Added Demo mode

Demo mode allows to safely run a demo version of the app, with destructive features limited.

Some bugs were also fixed in this commit.
This commit is contained in:
Miguel Nogueira 2021-09-04 00:44:54 +01:00
parent 8942623bde
commit 3f4bc28fd4
Signed by: miguel456
GPG Key ID: 2CF61B825316C6A0
29 changed files with 385 additions and 83 deletions

BIN
..env.swp Normal file

Binary file not shown.

View File

@ -11,6 +11,10 @@ APP_SITEHOMEPAGE=""
# Void if env is production. # Void if env is production.
NONPROD_FORCE_SECURE=false NONPROD_FORCE_SECURE=false
# Disables certain features for security purposes while running an open authentication system
# Enable only for demonostration purposes
DEMO_MODE=false
LOG_CHANNEL=daily LOG_CHANNEL=daily
DB_CONNECTION=mysql DB_CONNECTION=mysql

View File

@ -20,6 +20,6 @@ class ApiKey extends Model
public function user() public function user()
{ {
return $this->belongsTo('App\User', 'id'); return $this->belongsTo('App\User', 'owner_user_id', 'id');
} }
} }

View File

@ -38,8 +38,8 @@ class IP
'ip' => $IP, 'ip' => $IP,
]; ];
// TODO: Maybe unwrap this? Methods are chained here
if (!config('demo.is_enabled')) {
return json_decode(Cache::remember($IP, 3600, function () use ($IP) { return json_decode(Cache::remember($IP, 3600, function () use ($IP) {
return Http::get(config('general.urls.ipapi.ipcheck'), [ return Http::get(config('general.urls.ipapi.ipcheck'), [
'apiKey' => config('general.keys.ipapi.apikey'), 'apiKey' => config('general.keys.ipapi.apikey'),
@ -47,4 +47,9 @@ class IP
])->body(); ])->body();
})); }));
} }
return new class {
public $message = "This feature is disabled.";
};
}
} }

View File

@ -22,6 +22,7 @@
namespace App\Http\Controllers; namespace App\Http\Controllers;
use App\Application; use App\Application;
use App\Exceptions\ApplicationNotFoundException;
use App\Exceptions\IncompleteApplicationException; use App\Exceptions\IncompleteApplicationException;
use App\Exceptions\UnavailableApplicationException; use App\Exceptions\UnavailableApplicationException;
use App\Exceptions\VacancyNotFoundException; use App\Exceptions\VacancyNotFoundException;
@ -74,15 +75,23 @@ class ApplicationController extends Controller
{ {
$this->authorize('viewAny', Application::class); $this->authorize('viewAny', Application::class);
return view('dashboard.appmanagement.all'); return view('dashboard.appmanagement.all')
->with('applications', Application::all());
} }
public function renderApplicationForm($vacancySlug) public function renderApplicationForm($vacancySlug)
{ {
try {
return $this->applicationService->renderForm($vacancySlug); return $this->applicationService->renderForm($vacancySlug);
} }
catch (ApplicationNotFoundException $ex) {
return redirect()
->back()
->with('error', $ex->getMessage());
}
}
public function saveApplicationAnswers(Request $request, $vacancySlug) public function saveApplicationAnswers(Request $request, $vacancySlug)
{ {
@ -98,7 +107,7 @@ class ApplicationController extends Controller
} }
return redirect() return redirect()
->back() ->to(route('showUserApps'))
->with('success', __('Thank you! Your application has been processed and our team will get to it shortly.')); ->with('success', __('Thank you! Your application has been processed and our team will get to it shortly.'));
} }

View File

@ -124,11 +124,11 @@ class RegisterController extends Controller
'name' => $data['name'], 'name' => $data['name'],
'email' => $data['email'], 'email' => $data['email'],
'password' => Hash::make($data['password']), 'password' => Hash::make($data['password']),
'originalIP' => request()->ip(), 'originalIP' => config('demo.is_enabled') ? '0.0.0.0' : request()->ip(),
]); ]);
// It's not the registration controller's concern to create a profile for the user, // It's not the registration controller's concern to create a profile for the user,
// so this code has been moved to it's respective observer, following the separation of concerns pattern. // so this code has been moved to its respective observer, following the separation of concerns pattern.
$user->assignRole('user'); $user->assignRole('user');

View File

@ -42,6 +42,12 @@ class BanController extends Controller
public function insert(BanUserRequest $request, User $user) public function insert(BanUserRequest $request, User $user)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$this->authorize('create', [Ban::class, $user]); $this->authorize('create', [Ban::class, $user]);
@ -60,6 +66,12 @@ class BanController extends Controller
public function delete(Request $request, User $user) public function delete(Request $request, User $user)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$this->authorize('delete', $user->bans); $this->authorize('delete', $user->bans);
if ($this->suspensionService->isSuspended($user)) { if ($this->suspensionService->isSuspended($user)) {

