rbrecruiter/resources/views/dashboard/administration/settings.blade.php

@extends('adminlte::page')

@section('title', config('app.name') . ' | ' . __('messages.settings.settings'))

@section('content_header')

    @if (Auth::user()->hasAnyRole('admin'))
        <h4>{{__('messages.adm')}} / {{__('messages.settings.settings')}}</h4>
    @else
        <h4>{{__('messages.reusable.no_access')}}</h4>
    @endif

@stop

@section('css')
    <!-- reuse profile stylesheet -->
    <link rel="stylesheet" href="/css/profile.css" >

@stop

@section('js')

    @if (session()->has('success'))
        <script>
            toastr.success("{{session('success')}}")
        </script>
    @endif

    @if (session()->has('error'))
        <script>
            toastr.error("{{session('error')}}")
        </script>
    @endif

    @if($errors->any())
        @foreach ($errors->all() as $error)
            <script>toastr.error('{{$error}}', 'Validation error!')</script>
        @endforeach
    @endif

@stop

@section('content')

    <div class="row">
    
        <div class="col">
        
            <div class="alert alert-warning alert-dismissible fade show" role="alert">
            <i class="fas fa-info-circle"></i> <b>Available security policies</b>

            <p><b>Disabled:</b> No security policy will be enforced. This is insecure.</p>
            

            <div class="row">
            
                <div class="col">
                    <p><b>Low:</b> Good choice for low-traffic websites, e.g. community with less than 100 members.</p>
                    <ul>
                        <li>Minimum 10 characters</li>
                        <li>Must contain special characters</li>
                    </ul>
                </div>
                <div class="col">
                    <p><b>Medium (recommended):</b> Standard for most websites.</p>
                    <ul>
                        <li>Minimum 12 characters</li>
                        <li>Must contain special characters</li>
                        <li>Must contain upper and lower case characters</li>
                        <li>Can't be the user's name/e-mail</li>
                    </ul>
                </div>
                <div class="col">
                    <p><b>(╯°□°）╯︵ ┻━┻:</b> For security aficionados. More of a nuisance than a good policy.</p>
                    <ul>
                        <li>Minimum 20 characters</li>
                        <li>Same as Medium, but: </li>
                        <ul>
                            <li>Must contain numerical characters</li>
                        </ul>
                    </ul>
                </div>

            </div>

            <button type="button" class="close" data-dismiss="alert" aria-label="Close">
                <span aria-hidden="true">&times;</span>
            </button>
        </div>
        
        </div>

    </div>


    <div class="row">

        <div class="col">

            <div class="card">

                <div class="card-header">
                    <h3>{{__('messages.settings.settings_header')}}</h3>
                    <p>{{__('messages.settings.settings_p')}}</p>
                </div>

                <div class="card-body">
                    <form name="settings" id="settings" method="post" action="{{route('saveSettings')}}">
                        @csrf
                        @foreach($options as $option)
                            <div class="form-group form-check">
                                <!-- Unchecked checkbox hack: This only works for serverside languages that process the last duplicate element, since the browser sends both the hidden and checkbox values. -->
                                <!-- This "hack" is necessary because browsers don't send, by default, unchecked checkboxes to the server, so we would have no way to know if X checkbox was unchecked. -->
                                <input type="hidden" name="{{$option->option_name}}" value="0">
                                <input type="checkbox" name="{{$option->option_name}}" value="1" id="{{$option->option_name}}" class="form-check-input" {{ ($option->option_value == 1) ? 'checked' : '' }}>
                                <label for="{{$option->option_name}}">{{$option->friendly_name}}</label>
                            </div>
                        @endforeach
                    </form>
                </div>

                <div class="card-footer">
                    <button type="button" class="btn btn-success" onclick="$('#settings').submit()"><i class="fa fa-save"></i> {{__('messages.vacancy.save')}}</button>
                </div>

            </div>

        </div>

        <div class="col">
        
            <div class="card">

                <div class="card-header">
                    <h3>Security Settings</h3>
                    <p>Here, you can configure security settings for the app, for all users.</p>
                </div>

                <div class="card-body">

                    <form name="security" id="security" method="post" action={{ route('saveSecuritySettings') }}>
                        @csrf

                        <div class="form-group">

                            <label for="policy">Password Security Policy</label>
                            <select class="custom-select form-control" name="secPolicy">
                            
