Check submission sizes.

2025-12-18 20:38:57 +00:00 · 2023-12-31 06:20:29 +01:00
parent 81a11ee5b4
commit a49cf1fd3d
13 changed files with 82 additions and 68 deletions
--- a/app/Api/V2/Controllers/Model/Budget/ShowController.php
+++ b/app/Api/V2/Controllers/Model/Budget/ShowController.php
@@ -62,7 +62,7 @@ class ShowController extends Controller
        return response()
            ->api($this->jsonApiObject('budgets', $budget, $transformer))
            ->header('Content-Type', self::CONTENT_TYPE)
-            ;
+        ;
    }

    /**
--- a/app/Http/Requests/AccountFormRequest.php
+++ b/app/Http/Requests/AccountFormRequest.php
@@ -115,6 +115,7 @@ class AccountFormRequest extends FormRequest
            'amount_currency_id_virtual_balance' => 'exists:transaction_currencies,id',
            'what'                               => 'in:'.$types,
            'interest_period'                    => 'in:daily,monthly,yearly',
+            'notes'                              => 'between:1,65536|nullable',
        ];
        $rules          = Location::requestRules($rules);

--- a/app/Http/Requests/BudgetFormStoreRequest.php
+++ b/app/Http/Requests/BudgetFormStoreRequest.php
@@ -65,6 +65,7 @@ class BudgetFormStoreRequest extends FormRequest
            'auto_budget_currency_id' => 'exists:transaction_currencies,id',
            'auto_budget_amount'      => 'min:0|max:1000000000|required_if:auto_budget_type,1|required_if:auto_budget_type,2',
            'auto_budget_period'      => 'in:daily,weekly,monthly,quarterly,half_year,yearly',
+            'notes'                   => 'between:1,65536|nullable',
        ];
    }

--- a/app/Http/Requests/BudgetFormUpdateRequest.php
+++ b/app/Http/Requests/BudgetFormUpdateRequest.php
@@ -75,6 +75,7 @@ class BudgetFormUpdateRequest extends FormRequest
            'auto_budget_currency_id' => 'exists:transaction_currencies,id',
            'auto_budget_amount'      => 'min:0|max:1000000000|required_if:auto_budget_type,1|required_if:auto_budget_type,2|numeric',
            'auto_budget_period'      => 'in:daily,weekly,monthly,quarterly,half_year,yearly',
+            'notes'                   => 'between:1,65536|nullable',
        ];
    }

--- a/app/Http/Requests/CategoryFormRequest.php
+++ b/app/Http/Requests/CategoryFormRequest.php
@@ -63,7 +63,8 @@ class CategoryFormRequest extends FormRequest