View File

@ -24,6 +24,7 @@ namespace App\Http\Controllers;
use App\Application; use App\Application;
use App\User; use App\User;
use App\Vacancy; use App\Vacancy;
use Illuminate\Support\Facades\Auth;
class DashboardController extends Controller class DashboardController extends Controller
{ {
@ -34,14 +35,27 @@ class DashboardController extends Controller
$totalPeerReview = Application::where('applicationStatus', 'STAGE_PEERAPPROVAL')->get()->count(); $totalPeerReview = Application::where('applicationStatus', 'STAGE_PEERAPPROVAL')->get()->count();
$totalNewApplications = Application::where('applicationStatus', 'STAGE_SUBMITTED')->get()->count(); $totalNewApplications = Application::where('applicationStatus', 'STAGE_SUBMITTED')->get()->count();
$totalDenied = Application::where('applicationStatus', 'DENIED')->get()->count(); $totalDenied = Application::where('applicationStatus', 'DENIED')->get()->count();
$vacancies = Vacancy::where('vacancyStatus', '<>', 'CLOSED')->get();
$totalDeniedSingle = Application::where([
['applicationStatus', '=', 'DENIED'],
['applicantUserID', '=', Auth::user()->id]
])->get();
$totalNewSingle = Application::where([
['applicationStatus', '=', 'STAGE_SUBMITTED'],
['applicantUserID', '=', Auth::user()->id]
])->get();
return view('dashboard.dashboard') return view('dashboard.dashboard')
->with([ ->with([
'vacancies' => Vacancy::all(), 'vacancies' => $vacancies,
'totalUserCount' => User::all()->count(), 'totalUserCount' => User::all()->count(),
'totalDenied' => $totalDenied, 'totalDenied' => $totalDenied,
'totalPeerReview' => $totalPeerReview, 'totalPeerReview' => $totalPeerReview,
'totalNewApplications' => $totalNewApplications, 'totalNewApplications' => $totalNewApplications,
'totalNewSingle' => $totalNewSingle->count(),
'totalDeniedSingle' => $totalDeniedSingle->count()
]); ]);
} }
} }

View File

@ -21,6 +21,7 @@
namespace App\Http\Controllers; namespace App\Http\Controllers;
use App\Exceptions\EmptyFormException;
use App\Exceptions\FormHasConstraintsException; use App\Exceptions\FormHasConstraintsException;
use App\Form; use App\Form;
use App\Services\FormManagementService; use App\Services\FormManagementService;
@ -53,7 +54,15 @@ class FormController extends Controller
public function saveForm(Request $request) public function saveForm(Request $request)
{ {
try {
$form = $this->formService->addForm($request->all()); $form = $this->formService->addForm($request->all());
}
catch (EmptyFormException $ex)
{
return redirect()
->back()
->with('exception', $ex->getMessage());
}
// Form is boolean or array // Form is boolean or array
if ($form) if ($form)

View File

@ -62,6 +62,13 @@ class TeamFileController extends Controller
{ {
$this->authorize('store', TeamFile::class); $this->authorize('store', TeamFile::class);
if (config('demo.is_enabled'))
{
return redirect()
->back()
->with('error', 'This feature is disabled');
}
try { try {
$caption = $request->caption; $caption = $request->caption;
$description = $request->description; $description = $request->description;
@ -110,6 +117,13 @@ class TeamFileController extends Controller
{ {
$this->authorize('delete', $teamFile); $this->authorize('delete', $teamFile);
if (config('demo.is_enabled'))
{
return redirect()
->back()
->with('error', 'This feature is disabled');
}
try try
{ {
Storage::delete($teamFile->fs_location); Storage::delete($teamFile->fs_location);