                                <option value="nil" disabled>Choose a security policy</option>
                                <option value="off" {{ ($security['secPolicy'] == 'off') ? 'selected' : '' }}>Disabled (default)</option>
                                <option value="low" {{ ($security['secPolicy'] == 'low') ? 'selected' : '' }}>Low</option>
                                <option value="medium" {{ ($security['secPolicy'] == 'medium') ? 'selected' : '' }}>Medium</option>
                                <option value="high" {{ ($security['secPolicy'] == 'high') ? 'selected' : '' }}>High (╯°□°）╯︵ ┻━┻</option>

                            </select>

                        </div>    

                        <div class="form-group">
                            <label for="graceperiod">Grace period for 2FA requirement (above <code>reviewer</code>)</label>
                            <input type="text" class="form-control" id="graceperiod" placeholder="time in days" name="graceperiod" value="{{$security['graceperiod']}}">
                            <p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Users will be locked out after this time period if they fail to enable 2FA. Leave empty to disable.</p>
                        </div>


                        <div class="form-group">
                            <label for="pwExpiry">Password Expiry Control</label>
                            <input type="text" class="form-control" id="pwExpiry" placeholder="time in days" name="pwExpiry" value="{{ $security['pwExpiry'] }}">
                            <p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Leave this field blank to disable. Users will be forced to reset their password after the specified time.</p>
                        </div>


                        <div class="form-group form-check">
                            <input type="hidden" name="enforce2fa" value="0">
                            <input type="checkbox" name="enforce2fa" value="1" id="enforce2fa" class="form-check-input" {{ $security['enforce2fa'] == true ? 'checked' : '' }}>
                            <label for="enforceAdmin2fa">Force roles above <code>reviewer</code> to use two factor authentication?</label>
                        </div>  

                         <div class="form-group form-check">
                            <input type="hidden" name="requirePMC" value="0">
                            <input type="checkbox" name="requirePMC" value="1" id="requirePMC" class="form-check-input" {{ $security['requiresPMC'] == true ? 'checked' : '' }}>
                            <label for="requirePMC">Require a valid game license to signup?</label>
                            <p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Choose a game in the section below, if applicable.</p>
                        </div>

                    </form>

                </div>

                <div class="card-footer">
                    <button onclick="$('#security').submit()" type="button" class="btn btn-success"><i class="fas fa-save"></i> Save Changes</button>
                </div>
                
            </div>

        </div>

    </div>

    <div class="row mt-3">    
        <div class="col">
            <div class="card">
            
                <div class="card-header">
                    <h4>Game Integration</h4>
                    <p>In this section, you can choose which game your community plays. This gives you the ability to limit signups to users with valid game accounts, keeping pirates out. It also swaps front page images with images for that game, if you haven't customised them. Leave unselected if your community does not revolve around a game.</p>
                </div>

                <div class="card-body">

                    <div class="form-group mb-3">
                        <div class="row">
                            <div class="col">
                                <label>
                                    <input type="radio" name="gamePref" value="MINECRAFT">
                                    <img alt="Mojang Logo (Minecraft)" height="150px" width="150px" src="/img/mc.jpg">
                                </label>
                            </div>

                            <div class="col">
                                <label>
                                    <input type="radio" name="gamePref" value="RUST">
                                    <img alt="Rust Logo" height="150px" width="150px" src="/img/rust.png">
                                </label>
                            </div>


                            <div class="col">
                                <label>
                                    <input type="radio" name="gamePref" value="GMOD">
                                    <img alt="Gmod Logo" height="150px" width="150px" src="/img/gmod.png">
                                </label>
                            </div>

                            <div class="col">
                                <label>
                                    <input type="radio" name="gamePref" value="SE">
                                    <img alt="Gmod Logo" height="150px" width="150px" src="/img/se.png">
                                </label>
                            </div>
                            
                        </div>
                    </div>
                </div>

                <div class="card-footer">
                    <button type="button" class="btn btn-success"><i class="fas fa-save"></i> Save Changes</button>
                </div>
            </div>
        </div>
    </div>


    <div class="row mt-3">
    
        <div class="col">
        
            <div class="card">
            
                <div class="card-header">
                    
                    <h4>Integration with 3rd party services</h4>
                    <p>Configure any of the thirdy party services below to facilitate recruiting staff for specific services.</p>    

                </div>


                <div class="card-body">
                    <div class="form-group mb-3">
                        <div class="row text-center">    
                            <div class="col mt-4">
                                <img src="/img/discord-mark-white.svg" width="270px" alt="Discord Workmark Logo - Black"><br>
                                <button class="btn btn-primary mt-4" type="button"><i class="fab fa-discord"></i> Configure Integration</button>
                            </div>

