.env.example

@@ -11,6 +11,10 @@ APP_SITEHOMEPAGE=""
 # Void if env is production.
 NONPROD_FORCE_SECURE=false
 
+# Disables certain features for security purposes while running an open authentication system
+# Enable only for demonostration purposes
+DEMO_MODE=false
+
 LOG_CHANNEL=daily
 
 DB_CONNECTION=mysql

app/ApiKey.php

@@ -20,6 +20,6 @@ class ApiKey extends Model
 
     public function user()
     {
-        return $this->belongsTo('App\User', 'id');
+        return $this->belongsTo('App\User', 'owner_user_id', 'id');
     }
 }

app/CustomFacades/IP.php

@@ -38,8 +38,8 @@ class IP
             'ip' => $IP,
         ];
 
-        // TODO: Maybe unwrap this?  Methods are chained here
 
+        if (!config('demo.is_enabled')) {
             return json_decode(Cache::remember($IP, 3600, function () use ($IP) {
                 return Http::get(config('general.urls.ipapi.ipcheck'), [
                     'apiKey' => config('general.keys.ipapi.apikey'),
@@ -47,4 +47,9 @@ class IP
                 ])->body();
             }));
         }
+
+        return new class {
+            public $message = "This feature is disabled.";
+        };
+    }
 }

app/Http/Controllers/ApplicationController.php

@@ -22,6 +22,7 @@
 namespace App\Http\Controllers;
 
 use App\Application;
+use App\Exceptions\ApplicationNotFoundException;
 use App\Exceptions\IncompleteApplicationException;
 use App\Exceptions\UnavailableApplicationException;
 use App\Exceptions\VacancyNotFoundException;
@@ -74,15 +75,23 @@ class ApplicationController extends Controller
     {
         $this->authorize('viewAny', Application::class);
 
-        return view('dashboard.appmanagement.all');
+        return view('dashboard.appmanagement.all')
+            ->with('applications', Application::all());
 
     }
 
 
     public function renderApplicationForm($vacancySlug)
     {
+        try {
             return $this->applicationService->renderForm($vacancySlug);
         }
+        catch (ApplicationNotFoundException $ex) {
+            return redirect()
+                ->back()
+                ->with('error', $ex->getMessage());
+        }
+    }
 
     public function saveApplicationAnswers(Request $request, $vacancySlug)
     {
@@ -98,7 +107,7 @@ class ApplicationController extends Controller
         }
 
         return redirect()
-            ->back()
+            ->to(route('showUserApps'))
             ->with('success', __('Thank you! Your application has been processed and our team will get to it shortly.'));
     }
 

app/Http/Controllers/Auth/RegisterController.php

@@ -124,11 +124,11 @@ class RegisterController extends Controller
             'name' => $data['name'],
             'email' => $data['email'],
             'password' => Hash::make($data['password']),
-            'originalIP' => request()->ip(),
+            'originalIP' => config('demo.is_enabled') ? '0.0.0.0' : request()->ip(),
         ]);
 
         // It's not the registration controller's concern to create a profile for the user,
-        // so this code has been moved to it's respective observer, following the separation of concerns pattern.
+        // so this code has been moved to its respective observer, following the separation of concerns pattern.
 
         $user->assignRole('user');
 

app/Http/Controllers/BanController.php

@@ -42,6 +42,12 @@ class BanController extends Controller
 
     public function insert(BanUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('create', [Ban::class, $user]);
 
 
@@ -60,6 +66,12 @@ class BanController extends Controller
 
     public function delete(Request $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('delete', $user->bans);
 
         if ($this->suspensionService->isSuspended($user)) {

app/Http/Controllers/DashboardController.php

@@ -24,6 +24,7 @@ namespace App\Http\Controllers;
 use App\Application;
 use App\User;
 use App\Vacancy;
+use Illuminate\Support\Facades\Auth;
 