View File

@ -32,6 +32,7 @@ use App\Http\Requests\SearchPlayerRequest;
use App\Http\Requests\UpdateUserRequest; use App\Http\Requests\UpdateUserRequest;
use App\Notifications\ChangedPassword; use App\Notifications\ChangedPassword;
use App\Notifications\EmailChanged; use App\Notifications\EmailChanged;
use App\Traits\DisablesFeatures;
use App\Traits\ReceivesAccountTokens; use App\Traits\ReceivesAccountTokens;
use App\User; use App\User;
use Google2FA; use Google2FA;
@ -168,6 +169,11 @@ class UserController extends Controller
public function changePassword(ChangePasswordRequest $request) public function changePassword(ChangePasswordRequest $request)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$user = User::find(Auth::user()->id); $user = User::find(Auth::user()->id);
if (! is_null($user)) { if (! is_null($user)) {
@ -191,6 +197,12 @@ class UserController extends Controller
public function changeEmail(ChangeEmailRequest $request) public function changeEmail(ChangeEmailRequest $request)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$user = User::find(Auth::user()->id); $user = User::find(Auth::user()->id);
if (! is_null($user)) { if (! is_null($user)) {
@ -214,6 +226,12 @@ class UserController extends Controller
public function delete(DeleteUserRequest $request, User $user) public function delete(DeleteUserRequest $request, User $user)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$this->authorize('delete', $user); $this->authorize('delete', $user);
if ($request->confirmPrompt == 'DELETE ACCOUNT') { if ($request->confirmPrompt == 'DELETE ACCOUNT') {
@ -228,6 +246,11 @@ class UserController extends Controller
public function update(UpdateUserRequest $request, User $user) public function update(UpdateUserRequest $request, User $user)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$this->authorize('adminEdit', $user); $this->authorize('adminEdit', $user);
// Mass update would not be possible here without extra code, making route model binding useless // Mass update would not be possible here without extra code, making route model binding useless
@ -262,6 +285,12 @@ class UserController extends Controller
public function add2FASecret(Add2FASecretRequest $request) public function add2FASecret(Add2FASecretRequest $request)
{ {
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
$currentSecret = $request->session()->get('current2FA'); $currentSecret = $request->session()->get('current2FA');
$isValid = Google2FA::verifyKey($currentSecret, $request->otp); $isValid = Google2FA::verifyKey($currentSecret, $request->otp);
@ -314,6 +343,11 @@ class UserController extends Controller
public function terminate(Request $request, User $user) public function terminate(Request $request, User $user)
{ {
$this->authorize('terminate', User::class); $this->authorize('terminate', User::class);
if (config('demo.is_enabled')) {
return redirect()
->back()
->with('error', 'This feature is disabled');
}
// TODO: move logic to policy // TODO: move logic to policy
if (! $user->isStaffMember() || $user->is(Auth::user())) { if (! $user->isStaffMember() || $user->is(Auth::user())) {

View File

@ -27,6 +27,7 @@ use App\Observers\UserObserver;
use App\User; use App\User;
use Illuminate\Pagination\Paginator; use Illuminate\Pagination\Paginator;
use Illuminate\Support\Facades\Schema; use Illuminate\Support\Facades\Schema;
use Illuminate\Support\Facades\View;
use Illuminate\Support\ServiceProvider; use Illuminate\Support\ServiceProvider;
use Sentry; use Sentry;
@ -67,5 +68,7 @@ class AppServiceProvider extends ServiceProvider
$https = true; $https = true;
$this->app['request']->server->set('HTTPS', $https); $this->app['request']->server->set('HTTPS', $https);
View::share('demoActive', config('demo.is_enabled'));
} }
} }

View File

@ -47,7 +47,7 @@ class ApplicationService
* @throws VacancyNotFoundException Thrown when the associated vacancy is not found * @throws VacancyNotFoundException Thrown when the associated vacancy is not found
* @throws IncompleteApplicationException Thrown when there are missing fields * @throws IncompleteApplicationException Thrown when there are missing fields
*/ */
public function fillForm(Authenticatable $applicant, array $formData, $vacancySlug): bool public function fillForm(User $applicant, array $formData, $vacancySlug): bool
{ {
$vacancy = Vacancy::with('forms')->where('vacancySlug', $vacancySlug)->get(); $vacancy = Vacancy::with('forms')->where('vacancySlug', $vacancySlug)->get();

View File

@ -56,12 +56,7 @@ class AppointmentService
*/ */
public function updateAppointment(Application $application, $status, $updateApplication = true) public function updateAppointment(Application $application, $status, $updateApplication = true)
{ {
$validStatuses = [ if ($status == 'SCHEDULED' || $status == 'concluded')
'SCHEDULED',
'CONCLUDED',
];
if ($status == 'SCHEDULED' || $status == 'CONCLUDED')
{ {
$application->appointment->appointmentStatus = strtoupper($status); $application->appointment->appointmentStatus = strtoupper($status);
$application->appointment->save(); $application->appointment->save();

View File

@ -0,0 +1,11 @@
<?php
namespace App\Services;
class DemoService {
public function isDemoEnabled(): bool {
return config('demo.is_enabled');
}
}

View File

@ -43,7 +43,7 @@ class SecuritySettingsService
} }
Options::changeOption('graceperiod', $options['graceperiod']); Options::changeOption('graceperiod', $options['graceperiod']);
Options::changeOption('password_expiry', $options['pwexpiry']); Options::changeOption('password_expiry', $options['pwExpiry']);
Options::changeOption('force2fa', $options['enforce2fa']); Options::changeOption('force2fa', $options['enforce2fa']);
Options::changeOption('requireGameLicense', $options['requirePMC']); Options::changeOption('requireGameLicense', $options['requirePMC']);

