296 lines
12 KiB
PHP
Executable File
296 lines
12 KiB
PHP
Executable File
<?php
|
|
|
|
/*
|
|
* Copyright © 2020 Miguel Nogueira
|
|
*
|
|
* This file is part of Raspberry Staff Manager.
|
|
*
|
|
* Raspberry Staff Manager is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* Raspberry Staff Manager is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with Raspberry Staff Manager. If not, see <https://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
use App\Http\Controllers\ApiKeyController;
|
|
use App\Http\Controllers\ApplicationController;
|
|
use App\Http\Controllers\AppointmentController;
|
|
use App\Http\Controllers\Auth\TwofaController;
|
|
use App\Http\Controllers\BanController;
|
|
use App\Http\Controllers\CommentController;
|
|
use App\Http\Controllers\ContactController;
|
|
use App\Http\Controllers\DashboardController;
|
|
use App\Http\Controllers\DevToolsController;
|
|
use App\Http\Controllers\FormController;
|
|
use App\Http\Controllers\HomeController;
|
|
use App\Http\Controllers\ProfileController;
|
|
use App\Http\Controllers\TeamController;
|
|
use App\Http\Controllers\TeamFileController;
|
|
use App\Http\Controllers\UserController;
|
|
use App\Http\Controllers\VacancyController;
|
|
use App\Http\Controllers\VoteController;
|
|
use App\Http\Controllers\OptionsController;
|
|
use App\Http\Controllers\SecuritySettingsController;
|
|
use Illuminate\Support\Facades\Route;
|
|
use Mcamara\LaravelLocalization\Facades\LaravelLocalization;
|
|
|
|
/*
|
|
|--------------------------------------------------------------------------
|
|
| Web Routes
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
| Here is where you can register web routes for your application. These
|
|
| routes are loaded by the RouteServiceProvider within a group which
|
|
| contains the "web" middleware group. Now create something great!
|
|
|
|
|
*/
|
|
Route::group(['prefix' => LaravelLocalization::setLocale(), 'middleware' => ['localeSessionRedirect', 'localizationRedirect', 'localeViewPath']], function () {
|
|
Route::group(['prefix' => 'auth', 'middleware' => ['usernameUUID']], function () {
|
|
Auth::routes(['verify' => true]);
|
|
|
|
Route::post('/twofa/authenticate', [TwofaController::class, 'verify2FA'])
|
|
->name('verify2FA');
|
|
});
|
|
|
|
Route::get('/', [HomeController::class, 'index'])
|
|
->middleware('eligibility');
|
|
|
|
Route::post('/form/contact', [ContactController::class, 'create'])
|
|
->name('sendSubmission');
|
|
|
|
Route::get('/accounts/danger-zone/{ID}/{action}/{token}', [UserController::class, 'processDeleteConfirmation'])
|
|
->name('processDeleteConfirmation');
|
|
|
|
Route::group(['middleware' => ['auth', 'forcelogout', 'passwordexpiration', '2fa', 'verified']], function () {
|
|
|
|
|
|
|
|
Route::group(['middleware' => ['passwordredirect']], function(){
|
|
|
|
Route::get('/dashboard', [DashboardController::class, 'index'])
|
|
->name('dashboard')
|
|
->middleware('eligibility');
|
|
|
|
Route::get('users/directory', [ProfileController::class, 'index'])
|
|
->name('directory');
|
|
|
|
Route::resource('teams', TeamController::class);
|
|
|
|
Route::post('teams/{team}/invites/send', [TeamController::class, 'invite'])
|
|
->name('sendInvite');
|
|
|
|
Route::get('teams/{team}/switch', [TeamController::class, 'switchTeam'])
|
|
->name('switchTeam');
|
|
|
|
Route::patch('teams/{team}/vacancies/update', [TeamController::class, 'assignVacancies'])
|
|
->name('assignVacancies');
|
|
|
|
Route::get('teams/invites/{action}/{token}', [TeamController::class, 'processInviteAction'])
|
|
->name('processInvite');
|
|
|
|
|
|
|
|
Route::get('team/files', [TeamFileController::class, 'index'])
|
|
->name('showTeamFiles');
|
|
|
|