 class DashboardController extends Controller
 {
@@ -34,14 +35,27 @@ class DashboardController extends Controller
         $totalPeerReview = Application::where('applicationStatus', 'STAGE_PEERAPPROVAL')->get()->count();
         $totalNewApplications = Application::where('applicationStatus', 'STAGE_SUBMITTED')->get()->count();
         $totalDenied = Application::where('applicationStatus', 'DENIED')->get()->count();
+        $vacancies = Vacancy::where('vacancyStatus', '<>', 'CLOSED')->get();
+
+        $totalDeniedSingle = Application::where([
+            ['applicationStatus', '=', 'DENIED'],
+            ['applicantUserID', '=', Auth::user()->id]
+        ])->get();
+
+        $totalNewSingle = Application::where([
+            ['applicationStatus', '=', 'STAGE_SUBMITTED'],
+            ['applicantUserID', '=', Auth::user()->id]
+        ])->get();
 
         return view('dashboard.dashboard')
             ->with([
-                'vacancies' => Vacancy::all(),
+                'vacancies' => $vacancies,
                 'totalUserCount' => User::all()->count(),
                 'totalDenied' => $totalDenied,
                 'totalPeerReview' => $totalPeerReview,
                 'totalNewApplications' => $totalNewApplications,
+                'totalNewSingle' => $totalNewSingle->count(),
+                'totalDeniedSingle' => $totalDeniedSingle->count()
             ]);
     }
 }

app/Http/Controllers/FormController.php

@@ -21,6 +21,7 @@
 
 namespace App\Http\Controllers;
 
+use App\Exceptions\EmptyFormException;
 use App\Exceptions\FormHasConstraintsException;
 use App\Form;
 use App\Services\FormManagementService;
@@ -53,7 +54,15 @@ class FormController extends Controller
 
     public function saveForm(Request $request)
     {
+        try {
             $form = $this->formService->addForm($request->all());
+        }
+        catch (EmptyFormException $ex)
+        {
+            return redirect()
+                ->back()
+                ->with('exception', $ex->getMessage());
+        }
 
         // Form is boolean or array
         if ($form)

app/Http/Controllers/TeamFileController.php

@@ -62,6 +62,13 @@ class TeamFileController extends Controller
     {
         $this->authorize('store', TeamFile::class);
 
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         try {
             $caption = $request->caption;
             $description = $request->description;
@@ -110,6 +117,13 @@ class TeamFileController extends Controller
     {
         $this->authorize('delete', $teamFile);
 
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         try
         {
             Storage::delete($teamFile->fs_location);

app/Http/Controllers/UserController.php

@@ -32,6 +32,7 @@ use App\Http\Requests\SearchPlayerRequest;
 use App\Http\Requests\UpdateUserRequest;
 use App\Notifications\ChangedPassword;
 use App\Notifications\EmailChanged;
+use App\Traits\DisablesFeatures;
 use App\Traits\ReceivesAccountTokens;
 use App\User;
 use Google2FA;
@@ -168,6 +169,11 @@ class UserController extends Controller
 
     public function changePassword(ChangePasswordRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
         $user = User::find(Auth::user()->id);
 
         if (! is_null($user)) {
@@ -191,6 +197,12 @@ class UserController extends Controller
 
     public function changeEmail(ChangeEmailRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $user = User::find(Auth::user()->id);
 
         if (! is_null($user)) {
@@ -214,6 +226,12 @@ class UserController extends Controller
 
     public function delete(DeleteUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $this->authorize('delete', $user);
 
         if ($request->confirmPrompt == 'DELETE ACCOUNT') {
@@ -228,6 +246,11 @@ class UserController extends Controller
 
     public function update(UpdateUserRequest $request, User $user)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
         $this->authorize('adminEdit', $user);
 
         // Mass update would not be possible here without extra code, making route model binding useless
@@ -262,6 +285,12 @@ class UserController extends Controller
 
     public function add2FASecret(Add2FASecretRequest $request)
     {
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         $currentSecret = $request->session()->get('current2FA');
         $isValid = Google2FA::verifyKey($currentSecret, $request->otp);
 
@@ -314,6 +343,11 @@ class UserController extends Controller
     public function terminate(Request $request, User $user)
     {
         $this->authorize('terminate', User::class);
+        if (config('demo.is_enabled')) {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
 