View File

@ -33,6 +33,13 @@ trait ReceivesAccountTokens
{ {
public function userDelete(UserDeleteRequest $request) public function userDelete(UserDeleteRequest $request)
{ {
if (config('demo.is_enabled'))
{
return redirect()
->back()
->with('error', 'This feature is disabled');
}
// a little verbose // a little verbose
$user = User::find(Auth::user()->id); $user = User::find(Auth::user()->id);
$tokens = $user->generateAccountTokens(); $tokens = $user->generateAccountTokens();
@ -49,6 +56,13 @@ trait ReceivesAccountTokens
public function processDeleteConfirmation(Request $request, $ID, $action, $token) public function processDeleteConfirmation(Request $request, $ID, $action, $token)
{ {
if (config('demo.is_enabled'))
{
return redirect()
->back()
->with('error', 'This feature is disabled');
}
// We can't rely on Laravel's route model injection, because it'll ignore soft-deleted models, // We can't rely on Laravel's route model injection, because it'll ignore soft-deleted models,
// so we have to use a special scope to find them ourselves. // so we have to use a special scope to find them ourselves.
$user = User::withTrashed()->findOrFail($ID); $user = User::withTrashed()->findOrFail($ID);

7
config/demo.php Normal file
View File

@ -0,0 +1,7 @@
<?php
return [
'is_enabled' => env('DEMO_MODE', false)
];

View File

@ -46,9 +46,10 @@ class UserSeeder extends Seeder
* The ghost account was inspired by Github's ghost account. * The ghost account was inspired by Github's ghost account.
*/ */
$ghostAccount = User::create([ $ghostAccount = User::create([
'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch 'uuid' => 'b741345057274a519144881927be0290', // Ghost
'name' => 'Ghost (deleted account)', 'name' => 'Ghost (deleted account)',
'email' => 'blackhole@spacejewel-hosting.com', 'email' => 'blackhole@example.com',
'email_verified_at' => now(),
'username' => 'ghost', 'username' => 'ghost',
'originalIP' => '0.0.0.0', 'originalIP' => '0.0.0.0',
'password' => 'locked' 'password' => 'locked'
@ -56,11 +57,12 @@ class UserSeeder extends Seeder
$admin = User::create([ $admin = User::create([
'uuid' => '6102256abd284dd7b68e4c96ef313734', 'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch
'name' => 'Admin', 'name' => 'Admin',
'email' => 'admin@example.com', 'email' => 'admin@example.com',
'email_verified_at' => now(),
'username' => 'admin', 'username' => 'admin',
'originalIP' => '217.1.189.34', 'originalIP' => '0.0.0.0',
'password' => Hash::make('password'), 'password' => Hash::make('password'),
])->assignRole([ // all privileges ])->assignRole([ // all privileges
@ -68,7 +70,33 @@ class UserSeeder extends Seeder
'reviewer', 'reviewer',
'admin', 'admin',
'hiringManager', 'hiringManager',
'developer' ]);
$staffmember = User::create([
'uuid' => '853c80ef3c3749fdaa49938b674adae6', // Jeb__
'name' => 'Staff Member',
'email' => 'staffmember@example.com',
'email_verified_at' => now(),
'username' => 'staffmember',
'originalIP' => '0.0.0.0',
'password' => Hash::make('password'),
])->assignRole([ // all privileges
'user',
'reviewer',
]);
$user = User::create([
'uuid' => 'f7c77d999f154a66a87dc4a51ef30d19', // hypixel
'name' => 'End User',
'email' => 'enduser@example.com',
'email_verified_at' => now(),
'username' => 'enduser',
'originalIP' => '0.0.0.0',
'password' => Hash::make('password'),
])->assignRole([ // all privileges
'user',
]); ]);
} }

View File

@ -16,6 +16,22 @@
<p class="login-card-description">{{__('messages.signin_cta')}}</p> <p class="login-card-description">{{__('messages.signin_cta')}}</p>
<form action="{{ route('login') }}" method="POST" id="loginForm"> <form action="{{ route('login') }}" method="POST" id="loginForm">
@csrf @csrf
@if ($demoActive)
<div class="alert alert-warning">
<p class="font-weight-bold"></i>{{__('Warning')}}</p>
<p>{{ __('Do not use real credentials; The application is in demo mode.') }}</p>
<p class="font-weight-bold">{{ __('Demo accounts:') }}</p>
<ul>
<li>admin@example.com</li>
<li>staffmember@example.com</li>
<li>enduser@example.com</li>
</ul>
<p>{{ __('The password is ":password" for all accounts.', ['password' => 'password']) }}</p>
</div>
@endif
<div class="form-group"> <div class="form-group">
<label for="email" class="sr-only">{{__('messages.contactlabel_email')}}</label> <label for="email" class="sr-only">{{__('messages.contactlabel_email')}}</label>
<input type="email" name="email" id="email" class="form-control" placeholder="Email address"> <input type="email" name="email" id="email" class="form-control" placeholder="Email address">