        // fixed
        return [
-            'name' => $nameRule,
+            'name'  => $nameRule,
+            'notes' => 'between:1,65536|nullable',
        ];
    }
 }
--- a/app/Http/Requests/JournalLinkRequest.php
+++ b/app/Http/Requests/JournalLinkRequest.php
@@ -44,7 +44,7 @@ class JournalLinkRequest extends FormRequest
        $return                           = [];
        $linkType                         = $this->get('link_type');
        $parts                            = explode('_', $linkType);
-        $return['link_type_id']           = (int)$parts[0];
+        $return['link_type_id']           = (int) $parts[0];
        $return['transaction_journal_id'] = $this->convertInteger('opposing');
        $return['notes']                  = $this->convertString('notes');
        $return['direction']              = $parts[1];
--- a/app/Http/Requests/PiggyBankStoreRequest.php
+++ b/app/Http/Requests/PiggyBankStoreRequest.php
@@ -64,7 +64,7 @@ class PiggyBankStoreRequest extends FormRequest
            'targetdate'   => 'date|nullable',
            'order'        => 'integer|min:1',
            'object_group' => 'min:0|max:255',
-            'notes' => 'between:1,65536|nullable',
+            'notes'        => 'between:1,65536|nullable',
        ];
    }
 }
--- a/app/Http/Requests/PiggyBankUpdateRequest.php
+++ b/app/Http/Requests/PiggyBankUpdateRequest.php
@@ -68,7 +68,7 @@ class PiggyBankUpdateRequest extends FormRequest
            'targetdate'   => 'date|nullable',
            'order'        => 'integer|max:65536|min:1',
            'object_group' => 'min:0|max:255',
-            'notes' => 'between:1,65536|nullable',
+            'notes'        => 'between:1,65536|nullable',
        ];
    }
 }
--- a/app/Http/Requests/RecurrenceFormRequest.php
+++ b/app/Http/Requests/RecurrenceFormRequest.php
@@ -161,7 +161,7 @@ class RecurrenceFormRequest extends FormRequest
            'first_date'              => 'required|date|after:'.$today->format('Y-m-d'),
            'repetition_type'         => ['required', new ValidRecurrenceRepetitionValue(), new ValidRecurrenceRepetitionType(), 'between:1,20'],
            'skip'                    => 'required|numeric|integer|gte:0|lte:31',
-
+            'notes'                   => 'between:1,65536|nullable',
            // optional for recurrence:
            'recurring_description'   => 'between:0,65000',
            'active'                  => 'numeric|between:0,1',
--- a/app/Http/Requests/ReportFormRequest.php
+++ b/app/Http/Requests/ReportFormRequest.php
@@ -53,7 +53,7 @@ class ReportFormRequest extends FormRequest
        $collection = new Collection();
        if (is_array($set)) {
            foreach ($set as $accountId) {
-                $account = $repository->find((int)$accountId);
+                $account = $repository->find((int) $accountId);
                if (null !== $account) {
                    $collection->push($account);
                }
@@ -74,7 +74,7 @@ class ReportFormRequest extends FormRequest
        $collection = new Collection();
        if (is_array($set)) {
            foreach ($set as $budgetId) {
-                $budget = $repository->find((int)$budgetId);
+                $budget = $repository->find((int) $budgetId);
                if (null !== $budget) {
                    $collection->push($budget);
                }
@@ -95,7 +95,7 @@ class ReportFormRequest extends FormRequest
        $collection = new Collection();
        if (is_array($set)) {
            foreach ($set as $categoryId) {
-                $category = $repository->find((int)$categoryId);
+                $category = $repository->find((int) $categoryId);
                if (null !== $category) {
                    $collection->push($category);
                }
@@ -116,7 +116,7 @@ class ReportFormRequest extends FormRequest
        $collection = new Collection();
        if (is_array($set)) {
            foreach ($set as $accountId) {
-                $account = $repository->find((int)$accountId);
+                $account = $repository->find((int) $accountId);
                if (null !== $account) {
                    $collection->push($account);
                }
@@ -135,13 +135,13 @@ class ReportFormRequest extends FormRequest
    {
        $date  = today(config('app.timezone'));
        $range = $this->get('daterange');
-        $parts = explode(' - ', (string)$range);
+        $parts = explode(' - ', (string) $range);
        if (2 === count($parts)) {
            $string = $parts[1];
            // validate as date
            // if regex for YYYY-MM-DD:
            $pattern = '/^(19|20)\d\d-(0[1-9]|1[012])-(0[1-9]|[12][\d]|3[01])$/';
-            $result = preg_match($pattern, $string);
+            $result  = preg_match($pattern, $string);
            if (false !== $result && 0 !== $result) {
                try {
                    $date = new Carbon($parts[1]);
@@ -173,13 +173,13 @@ class ReportFormRequest extends FormRequest
    {
        $date  = today(config('app.timezone'));
        $range = $this->get('daterange');
-        $parts = explode(' - ', (string)$range);
+        $parts = explode(' - ', (string) $range);
        if (2 === count($parts)) {
            $string = $parts[0];
            // validate as date
            // if regex for YYYY-MM-DD:
            $pattern = '/^(19|20)\d\d-(0[1-9]|1[012])-(0[1-9]|[12][\d]|3[01])$/';
-            $result = preg_match($pattern, $string);
+            $result  = preg_match($pattern, $string);
            if (false !== $result && 0 !== $result) {
                try {
                    $date = new Carbon($parts[0]);
@@ -227,7 +227,7 @@ class ReportFormRequest extends FormRequest