         // TODO: move logic to policy
         if (! $user->isStaffMember() || $user->is(Auth::user())) {

app/Providers/AppServiceProvider.php

@@ -27,6 +27,7 @@ use App\Observers\UserObserver;
 use App\User;
 use Illuminate\Pagination\Paginator;
 use Illuminate\Support\Facades\Schema;
+use Illuminate\Support\Facades\View;
 use Illuminate\Support\ServiceProvider;
 use Sentry;
 
@@ -67,5 +68,7 @@ class AppServiceProvider extends ServiceProvider
             $https = true;
 
         $this->app['request']->server->set('HTTPS', $https);
+
+        View::share('demoActive', config('demo.is_enabled'));
     }
 }

app/Services/ApplicationService.php

@@ -47,7 +47,7 @@ class ApplicationService
      * @throws VacancyNotFoundException Thrown when the associated vacancy is not found
      * @throws IncompleteApplicationException Thrown when there are missing fields
      */
-    public function fillForm(Authenticatable $applicant, array $formData, $vacancySlug): bool
+    public function fillForm(User $applicant, array $formData, $vacancySlug): bool
     {
         $vacancy = Vacancy::with('forms')->where('vacancySlug', $vacancySlug)->get();
 

app/Services/AppointmentService.php

@@ -56,12 +56,7 @@ class AppointmentService
      */
     public function updateAppointment(Application $application, $status, $updateApplication = true)
     {
-        $validStatuses = [
+        if ($status == 'SCHEDULED' || $status == 'concluded')
-            'SCHEDULED',
-            'CONCLUDED',
-        ];
-
-        if ($status == 'SCHEDULED' || $status == 'CONCLUDED')
         {
             $application->appointment->appointmentStatus = strtoupper($status);
             $application->appointment->save();

app/Services/DemoService.php

@@ -0,0 +1,11 @@
+<?php
+namespace App\Services;
+
+class DemoService {
+
+    public function isDemoEnabled(): bool {
+
+        return config('demo.is_enabled');
+
+    }
+}

app/Services/SecuritySettingsService.php

@@ -43,7 +43,7 @@ class SecuritySettingsService
         }
 
         Options::changeOption('graceperiod', $options['graceperiod']);
-        Options::changeOption('password_expiry', $options['pwexpiry']);
+        Options::changeOption('password_expiry', $options['pwExpiry']);
         Options::changeOption('force2fa', $options['enforce2fa']);
         Options::changeOption('requireGameLicense', $options['requirePMC']);
 

app/Traits/ReceivesAccountTokens.php

@@ -33,6 +33,13 @@ trait ReceivesAccountTokens
 {
     public function userDelete(UserDeleteRequest $request)
     {
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         // a little verbose
         $user = User::find(Auth::user()->id);
         $tokens = $user->generateAccountTokens();
@@ -49,6 +56,13 @@ trait ReceivesAccountTokens
 
     public function processDeleteConfirmation(Request $request, $ID, $action, $token)
     {
+        if (config('demo.is_enabled'))
+        {
+            return redirect()
+                ->back()
+                ->with('error', 'This feature is disabled');
+        }
+
         // We can't rely on Laravel's route model injection, because it'll ignore soft-deleted models,
         // so we have to use a special scope to find them ourselves.
         $user = User::withTrashed()->findOrFail($ID);

config/demo.php

@@ -0,0 +1,7 @@
+<?php
+
+return [
+
+    'is_enabled' => env('DEMO_MODE', false)
+
+];

database/seeders/UserSeeder.php

@@ -46,9 +46,10 @@ class UserSeeder extends Seeder
          *  The ghost account was inspired by Github's ghost account.
          */
         $ghostAccount = User::create([
-            'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch
+            'uuid' => 'b741345057274a519144881927be0290', // Ghost
             'name' => 'Ghost (deleted account)',
-            'email' => 'blackhole@spacejewel-hosting.com',
+            'email' => 'blackhole@example.com',
+            'email_verified_at' => now(),
             'username' => 'ghost',
             'originalIP' => '0.0.0.0',
             'password' => 'locked'
@@ -56,11 +57,12 @@ class UserSeeder extends Seeder
 