View File

@ -49,6 +49,15 @@
@endif @endif
@if($demoActive)
<div class="alert alert-warning">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i>{{ __('Warning') }}</p>
<p>{{ __('Do not use real credentials here. The application is in demo mode. Additionally, the database is wiped every six hours.') }}</p>
<p>{{ __('Also note: If a game license is required to sign up, you may find valid MC usernames at NameMC') }}</p>
</div>
@endif
<form action="{{ route('register') }}" method="POST" id="registerForm"> <form action="{{ route('register') }}" method="POST" id="registerForm">
@csrf @csrf
<div class="form-group"> <div class="form-group">

View File

@ -34,6 +34,12 @@
@endif @endif
@if(session()->has('exception'))
<script>
toastr.error("{{session('exception')}}")
</script>
@endif
@stop @stop
@section('content') @section('content')

View File

@ -9,11 +9,46 @@
@section('js') @section('js')
<script src="js/dashboard.js"></script> <script src="js/dashboard.js"></script>
<x-global-errors></x-global-errors>
@endsection @endsection
@section('content') @section('content')
@if ($demoActive)
<div class="alert alert-info">
<p class="font-weight-bold"><i class="fas fa-info-circle"></i> {{__('Reminder')}}</p>
<p>{{__('The application is in demo mode.')}}</p>
<p>{{ __('Demo mode disables some app features in order to preserve it\'s integrity for everyone who wants to test it. Here\'s what\'s disabled: ') }}</p>
<ul>
<li>{{ __('All user account operations such as: ') }}
<ul>
<li>{{ __('Password change') }}</li>
<li>{{ __('Two factor authentication') }}</li>
<li>{{ __('Email change') }}</li>
<li>{{ __('Account deletion') }}</li>
</ul>
</li>
<li>{{ __('Administrative actions such as:') }}
<ul>
<li>{{__('Account suspension')}}</li>
<li>{{ __('Termination') }}</li>
<li>{{ __('Account deletion') }}</li>
<li>{{ __('Privilege editing') }}</li>
</ul>
</li>
<li>{{ __('Team file uploads') }}</li>
<li>{{__('Developer mode')}}</li>
<li>{{ __('Admin logs') }}</li>
</ul>
<p>To keep everyone safe, IP addresses are censored everywhere in the app, and they're also not collected during registration. The IP address lookup feature is also disabled.</p>
<p>Only system administrators can disable demo mode - it cannot be disabled via app settings.</p>
<p class="font-weight-bold">Note! The database is wiped every six hours during demo mode.</p>
</div>
@endif
@if (!$vacancies->isEmpty()) @if (!$vacancies->isEmpty())
@foreach($vacancies as $vacancy) @foreach($vacancies as $vacancy)
@ -80,7 +115,7 @@
<!-- small box --> <!-- small box -->
<div class="small-box bg-info"> <div class="small-box bg-info">
<div class="inner"> <div class="inner">
<h3>{{ $openApplications ?? 0 }}</h3> <h3>{{ $totalNewSingle ?? 0 }}</h3>
<p>{{__('messages.ongoing_apps')}}</p> <p>{{__('messages.ongoing_apps')}}</p>
</div> </div>
@ -95,7 +130,7 @@
<!-- small box --> <!-- small box -->
<div class="small-box bg-danger"> <div class="small-box bg-danger">
<div class="inner"> <div class="inner">
<h3>{{ $deniedApplications ?? 0 }}</h3> <h3>{{ $totalDeniedSingle ?? 0 }}</h3>
<p>{{__('messages.denied_apps')}}</p> <p>{{__('messages.denied_apps')}}</p>
</div> </div>
@ -190,7 +225,7 @@
@endif @endif
@if ($isEligibleForApplication && !Auth::user()->isStaffMember()) @if (!$vacancies->isEmpty() && $isEligibleForApplication && !Auth::user()->isStaffMember())
<div class="row mt-5 mb-5"> <div class="row mt-5 mb-5">
<div class="col text-center"> <div class="col text-center">