Route::post('team/files/upload', [TeamFileController::class, 'store'])
|
|
->name('uploadTeamFile');
|
|
|
|
Route::delete('team/files/{teamFile}/delete', [TeamFileController::class, 'destroy'])
|
|
->name('deleteTeamFile');
|
|
|
|
Route::get('team/files/{teamFile}/download', [TeamFileController::class, 'download'])
|
|
->name('downloadTeamFile');
|
|
|
|
});
|
|
|
|
Route::group(['prefix' => '/applications', 'middleware' => ['passwordredirect']], function () {
|
|
Route::get('/my-applications', [ApplicationController::class, 'showUserApps'])
|
|
->name('showUserApps')
|
|
->middleware('eligibility');
|
|
|
|
Route::get('/view/{application}', [ApplicationController::class, 'showUserApp'])
|
|
->name('showUserApp');
|
|
|
|
Route::post('/{application}/comments', [CommentController::class, 'insert'])
|
|
->name('addApplicationComment');
|
|
|
|
Route::delete('/comments/{comment}/delete', [CommentController::class, 'delete'])
|
|
->name('deleteApplicationComment');
|
|
|
|
Route::patch('/notes/save/{application}', [AppointmentController::class, 'saveNotes'])
|
|
->name('saveNotes');
|
|
|
|
Route::patch('/update/{application}/{newStatus}', [ApplicationController::class, 'updateApplicationStatus'])
|
|
->name('updateApplicationStatus');
|
|
|
|
Route::delete('{application}/delete', [ApplicationController::class, 'delete'])
|
|
->name('deleteApplication');
|
|
|
|
Route::get('/staff/all', [ApplicationController::class, 'showAllApps'])
|
|
->name('allApplications');
|
|
|
|
|
|
Route::post('{application}/staff/vote', [VoteController::class, 'vote'])
|
|
->name('voteApplication');
|
|
});
|
|
|
|
Route::group(['prefix' => 'appointments', 'middleware' => ['passwordredirect']], function () {
|
|
Route::post('schedule/appointments/{application}', [AppointmentController::class, 'saveAppointment'])
|
|
->name('scheduleAppointment');
|
|
|
|
Route::patch('update/appointments/{application}/{status}', [AppointmentController::class, 'updateAppointment'])
|
|
->name('updateAppointment');
|
|
});
|
|
|
|
Route::group(['prefix' => 'apply', 'middleware' => ['eligibility', 'passwordredirect']], function () {
|
|
Route::get('positions/{vacancySlug}', [ApplicationController::class, 'renderApplicationForm'])
|
|
->name('renderApplicationForm');
|
|
|
|
Route::post('positions/{vacancySlug}/submit', [ApplicationController::class, 'saveApplicationAnswers'])
|
|
->name('saveApplicationForm');
|
|
});
|
|
|
|
// Further locking down the profile section by adding the middleware to everything but the required routes
|
|
Route::group(['prefix' => '/profile'], function () {
|
|
Route::get('/settings', [ProfileController::class, 'showProfile'])
|
|
->name('showProfileSettings')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::patch('/settings/save', [ProfileController::class, 'saveProfile'])
|
|
->name('saveProfileSettings')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::get('user/{user}', [ProfileController::class, 'showSingleProfile'])
|
|
->name('showSingleProfile')
|
|
->middleware('passwordredirect');
|
|
|
|
|
|
|
|
Route::get('/settings/account', [UserController::class, 'showAccount'])
|
|
->name('showAccountSettings');
|
|
|
|
|
|
Route::patch('/settings/account/change-password', [UserController::class, 'changePassword'])
|
|
->name('changePassword');
|
|
|
|
|
|
|
|
Route::patch('/settings/account/change-email', [UserController::class, 'changeEmail'])
|
|
->name('changeEmail')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::post('/settings/account/flush-sessions', [UserController::class, 'flushSessions'])
|
|
->name('flushSessions')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::patch('/settings/account/twofa/enable', [UserController::class, 'add2FASecret'])