 
         $admin = User::create([
-            'uuid' => '6102256abd284dd7b68e4c96ef313734',
+            'uuid' => '069a79f444e94726a5befca90e38aaf5', // Notch
             'name' => 'Admin',
             'email' => 'admin@example.com',
+            'email_verified_at' => now(),
             'username' => 'admin',
-            'originalIP' => '217.1.189.34',
+            'originalIP' => '0.0.0.0',
             'password' => Hash::make('password'),
 
         ])->assignRole([ // all privileges
@@ -68,7 +70,33 @@ class UserSeeder extends Seeder
             'reviewer',
             'admin',
             'hiringManager',
-            'developer'
+        ]);
+
+        $staffmember = User::create([
+            'uuid' => '853c80ef3c3749fdaa49938b674adae6', // Jeb__
+            'name' => 'Staff Member',
+            'email' => 'staffmember@example.com',
+            'email_verified_at' => now(),
+            'username' => 'staffmember',
+            'originalIP' => '0.0.0.0',
+            'password' => Hash::make('password'),
+
+        ])->assignRole([ // all privileges
+            'user',
+            'reviewer',
+        ]);
+
+        $user = User::create([
+            'uuid' => 'f7c77d999f154a66a87dc4a51ef30d19', // hypixel
+            'name' => 'End User',
+            'email' => 'enduser@example.com',
+            'email_verified_at' => now(),
+            'username' => 'enduser',
+            'originalIP' => '0.0.0.0',
+            'password' => Hash::make('password'),
+
+        ])->assignRole([ // all privileges
+            'user',
         ]);
 
     }

resources/views/auth/login.blade.php

@@ -16,6 +16,22 @@
               <p class="login-card-description">{{__('messages.signin_cta')}}</p>
               <form action="{{ route('login') }}" method="POST" id="loginForm">
                   @csrf
+                  @if ($demoActive)
+                      <div class="alert alert-warning">
+                          <p class="font-weight-bold"></i>{{__('Warning')}}</p>
+                          <p>{{ __('Do not use real credentials; The application is in demo mode.') }}</p>
+
+                          <p class="font-weight-bold">{{ __('Demo accounts:') }}</p>
+                          <ul>
+                              <li>admin@example.com</li>
+                              <li>staffmember@example.com</li>
+                              <li>enduser@example.com</li>
+                          </ul>
+                          <p>{{ __('The password is ":password" for all accounts.', ['password' => 'password']) }}</p>
+
+                      </div>
+                  @endif
+
                   <div class="form-group">
                     <label for="email" class="sr-only">{{__('messages.contactlabel_email')}}</label>
                     <input type="email" name="email" id="email" class="form-control" placeholder="Email address">

resources/views/auth/register.blade.php

@@ -49,6 +49,15 @@
 
               @endif
 
+                @if($demoActive)
+                    <div class="alert alert-warning">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i>{{ __('Warning') }}</p>
+                        <p>{{ __('Do not use real credentials here. The application is in demo mode. Additionally, the database is wiped every six hours.') }}</p>
+
+                        <p>{{ __('Also note: If a game license is required to sign up, you may find valid MC usernames at NameMC') }}</p>
+                    </div>
+                @endif
+
               <form action="{{ route('register') }}" method="POST" id="registerForm">
                   @csrf
                   <div class="form-group">

resources/views/dashboard/administration/formbuilder.blade.php

@@ -34,6 +34,12 @@
 
     @endif
 
+    @if(session()->has('exception'))
+        <script>
+            toastr.error("{{session('exception')}}")
+        </script>
+    @endif
+
 @stop
 
 @section('content')

resources/views/dashboard/dashboard.blade.php

@@ -9,11 +9,46 @@
 @section('js')
 
   <script src="js/dashboard.js"></script>
+  <x-global-errors></x-global-errors>
 
 @endsection
 
 @section('content')
 