View File

@ -13,6 +13,7 @@
@section('content') @section('content')
@if(!$demoActive)
<x-modal id="upload-dropzone" modal-label="upload-dropzone-modal" modal-title="Upload Files" include-close-button="true"> <x-modal id="upload-dropzone" modal-label="upload-dropzone-modal" modal-title="Upload Files" include-close-button="true">
<form action="{{route('uploadTeamFile')}}" enctype="multipart/form-data" method="POST" id="newFile"> <form action="{{route('uploadTeamFile')}}" enctype="multipart/form-data" method="POST" id="newFile">
@ -41,15 +42,27 @@
<button onclick="$('#newFile').submit()" type="button" class="btn btn-warning" rel="buttonTxtTooltip" title="Upload chosen file" data-placement="top"><i class="fas fa-upload"></i></button> <button onclick="$('#newFile').submit()" type="button" class="btn btn-warning" rel="buttonTxtTooltip" title="Upload chosen file" data-placement="top"><i class="fas fa-upload"></i></button>
</x-slot> </x-slot>
</x-modal> </x-modal>
@endif
<div class="row"> <div class="row">
<div class="col-3 offset-3"> <div class="col-3 offset-4">
<img src="/img/files.svg" width="230px" height="230px" alt="Team files illustration"> <img src="/img/files.svg" width="230px" height="230px" alt="Team files illustration">
</div> </div>
</div> </div>
@if($demoActive)
<div class="row">
<div class="col">
<div class="alert alert-warning">
<p class="text-bold"><i class="fa fa-info-circle"></i> Warning</p>
<p>Since many users may use the app at any given time, file uploads are disabled whilst demo mode is on.</p>
</div>
</div>
</div>
@endif
<div class="row"> <div class="row">
<div class="col"> <div class="col">
@ -119,7 +132,7 @@
</div> </div>
<div class="card-footer text-center"> <div class="card-footer text-center">
<button type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button> <button {{ ($demoActive) ? 'disabled' : '' }} type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button>
<button type="button" class="btn btn-success ml-3" onclick="window.location.href='{{route('teams.index')}}'"><i class="fas fa-arrow-circle-left"></i> Back</button> <button type="button" class="btn btn-success ml-3" onclick="window.location.href='{{route('teams.index')}}'"><i class="fas fa-arrow-circle-left"></i> Back</button>
{{ $files->links() }} {{ $files->links() }}
</div> </div>

View File

@ -43,6 +43,12 @@
<form id="banAccountForm" name="banAccount" method="POST" action="{{route('banUser', ['user' => $profile->user->id])}}"> <form id="banAccountForm" name="banAccount" method="POST" action="{{route('banUser', ['user' => $profile->user->id])}}">
@csrf @csrf
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<div class="row"> <div class="row">
<div class="col"> <div class="col">
@ -69,7 +75,7 @@
</form> </form>
<x-slot name="modalFooter"> <x-slot name="modalFooter">
<button id="banAccountButton" type="button" class="btn btn-danger"><i class="fa fa-gavel"></i> {{__('Confirm')}}</button> <button id="banAccountButton" type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} ><i class="fa fa-gavel"></i> {{__('Confirm')}}</button>
</x-slot> </x-slot>
</x-modal> </x-modal>
@ -77,6 +83,12 @@
@if (!Auth::user()->is($profile->user) && $profile->user->isStaffMember()) @if (!Auth::user()->is($profile->user) && $profile->user->isStaffMember())
<x-modal id="terminateUser" modal-label="terminateUser" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true"> <x-modal id="terminateUser" modal-label="terminateUser" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<p><i class="fa fa-exclamation-triangle"></i> <b>{{__('messages.profile.terminate_notice')}}</b></p> <p><i class="fa fa-exclamation-triangle"></i> <b>{{__('messages.profile.terminate_notice')}}</b></p>
<p> <p>
{{__('messages.profile.terminate_notice_warning')}} {{__('messages.profile.terminate_notice_warning')}}
@ -91,7 +103,7 @@
<form method="POST" action="{{route('terminateStaffMember', ['user' => $profile->user->id])}}" id="terminateUserForm"> <form method="POST" action="{{route('terminateStaffMember', ['user' => $profile->user->id])}}" id="terminateUserForm">
@csrf @csrf
@method('PATCH') @method('PATCH')
<button type="submit" class="btn btn-warning"><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button> <button type="submit" class="btn btn-warning" {{ ($demoActive) ? 'disabled' : '' }}><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button>
</form> </form>
@ -102,6 +114,12 @@
<x-modal id="deleteAccount" modal-label="deleteAccount" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true"> <x-modal id="deleteAccount" modal-label="deleteAccount" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<p><i class="fa fa-exclamation-triangle"></i><b> {{__('messages.profile.delete_acc_warn')}}</b></p> <p><i class="fa fa-exclamation-triangle"></i><b> {{__('messages.profile.delete_acc_warn')}}</b></p>
<p>{{__('messages.profile.delete_acc_consequence')}}</p> <p>{{__('messages.profile.delete_acc_consequence')}}</p>
@ -118,12 +136,12 @@
<x-slot name="modalFooter"> <x-slot name="modalFooter">
<button type="button" class="btn btn-danger" onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button> <button type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button>
</x-slot> </x-slot>
</x-modal> </x-modal>
<x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('messages.reusable.ip_info')}} {{$ipInfo->ip ?? 'Unknown'}}" include-close-button="true"> <x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('IP Address Information')}}" include-close-button="true">
<h4 class="text-center">{{__('messages.profile.search_result')}}</h3> <h4 class="text-center">{{__('messages.profile.search_result')}}</h3>
@ -209,18 +227,24 @@
<x-modal id="editUser" modal-label="editUser" modal-title="{{__('messages.profile.edituser')}}" include-close-button="true"> <x-modal id="editUser" modal-label="editUser" modal-title="{{__('messages.profile.edituser')}}" include-close-button="true">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<form id="updateUserForm" method="post" action="{{ route('updateUser', ['user' => $profile->user->id]) }}"> <form id="updateUserForm" method="post" action="{{ route('updateUser', ['user' => $profile->user->id]) }}">
@csrf @csrf
@method('PATCH') @method('PATCH')
<label for="email">{{__('messages.contactlabel_email')}}</label> <label for="email">{{__('messages.contactlabel_email')}}</label>
<input id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" /> <input {{ ($demoActive) ? 'disabled' : '' }} id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" />
<label for="name">{{__('messages.contactlabel_name')}}</label> <label for="name">{{__('messages.contactlabel_name')}}</label>
<input id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" /> <input {{ ($demoActive) ? 'disabled' : '' }} id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" />
<label for="uuid">Mojang UUID</label> <label for="uuid">Mojang UUID</label>
<input id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" /> <input {{ ($demoActive) ? 'disabled' : '' }} id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" />
<p class="text-muted text-sm"> <p class="text-muted text-sm">
<i class="fas fa-exclamation-triangle"></i> {{__('messages.profile.edituser_consequence')}} <i class="fas fa-exclamation-triangle"></i> {{__('messages.profile.edituser_consequence')}}
</p> </p>
@ -233,7 +257,7 @@
@foreach($roles as $roleName => $status) @foreach($roles as $roleName => $status)
<tr> <tr>
<th><input type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th> <th><input {{ ($demoActive) ? 'disabled' : '' }} type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th>
<td class="col-md-2">{{ ucfirst($roleName) }}</td> <td class="col-md-2">{{ ucfirst($roleName) }}</td>
</tr> </tr>
@ -250,7 +274,7 @@
<x-slot name="modalFooter"> <x-slot name="modalFooter">
<button type="button" class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button> <button type="button" {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button>
</x-slot> </x-slot>
@ -293,7 +317,7 @@
<p class="text-muted">{{$profile->profileShortBio}}</p> <p class="text-muted">{{$profile->profileShortBio}}</p>
<p class="text-muted">{{__('messages.reusable.member_since', ['date' => $since])}}</p> <p class="text-muted">{{__('messages.reusable.member_since', ['date' => $since])}}</p>
@if (Auth::user()->hasRole('admin')) @if (Auth::user()->hasRole('admin'))
<button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => $profile->user->originalIP])}}</button> <button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => (!$demoActive) ? $profile->user->originalIP : '0.0.0.0'])}}</button>
@endif @endif
@if ($profile->user->is(Auth::user())) @if ($profile->user->is(Auth::user()))