                            <div class="col">
                                <img src="/img/reddit-mark-white.svg" width="250px" alt="Reddit Wordmark Logo - OrangeRed"><br>
                                <button class="btn btn-primary mt-4" type="button"><i class="fab fa-reddit"></i> Configure Integration</button>
                            </div>
                    
                        </div>
                    </div>
                </div>

                <div class="card-footer">
                
                    <p class="text-muted text-bold"><i class="fas fa-exclamation-triangle"></i><b> Disclaimer: </b> {{ config('app.name') }} is not affiliated with and does not endorse the brands displayed above.</p>

                </div>
            </div>
        </div>
    </div>


@stop
Add settings page 2020-08-30 22:06:01 +00:00			`@extends('adminlte::page')`

Add administration localization options 2020-09-01 11:43:39 +00:00			`@section('title', config('app.name') . ' \| ' . __('messages.settings.settings'))`
Add settings page 2020-08-30 22:06:01 +00:00
			`@section('content_header')`

			`@if (Auth::user()->hasAnyRole('admin'))`
Add administration localization options 2020-09-01 11:43:39 +00:00			`<h4>{{__('messages.adm')}} / {{__('messages.settings.settings')}}</h4>`
Add settings page 2020-08-30 22:06:01 +00:00			`@else`
Add administration localization options 2020-09-01 11:43:39 +00:00			`<h4>{{__('messages.reusable.no_access')}}</h4>`
Add settings page 2020-08-30 22:06:01 +00:00			`@endif`

			`@stop`

Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`@section('css')`
			`<!-- reuse profile stylesheet -->`
			`<link rel="stylesheet" href="/css/profile.css" >`

			`@stop`

Add settings page 2020-08-30 22:06:01 +00:00			`@section('js')`

			`@if (session()->has('success'))`
			`<script>`
			`toastr.success("{{session('success')}}")`
			`</script>`
			`@endif`

Added error messages to settings.blade.php 2020-08-31 18:50:58 +00:00			`@if (session()->has('error'))`
			`<script>`
			`toastr.error("{{session('error')}}")`
			`</script>`
			`@endif`

Add settings page 2020-08-30 22:06:01 +00:00			`@if($errors->any())`
			`@foreach ($errors->all() as $error)`
			`<script>toastr.error('{{$error}}', 'Validation error!')</script>`
			`@endforeach`
			`@endif`

			`@stop`

			`@section('content')`

Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<div class="row">`

			`<div class="col">`

			`<div class="alert alert-warning alert-dismissible fade show" role="alert">`
			`<i class="fas fa-info-circle"></i> <b>Available security policies</b>`

			`<p><b>Disabled:</b> No security policy will be enforced. This is insecure.</p>`


			`<div class="row">`

			`<div class="col">`
			`<p><b>Low:</b> Good choice for low-traffic websites, e.g. community with less than 100 members.</p>`
			`<ul>`
			`<li>Minimum 10 characters</li>`
			`<li>Must contain special characters</li>`
			`</ul>`
			`</div>`
			`<div class="col">`
			`<p><b>Medium (recommended):</b> Standard for most websites.</p>`
			`<ul>`
			`<li>Minimum 12 characters</li>`
			`<li>Must contain special characters</li>`
			`<li>Must contain upper and lower case characters</li>`
			`<li>Can't be the user's name/e-mail</li>`
			`</ul>`
			`</div>`
			`<div class="col">`
			`<p><b>(╯°□°）╯︵ ┻━┻:</b> For security aficionados. More of a nuisance than a good policy.</p>`
			`<ul>`
			`<li>Minimum 20 characters</li>`
			`<li>Same as Medium, but: </li>`
			`<ul>`
			`<li>Must contain numerical characters</li>`
			`</ul>`
			`</ul>`
			`</div>`

			`</div>`

			`<button type="button" class="close" data-dismiss="alert" aria-label="Close">`
			`<span aria-hidden="true">×</span>`
			`</button>`
			`</div>`

			`</div>`

			`</div>`


Add settings page 2020-08-30 22:06:01 +00:00			`<div class="row">`

			`<div class="col">`

			`<div class="card">`

			`<div class="card-header">`
Add administration localization options 2020-09-01 11:43:39 +00:00			`<h3>{{__('messages.settings.settings_header')}}</h3>`
			`<p>{{__('messages.settings.settings_p')}}</p>`
Add settings page 2020-08-30 22:06:01 +00:00			`</div>`