+    @if ($demoActive)
+
+        <div class="alert alert-info">
+            <p class="font-weight-bold"><i class="fas fa-info-circle"></i> {{__('Reminder')}}</p>
+            <p>{{__('The application is in demo mode.')}}</p>
+            <p>{{ __('Demo mode disables some app features in order to preserve it\'s integrity for everyone who wants to test it. Here\'s what\'s disabled: ') }}</p>
+            <ul>
+                <li>{{ __('All user account operations such as: ') }}
+                    <ul>
+                        <li>{{ __('Password change') }}</li>
+                        <li>{{ __('Two factor authentication') }}</li>
+                        <li>{{ __('Email change') }}</li>
+                        <li>{{ __('Account deletion') }}</li>
+                    </ul>
+                </li>
+                <li>{{ __('Administrative actions such as:') }}
+                    <ul>
+                        <li>{{__('Account suspension')}}</li>
+                        <li>{{ __('Termination') }}</li>
+                        <li>{{ __('Account deletion') }}</li>
+                        <li>{{ __('Privilege editing') }}</li>
+                    </ul>
+                </li>
+                <li>{{ __('Team file uploads') }}</li>
+                <li>{{__('Developer mode')}}</li>
+                <li>{{ __('Admin logs') }}</li>
+            </ul>
+            <p>To keep everyone safe, IP addresses are censored everywhere in the app, and they're also not collected during registration. The IP address lookup feature is also disabled.</p>
+            <p>Only system administrators can disable demo mode - it cannot be disabled via app settings.</p>
+            <p class="font-weight-bold">Note! The database is wiped every six hours during demo mode.</p>
+        </div>
+
+    @endif
+
     @if (!$vacancies->isEmpty())
 
       @foreach($vacancies as $vacancy)
@@ -80,7 +115,7 @@
               <!-- small box -->
               <div class="small-box bg-info">
                 <div class="inner">
-                  <h3>{{ $openApplications ?? 0 }}</h3>
+                  <h3>{{ $totalNewSingle ?? 0 }}</h3>
 
                   <p>{{__('messages.ongoing_apps')}}</p>
                 </div>
@@ -95,7 +130,7 @@
               <!-- small box -->
               <div class="small-box bg-danger">
                 <div class="inner">
-                  <h3>{{ $deniedApplications ?? 0 }}</h3>
+                  <h3>{{ $totalDeniedSingle ?? 0 }}</h3>
 
                   <p>{{__('messages.denied_apps')}}</p>
                 </div>
@@ -190,7 +225,7 @@
     @endif
 
 
-      @if ($isEligibleForApplication && !Auth::user()->isStaffMember())
+      @if (!$vacancies->isEmpty() && $isEligibleForApplication && !Auth::user()->isStaffMember())
         <div class="row mt-5 mb-5">
 
             <div class="col text-center">

resources/views/dashboard/teams/team-files.blade.php

@@ -13,6 +13,7 @@
 
 @section('content')
 
+    @if(!$demoActive)
         <x-modal id="upload-dropzone" modal-label="upload-dropzone-modal" modal-title="Upload Files" include-close-button="true">
 
             <form action="{{route('uploadTeamFile')}}" enctype="multipart/form-data" method="POST" id="newFile">
@@ -41,15 +42,27 @@
                 <button onclick="$('#newFile').submit()" type="button" class="btn btn-warning" rel="buttonTxtTooltip" title="Upload chosen file" data-placement="top"><i class="fas fa-upload"></i></button>
             </x-slot>
         </x-modal>
+    @endif
 
     <div class="row">
 
-        <div class="col-3 offset-3">
+        <div class="col-3 offset-4">
             <img src="/img/files.svg" width="230px" height="230px" alt="Team files illustration">
         </div>
 
     </div>
 
+    @if($demoActive)
+        <div class="row">
+            <div class="col">
+                <div class="alert alert-warning">
+                    <p class="text-bold"><i class="fa fa-info-circle"></i> Warning</p>
+                    <p>Since many users may use the app at any given time, file uploads are disabled whilst demo mode is on.</p>
+                </div>
+            </div>
+        </div>
+    @endif
+
     <div class="row">
 
         <div class="col">
@@ -119,7 +132,7 @@
                 </div>
 
                 <div class="card-footer text-center">
-                    <button type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button>
+                    <button {{ ($demoActive) ? 'disabled' : ''  }} type="button" class="btn btn-warning ml-3" onclick="$('#upload-dropzone').modal('show')"><i class="fas fa-upload"></i> Upload Files</button>
                     <button type="button" class="btn btn-success ml-3" onclick="window.location.href='{{route('teams.index')}}'"><i class="fas fa-arrow-circle-left"></i> Back</button>
                     {{ $files->links() }}
                 </div>

resources/views/dashboard/user/profile/displayprofile.blade.php

@@ -43,6 +43,12 @@
             <form id="banAccountForm" name="banAccount" method="POST" action="{{route('banUser', ['user' => $profile->user->id])}}">
                @csrf
 