|
|
->name('enable2FA')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::patch('/settings/account/twofa/disable', [UserController::class, 'remove2FASecret'])
|
|
->name('disable2FA')
|
|
->middleware('passwordredirect');
|
|
|
|
Route::patch('/settings/account/dg/delete', [UserController::class, 'userDelete'])
|
|
->name('userDelete')
|
|
->middleware('passwordredirect');
|
|
});
|
|
|
|
Route::group(['prefix' => '/hr', 'middleware' => ['passwordredirect']], function () {
|
|
Route::get('staff-members', [UserController::class, 'showStaffMembers'])
|
|
->name('staffMemberList');
|
|
|
|
Route::get('players', [UserController::class, 'showPlayers'])
|
|
->name('registeredPlayerList');
|
|
|
|
Route::post('players/search', [UserController::class, 'showPlayersLike'])
|
|
->name('searchRegisteredPLayerList');
|
|
|
|
Route::patch('staff-members/terminate/{user}', [UserController::class, 'terminate'])
|
|
->name('terminateStaffMember');
|
|
});
|
|
|
|
Route::group(['prefix' => 'admin', 'middleware' => ['passwordredirect']], function () {
|
|
Route::get('settings', [OptionsController::class, 'index'])
|
|
->name('showSettings');
|
|
|
|
Route::resource('keys', ApiKeyController::class);
|
|
|
|
Route::patch('keys/revoke/{key}', [ApiKeyController::class, 'revokeKey'])
|
|
->name('revokeKey');
|
|
|
|
Route::post('settings/save', [OptionsController::class, 'saveSettings'])
|
|
->name('saveSettings');
|
|
|
|
Route::post('settings/security/save', [SecuritySettingsController::class, 'save'])
|
|
->name('saveSecuritySettings');
|
|
|
|
Route::patch('settings/game/update', [OptionsController::class, 'saveGameIntegration'])
|
|
->name('saveGameIntegration');
|
|
|
|
Route::post('players/ban/{user}', [BanController::class, 'insert'])
|
|
->name('banUser');
|
|
|
|
Route::delete('players/unban/{user}', [BanController::class, 'delete'])
|
|
->name('unbanUser');
|
|
|
|
Route::delete('players/delete/{user}', [UserController::class, 'delete'])
|
|
->name('deleteUser');
|
|
|
|
Route::patch('players/update/{user}', [UserController::class, 'update'])
|
|
->name('updateUser');
|
|
|
|
Route::get('positions', [VacancyController::class, 'index'])
|
|
->name('showPositions');
|
|
|
|
Route::post('positions/save', [VacancyController::class, 'store'])
|
|
->name('savePosition');
|
|
|
|
Route::get('positions/edit/{vacancy}', [VacancyController::class, 'edit'])
|
|
->name('editPosition');
|
|
|
|
Route::patch('positions/update/{vacancy}', [VacancyController::class, 'update'])
|
|
->name('updatePosition');
|
|
|
|
Route::patch('positions/availability/{status}/{vacancy}', [VacancyController::class, 'updatePositionAvailability'])
|
|
->name('updatePositionAvailability');
|
|
|
|
Route::get('forms/builder', [FormController::class, 'showFormBuilder'])
|
|
->name('showFormBuilder');
|
|
|
|
Route::post('forms/save', [FormController::class, 'saveForm'])
|
|
->name('saveForm');
|
|
|
|
Route::delete('forms/destroy/{form}', [FormController::class, 'destroy'])
|
|
->name('destroyForm');
|
|
|
|
Route::get('forms', [FormController::class, 'index'])
|
|
->name('showForms');
|
|
|
|
Route::get('forms/preview/{form}', [FormController::class, 'preview'])
|
|
->name('previewForm');
|
|
|
|
Route::get('forms/edit/{form}', [FormController::class, 'edit'])
|
|
->name('editForm');
|
|
|
|
Route::patch('forms/update/{form}', [FormController::class, 'update'])
|
|
->name('updateForm');
|
|
|
|
Route::get('devtools', [DevToolsController::class, 'index'])
|
|
->name('devTools');
|
|
|
|
// we could use route model binding
|
|
Route::post('devtools/vote-evaluation/force', [DevToolsController::class, 'forceVoteCount'])
|
|
->name('devToolsForceVoteCount');
|
|
});
|
|
});
|
|
});
|