                continue;
            }
-            $tag = $repository->find((int)$tagTag);
+            $tag = $repository->find((int) $tagTag);
            if (null !== $tag) {
                $collection->push($tag);
            }
--- a/app/Http/Requests/RuleFormRequest.php
+++ b/app/Http/Requests/RuleFormRequest.php
@@ -130,8 +130,8 @@ class RuleFormRequest extends FormRequest
                $set            = [
                    'type'            => $trigger['type'] ?? 'invalid',
                    'value'           => $trigger['value'] ?? '',
-                    'stop_processing' => 1 === (int)$stopProcessing,
-                    'prohibited'      => 1 === (int)$prohibited,
+                    'stop_processing' => 1 === (int) $stopProcessing,
+                    'prohibited'      => 1 === (int) $prohibited,
                ];
                $set            = self::replaceAmountTrigger($set);
                $return[]       = $set;
@@ -151,7 +151,7 @@ class RuleFormRequest extends FormRequest
                $return[]       = [
                    'type'            => $action['type'] ?? 'invalid',
                    'value'           => $action['value'] ?? '',
-                    'stop_processing' => 1 === (int)$stopProcessing,
+                    'stop_processing' => 1 === (int) $stopProcessing,
                ];
            }
        }
--- a/app/Repositories/Budget/BudgetRepository.php
+++ b/app/Repositories/Budget/BudgetRepository.php
@@ -60,7 +60,8 @@ class BudgetRepository implements BudgetRepositoryInterface
            $search->where('name', 'LIKE', sprintf('%%%s', $query));
        }
        $search->orderBy('order', 'ASC')
-               ->orderBy('name', 'ASC')->where('active', true);
+            ->orderBy('name', 'ASC')->where('active', true)
+        ;

        return $search->take($limit)->get();
    }
@@ -72,7 +73,8 @@ class BudgetRepository implements BudgetRepositoryInterface
            $search->where('name', 'LIKE', sprintf('%s%%', $query));
        }
        $search->orderBy('order', 'ASC')
-               ->orderBy('name', 'ASC')->where('active', true);
+            ->orderBy('name', 'ASC')->where('active', true)
+        ;

        return $search->take($limit)->get();
    }
@@ -151,7 +153,7 @@ class BudgetRepository implements BudgetRepositoryInterface
        return $return;
    }

-    public function setUser(null | Authenticatable | User $user): void
+    public function setUser(null|Authenticatable|User $user): void
    {
        if ($user instanceof User) {
            $this->user = $user;
@@ -161,9 +163,10 @@ class BudgetRepository implements BudgetRepositoryInterface
    public function getActiveBudgets(): Collection
    {
        return $this->user->budgets()->where('active', true)
-                          ->orderBy('order', 'ASC')
-                          ->orderBy('name', 'ASC')
-                          ->get();
+            ->orderBy('order', 'ASC')
+            ->orderBy('name', 'ASC')
+            ->get()
+        ;
    }

    public function budgetedInPeriodForBudget(Budget $budget, Carbon $start, Carbon $end): array
@@ -331,7 +334,8 @@ class BudgetRepository implements BudgetRepositoryInterface
    public function getBudgets(): Collection
    {
        return $this->user->budgets()->orderBy('order', 'ASC')
-                          ->orderBy('name', 'ASC')->get();
+            ->orderBy('name', 'ASC')->get()
+        ;
    }