+                @if($demoActive)
+                    <div class="alert alert-danger">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                    </div>
+                @endif
+
                 <div class="row">
 
                     <div class="col">
@@ -69,7 +75,7 @@
             </form>
 
             <x-slot name="modalFooter">
-                <button id="banAccountButton" type="button" class="btn btn-danger"><i class="fa fa-gavel"></i> {{__('Confirm')}}</button>
+                <button id="banAccountButton" type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} ><i class="fa fa-gavel"></i> {{__('Confirm')}}</button>
             </x-slot>
 
         </x-modal>
@@ -77,6 +83,12 @@
         @if (!Auth::user()->is($profile->user) && $profile->user->isStaffMember())
             <x-modal id="terminateUser" modal-label="terminateUser" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
 
+                @if($demoActive)
+                    <div class="alert alert-danger">
+                        <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                    </div>
+                @endif
+
               <p><i class="fa fa-exclamation-triangle"></i> <b>{{__('messages.profile.terminate_notice')}}</b></p>
               <p>
                 {{__('messages.profile.terminate_notice_warning')}}
@@ -91,7 +103,7 @@
                   <form method="POST" action="{{route('terminateStaffMember', ['user' => $profile->user->id])}}" id="terminateUserForm">
                     @csrf
                     @method('PATCH')
-                    <button type="submit" class="btn btn-warning"><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button>
+                    <button type="submit" class="btn btn-warning" {{ ($demoActive) ? 'disabled' : '' }}><i class="fas fa-exclamation-circle"></i> {{__('messages.reusable.confirm')}}</button>
 
                   </form>
 
@@ -102,6 +114,12 @@
 
         <x-modal id="deleteAccount" modal-label="deleteAccount" modal-title="{{__('messages.reusable.confirm')}}" include-close-button="true">
 
+            @if($demoActive)
+                <div class="alert alert-danger">
+                    <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                </div>
+            @endif
+
             <p><i class="fa fa-exclamation-triangle"></i><b> {{__('messages.profile.delete_acc_warn')}}</b></p>
 
             <p>{{__('messages.profile.delete_acc_consequence')}}</p>
@@ -118,12 +136,12 @@
 
             <x-slot name="modalFooter">
 
-                <button type="button" class="btn btn-danger" onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button>
+                <button type="button" class="btn btn-danger" {{ ($demoActive) ? 'disabled' : '' }} onclick="document.getElementById('deleteAccountForm').submit()"><i class="fa fa-trash"></i> {{strtoupper(__('messages.reusable.confirm'))}}</button>
 
             </x-slot>
         </x-modal>
 
-        <x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('messages.reusable.ip_info')}} {{$ipInfo->ip ?? 'Unknown'}}" include-close-button="true">
+        <x-modal id="ipInfo" modal-label="ipInfo" modal-title="{{__('IP Address Information')}}" include-close-button="true">
 
             <h4 class="text-center">{{__('messages.profile.search_result')}}</h3>
 
@@ -209,18 +227,24 @@
 
         <x-modal id="editUser" modal-label="editUser" modal-title="{{__('messages.profile.edituser')}}" include-close-button="true">
 
+            @if($demoActive)
+                <div class="alert alert-danger">
+                    <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+                </div>
+            @endif
+
           <form id="updateUserForm" method="post" action="{{ route('updateUser', ['user' => $profile->user->id]) }}">
             @csrf
             @method('PATCH')
 
             <label for="email">{{__('messages.contactlabel_email')}}</label>
-            <input id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="email" type="text" name="email" class="form-control" required value="{{ $profile->user->email }}" />
 
             <label for="name">{{__('messages.contactlabel_name')}}</label>
-            <input id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="name" type="text" name="name" class="form-control" required value="{{ $profile->user->name }}" />
 