View File

@ -22,6 +22,14 @@
<x-modal id="deleteAccountModal" modal-label="deleteAccountModalLabel" modal-title="Close account" include-close-button="true"> <x-modal id="deleteAccountModal" modal-label="deleteAccountModalLabel" modal-title="Close account" include-close-button="true">
@if ($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<p>Deleting your account is an irreversible process. The following data will be deleted (including personally identifiable data):</p> <p>Deleting your account is an irreversible process. The following data will be deleted (including personally identifiable data):</p>
<ul> <ul>
<li>Last IP address</li> <li>Last IP address</li>
@ -66,7 +74,7 @@
<x-slot name="modalFooter"> <x-slot name="modalFooter">
<button onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button> <button {{ ($demoActive) ? 'disabled' : '' }} onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button>
</x-slot> </x-slot>
@ -78,6 +86,12 @@
<x-modal id="twoFactorAuthModal" modal-label="2faLabel" modal-title="{{__('messages.2fa_txt')}}" include-close-button="true"> <x-modal id="twoFactorAuthModal" modal-label="2faLabel" modal-title="{{__('messages.2fa_txt')}}" include-close-button="true">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<h3><i class="fas fa-user-shield"></i> {{__('messages.profile.2fa_welcome')}}</h3> <h3><i class="fas fa-user-shield"></i> {{__('messages.profile.2fa_welcome')}}</h3>
<p><b>{{__('messages.profile.supported_apps')}}</b></p> <p><b>{{__('messages.profile.supported_apps')}}</b></p>
@ -118,7 +132,7 @@
<x-slot name="modalFooter"> <x-slot name="modalFooter">
<button type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button> <button {{ ($demoActive) ? 'disabled' : '' }} type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button>
</x-slot> </x-slot>
@ -248,6 +262,12 @@
<div class="tab-content" id="myTabContent"> <div class="tab-content" id="myTabContent">
<div class="tab-pane fade show active p-3" id="accountSecurity" role="tabpanel" aria-labelledby="accountSecurityTab"> <div class="tab-pane fade show active p-3" id="accountSecurity" role="tabpanel" aria-labelledby="accountSecurityTab">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<h5 class="card-title">{{__('messages.profile.change_password')}}</h5> <h5 class="card-title">{{__('messages.profile.change_password')}}</h5>
<p class="card-text">{{__('messages.profile.change_password_exp')}}</p> <p class="card-text">{{__('messages.profile.change_password_exp')}}</p>
@ -271,7 +291,7 @@
</form> </form>
<button class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button> <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button>
</div> </div>
<div class="tab-pane fade p-3" id="twofa" role="tabpanel" aria-labelledby="twofaTab"> <div class="tab-pane fade p-3" id="twofa" role="tabpanel" aria-labelledby="twofaTab">
<h5 class="card-title">{{__('messages.profile.2fa')}}</h5> <h5 class="card-title">{{__('messages.profile.2fa')}}</h5>
@ -289,10 +309,15 @@
<div class="tab-pane fade p-3" id="sessions" role="tabpanel" aria-labelledby="sessionsTab"> <div class="tab-pane fade p-3" id="sessions" role="tabpanel" aria-labelledby="sessionsTab">
<h5 class="card-title">{{__('messages.profile.session_manager')}}</h5> <h5 class="card-title">{{__('messages.profile.session_manager')}}</h5>
<p class="card-text">{{__('messages.profile.terminate_others')}}</p> <p class="card-text">{{__('messages.profile.terminate_others')}}</p>
<p>{{__('messages.profile.current_session', ['ipAddress' => $ip])}}</p> <p>{{__('messages.profile.current_session', ['ipAddress' => ($demoActive) ? '0.0.0.0 (censored)' : $ip])}}</p>
<button type="button" class="btn btn-warning" onclick="$('#authenticationForm').modal('show')">{{__('messages.profile.flush_session')}}</button> <button type="button" class="btn btn-warning" onclick="$('#authenticationForm').modal('show')">{{__('messages.profile.flush_session')}}</button>
</div> </div>
<div class="tab-pane fade p-3" id="contactSettings" role="tabpanel" aria-labelledby="contactSettingsTab"> <div class="tab-pane fade p-3" id="contactSettings" role="tabpanel" aria-labelledby="contactSettingsTab">
@if($demoActive)
<div class="alert alert-danger">
<p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
</div>
@endif
<h5 class="card-title">{{__('messages.profile.contact_settings')}}</h5> <h5 class="card-title">{{__('messages.profile.contact_settings')}}</h5>
<p class="card-text">{{__('messages.profile.personal_data_change')}}</p> <p class="card-text">{{__('messages.profile.personal_data_change')}}</p>
@ -320,7 +345,7 @@
</div> </div>
</form> </form>
<button class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button> <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button>
</div> </div>