			`<div class="card-body">`
			`<form name="settings" id="settings" method="post" action="{{route('saveSettings')}}">`
Added CSRF protection to settings 2020-08-31 17:34:09 +00:00			`@csrf`
Updated options rendering 2020-08-31 17:03:20 +00:00			`@foreach($options as $option)`
Wrapped settings with form-check 2020-08-31 17:13:44 +00:00			`<div class="form-group form-check">`
Added unchecked checkbox workaround 2020-08-31 17:32:08 +00:00			`<!-- Unchecked checkbox hack: This only works for serverside languages that process the last duplicate element, since the browser sends both the hidden and checkbox values. -->`
			`<!-- This "hack" is necessary because browsers don't send, by default, unchecked checkboxes to the server, so we would have no way to know if X checkbox was unchecked. -->`
			`<input type="hidden" name="{{$option->option_name}}" value="0">`
			`<input type="checkbox" name="{{$option->option_name}}" value="1" id="{{$option->option_name}}" class="form-check-input" {{ ($option->option_value == 1) ? 'checked' : '' }}>`
Wrapped settings with form-check 2020-08-31 17:13:44 +00:00			`<label for="{{$option->option_name}}">{{$option->friendly_name}}</label>`
Add settings page 2020-08-30 22:06:01 +00:00			`</div>`
			`@endforeach`
			`</form>`
			`</div>`

Added form control buttons Also improved form styling 2020-08-31 17:11:00 +00:00			`<div class="card-footer">`
Add administration localization options 2020-09-01 11:43:39 +00:00			`<button type="button" class="btn btn-success" onclick="$('#settings').submit()"><i class="fa fa-save"></i> {{__('messages.vacancy.save')}}</button>`
Added form control buttons Also improved form styling 2020-08-31 17:11:00 +00:00			`</div>`

Add settings page 2020-08-30 22:06:01 +00:00			`</div>`

			`</div>`

Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<div class="col">`

			`<div class="card">`

			`<div class="card-header">`
			`<h3>Security Settings</h3>`
			`<p>Here, you can configure security settings for the app, for all users.</p>`
			`</div>`

			`<div class="card-body">`

Saveable settings 2021-01-06 00:57:27 +00:00			`<form name="security" id="security" method="post" action={{ route('saveSecuritySettings') }}>`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`@csrf`

			`<div class="form-group">`

			`<label for="policy">Password Security Policy</label>`
			`<select class="custom-select form-control" name="secPolicy">`

			`<option value="nil" disabled>Choose a security policy</option>`
Saveable settings 2021-01-06 00:57:27 +00:00			`<option value="off" {{ ($security['secPolicy'] == 'off') ? 'selected' : '' }}>Disabled (default)</option>`
			`<option value="low" {{ ($security['secPolicy'] == 'low') ? 'selected' : '' }}>Low</option>`
			`<option value="medium" {{ ($security['secPolicy'] == 'medium') ? 'selected' : '' }}>Medium</option>`
			`<option value="high" {{ ($security['secPolicy'] == 'high') ? 'selected' : '' }}>High (╯°□°）╯︵ ┻━┻</option>`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00
			`</select>`

			`</div>`

			`<div class="form-group">`
			`<label for="graceperiod">Grace period for 2FA requirement (above <code>reviewer</code>)</label>`
Saveable settings 2021-01-06 00:57:27 +00:00			`<input type="text" class="form-control" id="graceperiod" placeholder="time in days" name="graceperiod" value="{{$security['graceperiod']}}">`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Users will be locked out after this time period if they fail to enable 2FA. Leave empty to disable.</p>`
			`</div>`


			`<div class="form-group">`
Saveable settings 2021-01-06 00:57:27 +00:00			`<label for="pwExpiry">Password Expiry Control</label>`
			`<input type="text" class="form-control" id="pwExpiry" placeholder="time in days" name="pwExpiry" value="{{ $security['pwExpiry'] }}">`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Leave this field blank to disable. Users will be forced to reset their password after the specified time.</p>`
			`</div>`


			`<div class="form-group form-check">`
			`<input type="hidden" name="enforce2fa" value="0">`
Saveable settings 2021-01-06 00:57:27 +00:00			`<input type="checkbox" name="enforce2fa" value="1" id="enforce2fa" class="form-check-input" {{ $security['enforce2fa'] == true ? 'checked' : '' }}>`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<label for="enforceAdmin2fa">Force roles above <code>reviewer</code> to use two factor authentication?</label>`
			`</div>`