             <label for="uuid">Mojang UUID</label>
-            <input id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" />
+            <input {{ ($demoActive) ? 'disabled' : '' }} id="uuid" type="text" name="uuid" class="form-control" required value="{{ $profile->user->uuid }}" />
             <p class="text-muted text-sm">
               <i class="fas fa-exclamation-triangle"></i> {{__('messages.profile.edituser_consequence')}}
             </p>
@@ -233,7 +257,7 @@
 
                   @foreach($roles as $roleName => $status)
                     <tr>
-                      <th><input type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th>
+                      <th><input {{ ($demoActive) ? 'disabled' : '' }} type="checkbox" name="roles[]" value="{{ $roleName }}" {{ ($status) ? 'checked' : '' }}></th>
                       <td class="col-md-2">{{ ucfirst($roleName) }}</td>
                     </tr>
 
@@ -250,7 +274,7 @@
 
           <x-slot name="modalFooter">
 
-              <button type="button" class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button>
+              <button type="button" {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-warning" onclick="$('#updateUserForm').submit()"><i class="fa fa-exclamation-cicle"></i> {{__('messages.vacancy.save')}}</button>
 
           </x-slot>
 
@@ -293,7 +317,7 @@
                     <p class="text-muted">{{$profile->profileShortBio}}</p>
                     <p class="text-muted">{{__('messages.reusable.member_since', ['date' => $since])}}</p>
                     @if (Auth::user()->hasRole('admin'))
-                        <button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => $profile->user->originalIP])}}</button>
+                        <button type="button" class="btn btn-sm btn-info" onclick="$('#ipInfo').modal('show')">{{__('messages.reusable.lookup', ['ipAddress' => (!$demoActive) ? $profile->user->originalIP : '0.0.0.0'])}}</button>
                     @endif
 
                     @if ($profile->user->is(Auth::user()))

resources/views/dashboard/user/profile/useraccount.blade.php

@@ -22,6 +22,14 @@
 
     <x-modal id="deleteAccountModal" modal-label="deleteAccountModalLabel" modal-title="Close account" include-close-button="true">
 
+        @if ($demoActive)
+
+            <div class="alert alert-danger">
+                <p class="font-weight-bold"><i class="fas fa-exclamation-triangle"></i> This feature is disabled</p>
+            </div>
+
+        @endif
+
         <p>Deleting your account is an irreversible process. The following data will be deleted (including personally identifiable data):</p>
         <ul>
             <li>Last IP address</li>
@@ -66,7 +74,7 @@
 
         <x-slot name="modalFooter">
 
-            <button onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button>
+            <button {{ ($demoActive) ? 'disabled' : '' }} onclick="$('#deleteAccountForm').submit()" type="button" class="btn btn-warning"><i class="fas fa-exclamation-triangle"></i> Continue</button>
 
         </x-slot>
 
@@ -78,6 +86,12 @@
 
       <x-modal id="twoFactorAuthModal" modal-label="2faLabel" modal-title="{{__('messages.2fa_txt')}}" include-close-button="true">
 
+          @if($demoActive)
+              <div class="alert alert-danger">
+                  <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+              </div>
+          @endif
+
         <h3><i class="fas fa-user-shield"></i> {{__('messages.profile.2fa_welcome')}}</h3>
 
         <p><b>{{__('messages.profile.supported_apps')}}</b></p>
@@ -118,7 +132,7 @@
 
         <x-slot name="modalFooter">
 
-          <button type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button>
+          <button {{ ($demoActive) ? 'disabled' : '' }} type="button" class="btn btn-success" onclick="$('#enable2Fa').submit()"><i class="fas fa-key"></i> {{__('messages.profile.2fa_enable')}}</button>
 
         </x-slot>
 
@@ -248,6 +262,12 @@
 
                 <div class="tab-content" id="myTabContent">
                     <div class="tab-pane fade show active p-3" id="accountSecurity" role="tabpanel" aria-labelledby="accountSecurityTab">
+                        @if($demoActive)
+                            <div class="alert alert-danger">
+                                <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+                            </div>
+                        @endif
+
                         <h5 class="card-title">{{__('messages.profile.change_password')}}</h5>
                         <p class="card-text">{{__('messages.profile.change_password_exp')}}</p>
 