View File

@ -132,7 +132,7 @@
<p><b>{{__('messages.application_m.applicant_name')}} </b> <span class="badge badge-primary">{{$application->user->name}}</span></p> <p><b>{{__('messages.application_m.applicant_name')}} </b> <span class="badge badge-primary">{{$application->user->name}}</span></p>
@if (Auth::user()->hasRole('hiringManager')) @if (Auth::user()->hasRole('hiringManager'))
<p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{$application->user->originalIP}}</span></p> <p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{ ($demoActive) ? '0.0.0.0 (censored)' : $application->user->originalIP }}</span></p>
@endif @endif
<p><b>{{__('messages.application_m.application_date')}}</b> <span class="badge badge-primary">{{$application->created_at}}</span></p> <p><b>{{__('messages.application_m.application_date')}}</b> <span class="badge badge-primary">{{$application->created_at}}</span></p>
<p><b>{{__('messages.last_updated')}}</b><span class="badge badge-primary">{{$application->updated_at}}</span></p> <p><b>{{__('messages.last_updated')}}</b><span class="badge badge-primary">{{$application->updated_at}}</span></p>

View File

@ -41,6 +41,19 @@
<div class="container-fluid"> <div class="container-fluid">
@if ($demoActive)
<div class="row">
<div class="col">
<div class="alert alert-warning">
<p class="font-weight-bold"><i class="fas fa-exclamation-circle"></i> Attention</p>
<p>Demo mode is active on this instance. The database is refreshed daily and some features are disabled for security reasons.</p>
<p>If you're seeing this message in error, please contact your system administrator.</p>
</div>
</div>
</div>
@endif
<div class="row"> <div class="row">
<div class="col text-center"> <div class="col text-center">

View File

@ -53,7 +53,9 @@ use Mcamara\LaravelLocalization\Facades\LaravelLocalization;
*/ */
Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['localeSessionRedirect', 'localizationRedirect', 'localeViewPath']], function () { Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['localeSessionRedirect', 'localizationRedirect', 'localeViewPath']], function () {
Route::group(['prefix' => 'auth', 'middleware' => ['usernameUUID']], function () { Route::group(['prefix' => 'auth', 'middleware' => ['usernameUUID']], function () {
Auth::routes(['verify' => true]); Auth::routes([
'verify' => true
]);
Route::post('/twofa/authenticate', [TwofaController::class, 'verify2FA']) Route::post('/twofa/authenticate', [TwofaController::class, 'verify2FA'])
->name('verify2FA'); ->name('verify2FA');