    public function destroyAutoBudget(Budget $budget): void
@@ -415,8 +419,9 @@ class BudgetRepository implements BudgetRepositoryInterface
    public function getInactiveBudgets(): Collection
    {
        return $this->user->budgets()
-                          ->orderBy('order', 'ASC')
-                          ->orderBy('name', 'ASC')->where('active', 0)->get();
+            ->orderBy('order', 'ASC')
+            ->orderBy('name', 'ASC')->where('active', 0)->get()
+        ;
    }

    public function getNoteText(Budget $budget): ?string
@@ -436,7 +441,8 @@ class BudgetRepository implements BudgetRepositoryInterface
            $search->where('name', 'LIKE', sprintf('%%%s%%', $query));
        }
        $search->orderBy('order', 'ASC')
-               ->orderBy('name', 'ASC')->where('active', true);
+            ->orderBy('name', 'ASC')->where('active', true)
+        ;

        return $search->take($limit)->get();
    }
@@ -470,10 +476,11 @@ class BudgetRepository implements BudgetRepositoryInterface
        /** @var GroupCollectorInterface $collector */
        $collector = app(GroupCollectorInterface::class);
        $collector->setUser($this->user)
-                  ->setRange($start, $end)
-                  ->excludeDestinationAccounts($selection)
-                  ->setTypes([TransactionType::WITHDRAWAL])
-                  ->setBudgets($this->getActiveBudgets());
+            ->setRange($start, $end)
+            ->excludeDestinationAccounts($selection)
+            ->setTypes([TransactionType::WITHDRAWAL])
+            ->setBudgets($this->getActiveBudgets())
+        ;

        $journals = $collector->getExtractedJournals();
        $array    = [];
@@ -531,10 +538,11 @@ class BudgetRepository implements BudgetRepositoryInterface
        /** @var GroupCollectorInterface $collector */
        $collector = app(GroupCollectorInterface::class);
        $collector->setUser($this->user)
-                  ->setRange($start, $end)
-                  ->excludeDestinationAccounts($selection)
-                  ->setTypes([TransactionType::WITHDRAWAL])
-                  ->setBudget($budget);
+            ->setRange($start, $end)
+            ->excludeDestinationAccounts($selection)
+            ->setTypes([TransactionType::WITHDRAWAL])
+            ->setBudget($budget)
+        ;

        $journals = $collector->getExtractedJournals();
        $array    = [];
@@ -705,10 +713,11 @@ class BudgetRepository implements BudgetRepositoryInterface
    {
        $types   = ['set_budget'];
        $actions = RuleAction::leftJoin('rules', 'rules.id', '=', 'rule_actions.rule_id')
-                             ->where('rules.user_id', $this->user->id)
-                             ->whereIn('rule_actions.action_type', $types)
-                             ->where('rule_actions.action_value', $oldName)
-                             ->get(['rule_actions.*']);
+            ->where('rules.user_id', $this->user->id)
+            ->whereIn('rule_actions.action_type', $types)
+            ->where('rule_actions.action_value', $oldName)
+            ->get(['rule_actions.*'])
+        ;
        app('log')->debug(sprintf('Found %d actions to update.', $actions->count()));

        /** @var RuleAction $action */
@@ -723,10 +732,11 @@ class BudgetRepository implements BudgetRepositoryInterface
    {
        $types    = ['budget_is'];
        $triggers = RuleTrigger::leftJoin('rules', 'rules.id', '=', 'rule_triggers.rule_id')
-                               ->where('rules.user_id', $this->user->id)
-                               ->whereIn('rule_triggers.trigger_type', $types)
-                               ->where('rule_triggers.trigger_value', $oldName)
-                               ->get(['rule_triggers.*']);
+            ->where('rules.user_id', $this->user->id)
+            ->whereIn('rule_triggers.trigger_type', $types)
+            ->where('rule_triggers.trigger_value', $oldName)
+            ->get(['rule_triggers.*'])
+        ;
        app('log')->debug(sprintf('Found %d triggers to update.', $triggers->count()));

        /** @var RuleTrigger $trigger */