			`<div class="form-group form-check">`
			`<input type="hidden" name="requirePMC" value="0">`
Saveable settings 2021-01-06 00:57:27 +00:00			`<input type="checkbox" name="requirePMC" value="1" id="requirePMC" class="form-check-input" {{ $security['requiresPMC'] == true ? 'checked' : '' }}>`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<label for="requirePMC">Require a valid game license to signup?</label>`
			`<p class="text-muted text-sm"><i class="fas fa-info-circle"></i> Choose a game in the section below, if applicable.</p>`
			`</div>`

			`</form>`

			`</div>`

			`<div class="card-footer">`
Saveable settings 2021-01-06 00:57:27 +00:00			`<button onclick="$('#security').submit()" type="button" class="btn btn-success"><i class="fas fa-save"></i> Save Changes</button>`
Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`</div>`

			`</div>`

			`</div>`

Add settings page 2020-08-30 22:06:01 +00:00			`</div>`

Add 3rd party integrations This commit adds third party integrations to the settings page. It will allow users to link the games and services their community is using, to facilitate recruiting in each service. These settings are not saved yet. 2020-12-30 00:11:50 +00:00			`<div class="row mt-3">`
			`<div class="col">`
			`<div class="card">`

			`<div class="card-header">`
			`<h4>Game Integration</h4>`
			`<p>In this section, you can choose which game your community plays. This gives you the ability to limit signups to users with valid game accounts, keeping pirates out. It also swaps front page images with images for that game, if you haven't customised them. Leave unselected if your community does not revolve around a game.</p>`
			`</div>`

			`<div class="card-body">`

			`<div class="form-group mb-3">`
			`<div class="row">`
			`<div class="col">`
			`<label>`
			`<input type="radio" name="gamePref" value="MINECRAFT">`
			`<img alt="Mojang Logo (Minecraft)" height="150px" width="150px" src="/img/mc.jpg">`
			`</label>`
			`</div>`

			`<div class="col">`
			`<label>`
			`<input type="radio" name="gamePref" value="RUST">`
			`<img alt="Rust Logo" height="150px" width="150px" src="/img/rust.png">`
			`</label>`
			`</div>`


			`<div class="col">`
			`<label>`
			`<input type="radio" name="gamePref" value="GMOD">`
			`<img alt="Gmod Logo" height="150px" width="150px" src="/img/gmod.png">`
			`</label>`
			`</div>`

			`<div class="col">`
			`<label>`
			`<input type="radio" name="gamePref" value="SE">`
			`<img alt="Gmod Logo" height="150px" width="150px" src="/img/se.png">`
			`</label>`
			`</div>`

			`</div>`
			`</div>`
			`</div>`

			`<div class="card-footer">`
			`<button type="button" class="btn btn-success"><i class="fas fa-save"></i> Save Changes</button>`
			`</div>`
			`</div>`
			`</div>`
			`</div>`


			`<div class="row mt-3">`

			`<div class="col">`

			`<div class="card">`

			`<div class="card-header">`

			`<h4>Integration with 3rd party services</h4>`
			`<p>Configure any of the thirdy party services below to facilitate recruiting staff for specific services.</p>`

			`</div>`


			`<div class="card-body">`
			`<div class="form-group mb-3">`
			`<div class="row text-center">`
			`<div class="col mt-4">`
			`<img src="/img/discord-mark-white.svg" width="270px" alt="Discord Workmark Logo - Black"><br>`
			`<button class="btn btn-primary mt-4" type="button"><i class="fab fa-discord"></i> Configure Integration</button>`
			`</div>`

			`<div class="col">`
			`<img src="/img/reddit-mark-white.svg" width="250px" alt="Reddit Wordmark Logo - OrangeRed"><br>`
			`<button class="btn btn-primary mt-4" type="button"><i class="fab fa-reddit"></i> Configure Integration</button>`
			`</div>`

			`</div>`
			`</div>`
			`</div>`

			`<div class="card-footer">`

			`<p class="text-muted text-bold"><i class="fas fa-exclamation-triangle"></i><b> Disclaimer: </b> {{ config('app.name') }} is not affiliated with and does not endorse the brands displayed above.</p>`

			`</div>`
			`</div>`
			`</div>`
			`</div>`


Add settings page 2020-08-30 22:06:01 +00:00			`@stop`