improve testing of middleware. 2017-12-26 17:33:53 +01:00			`/**`
			`* Returns the first user in the DB. Generally only works when there is just one.`
			`*`
			`* @return null\|User`
			`*/`
			`public function first(): ?User`
			`{`
			`return User::first();`
			`}`

Improve some test coverage. 2018-01-21 18:06:57 +01:00			`/**`
			`* @param string $role`
			`*`
			`* @return Role\|null`
			`*/`
			`public function getRole(string $role): ?Role`
			`{`
			`return Role::where('name', $role)->first();`
			`}`

Extended the user admin. 2016-10-15 07:11:53 +02:00			`/**`
			`* Return basic user information.`
			`*`
			`* @param User $user`
			`*`
			`* @return array`
			`*/`
			`public function getUserData(User $user): array`
			`{`
			`$return = [];`

			`// two factor:`
			`$is2faEnabled = Preferences::getForUser($user, 'twoFactorAuthEnabled', false)->data;`
Code clean up. 2017-11-15 12:25:49 +01:00			`$has2faSecret = null !== Preferences::getForUser($user, 'twoFactorAuthSecret');`
Extended the user admin. 2016-10-15 07:11:53 +02:00			`$return['has_2fa'] = false;`
			`if ($is2faEnabled && $has2faSecret) {`
			`$return['has_2fa'] = true;`
			`}`

			`$return['is_admin'] = $user->hasRole('owner');`
Code cleanup 2018-04-02 14:50:17 +02:00			`$return['blocked'] = 1 === (int)$user->blocked;`
Extended the user admin. 2016-10-15 07:11:53 +02:00			`$return['blocked_code'] = $user->blocked_code;`
			`$return['accounts'] = $user->accounts()->count();`
			`$return['journals'] = $user->transactionJournals()->count();`
			`$return['transactions'] = $user->transactions()->count();`
			`$return['attachments'] = $user->attachments()->count();`
			`$return['attachments_size'] = $user->attachments()->sum('size');`
			`$return['bills'] = $user->bills()->count();`
			`$return['categories'] = $user->categories()->count();`
			`$return['budgets'] = $user->budgets()->count();`
Fix some minor scrutinizer issues. 2016-11-28 20:38:03 +01:00			`$return['budgets_with_limits'] = BudgetLimit::distinct()`
Various report updates and code cleanup. 2016-12-04 18:02:19 +01:00			`->leftJoin('budgets', 'budgets.id', '=', 'budget_limits.budget_id')`
			`->where('amount', '>', 0)`
			`->whereNull('budgets.deleted_at')`
			`->where('budgets.user_id', $user->id)->get(['budget_limits.budget_id'])->count();`
Extended the user admin. 2016-10-15 07:11:53 +02:00			`$return['export_jobs'] = $user->exportJobs()->count();`
			`$return['export_jobs_success'] = $user->exportJobs()->where('status', 'export_downloaded')->count();`
Give correct info about import jobs. 2018-01-24 11:08:50 +01:00			`$return['import_jobs'] = $user->importJobs()->count();`
			`$return['import_jobs_success'] = $user->importJobs()->where('status', 'finished')->count();`
Extended the user admin. 2016-10-15 07:11:53 +02:00			`$return['rule_groups'] = $user->ruleGroups()->count();`
			`$return['rules'] = $user->rules()->count();`
			`$return['tags'] = $user->tags()->count();`

			`return $return;`
			`}`
Expand tests. 2017-03-19 17:54:21 +01:00
			`/**`
			`* @param User $user`
			`* @param string $role`
			`*`
			`* @return bool`
			`*/`
			`public function hasRole(User $user, string $role): bool`
			`{`
			`return $user->hasRole($role);`
			`}`
More code for #857 2017-09-26 09:15:21 +02:00
Improve testing of middleware. 2017-12-26 17:33:53 +01:00			`/**`
			`* @param array $data`
			`*`
			`* @return User`
			`*/`
			`public function store(array $data): User`
			`{`
			`return User::create(`
			`[`
Implement user API and first tests. 2018-03-03 08:12:18 +01:00			`'blocked' => $data['blocked'] ?? false,`
			`'blocked_code' => $data['blocked_code'] ?? null,`
			`'email' => $data['email'],`
			`'password' => str_random(24),`
Improve testing of middleware. 2017-12-26 17:33:53 +01:00			`]`
			`);`
			`}`

Fixed a lot of tests and associated code. 2017-12-17 14:06:14 +01:00			`/**`
			`* @param User $user`
			`*/`
			`public function unblockUser(User $user): void`
			`{`
			`$user->blocked = 0;`
			`$user->blocked_code = '';`
			`$user->save();`

			`return;`
			`}`

Implement user API and first tests. 2018-03-03 08:12:18 +01:00			`/**`
			`* Update user info.`
			`*`
			`* @param User $user`
			`* @param array $data`
			`*`
			`* @return User`
			`*/`
			`public function update(User $user, array $data): User`
			`{`
			`$this->updateEmail($user, $data['email']);`
			`$user->blocked = $data['blocked'] ?? false;`
			`$user->blocked_code = $data['blocked_code'] ?? null;`
			`$user->save();`

			`return $user;`
			`}`

More code for #857 2017-09-26 09:15:21 +02:00			`/**`
			`* This updates the users email address. Same as changeEmail just without most logging. This makes sure that the undo/confirm routine can't catch this one.`
			`* The user is NOT blocked.`
			`*`
			`* @param User $user`
			`* @param string $newEmail`
			`*`
			`* @see changeEmail`
			`*`
			`* @return bool`
			`*/`
			`public function updateEmail(User $user, string $newEmail): bool`
			`{`
			`$oldEmail = $user->email;`

			`// save old email as pref`
			`Preferences::setForUser($user, 'admin_previous_email_latest', $oldEmail);`
			`Preferences::setForUser($user, 'admin_previous_email_' . date('Y-m-d-H-i-s'), $oldEmail);`

			`$user->email = $newEmail;`
			`$user->save();`

			`return true;`
			`}`
Fix various small issues. 2016-03-14 20:38:23 +01:00			`}`