@@ -271,7 +291,7 @@
 
                         </form>
 
-                        <button class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button>
+                        <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changePassword').submit()">{{__('messages.profile.change_password')}}</button>
                     </div>
                     <div class="tab-pane fade p-3" id="twofa" role="tabpanel" aria-labelledby="twofaTab">
                         <h5 class="card-title">{{__('messages.profile.2fa')}}</h5>
@@ -289,10 +309,15 @@
                     <div class="tab-pane fade p-3" id="sessions" role="tabpanel" aria-labelledby="sessionsTab">
                         <h5 class="card-title">{{__('messages.profile.session_manager')}}</h5>
                         <p class="card-text">{{__('messages.profile.terminate_others')}}</p>
-                        <p>{{__('messages.profile.current_session', ['ipAddress' => $ip])}}</p>
+                        <p>{{__('messages.profile.current_session', ['ipAddress' => ($demoActive) ? '0.0.0.0 (censored)' : $ip])}}</p>
                         <button type="button" class="btn btn-warning" onclick="$('#authenticationForm').modal('show')">{{__('messages.profile.flush_session')}}</button>
                     </div>
                     <div class="tab-pane fade p-3" id="contactSettings" role="tabpanel" aria-labelledby="contactSettingsTab">
+                        @if($demoActive)
+                            <div class="alert alert-danger">
+                                <p class="font-weight-bold"><i class="fa fa-exclamation-triangle"></i> This feature is disabled</p>
+                            </div>
+                        @endif
                         <h5 class="card-title">{{__('messages.profile.contact_settings')}}</h5>
                         <p class="card-text">{{__('messages.profile.personal_data_change')}}</p>
 
@@ -320,7 +345,7 @@
                                 </div>
                             </form>
 
-                        <button class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button>
+                        <button {{ ($demoActive) ? 'disabled' : '' }} class="btn btn-success" type="button" onclick="document.getElementById('changeEmail').submit()">{{__('messages.profile.change_email')}}</button>
                     </div>
 
 

resources/views/dashboard/user/viewapp.blade.php

@@ -132,7 +132,7 @@
 
                             <p><b>{{__('messages.application_m.applicant_name')}} </b> <span class="badge badge-primary">{{$application->user->name}}</span></p>
                             @if (Auth::user()->hasRole('hiringManager'))
-                                <p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{$application->user->originalIP}}</span></p>
+                                <p><b>{{__('messages.view_app.appl_ip')}}</b> <span class="badge badge-primary">{{ ($demoActive) ? '0.0.0.0 (censored)' : $application->user->originalIP }}</span></p>
                             @endif
                             <p><b>{{__('messages.application_m.application_date')}}</b> <span class="badge badge-primary">{{$application->created_at}}</span></p>
                             <p><b>{{__('messages.last_updated')}}</b><span class="badge badge-primary">{{$application->updated_at}}</span></p>

resources/views/home.blade.php

@@ -41,6 +41,19 @@
 
 	  <div class="container-fluid">
 
+          @if ($demoActive)
+              <div class="row">
+                  <div class="col">
+                      <div class="alert alert-warning">
+                          <p class="font-weight-bold"><i class="fas fa-exclamation-circle"></i> Attention</p>
+                          <p>Demo mode is active on this instance. The database is refreshed daily and some features are disabled for security reasons.</p>
+
+                          <p>If you're seeing this message in error, please contact your system administrator.</p>
+                      </div>
+                  </div>
+              </div>
+          @endif
+
           <div class="row">
 
               <div class="col text-center">

routes/web.php

@@ -53,7 +53,9 @@ use Mcamara\LaravelLocalization\Facades\LaravelLocalization;
 */
 Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['localeSessionRedirect', 'localizationRedirect', 'localeViewPath']], function () {
     Route::group(['prefix' => 'auth', 'middleware' => ['usernameUUID']], function () {
-        Auth::routes(['verify' => true]);
+        Auth::routes([
+            'verify' => true
+        ]);
 
         Route::post('/twofa/authenticate', [TwofaController::class, 'verify2FA'])
             ->name('verify2FA');