user status fixed, user management enhanced

Ivan Li · Ivan Li · commit 4cb24d33613b · 2016-06-19T14:25:42.000+10:00
diff --git a/app/Http/Controllers/Auth/AuthController.php b/app/Http/Controllers/Auth/AuthController.php
@@ -5,9 +5,11 @@
 use App\User;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Cache;
 use Illuminate\Support\Facades\Input;
 use Illuminate\Support\Facades\Mail;
 use Illuminate\Support\Facades\Session;
+use Symfony\Component\HttpFoundation\JsonResponse;
 use Validator;
 use App\Http\Controllers\Controller;
 use Illuminate\Foundation\Auth\ThrottlesLogins;
@@ -63,6 +65,55 @@ protected function validator(array $data)
         ]);
     }
 
+    /**
+     * override login process by adding status validation
+     *
+     * @param Request $request
+     * @return AuthController|\Illuminate\Http\RedirectResponse
+     */
+    public function login(Request $request)
+    {
+        $this->validateLogin($request);
+        // If the class is using the ThrottlesLogins trait, we can automatically throttle
+        // the login attempts for this application. We'll key this by the username and
+        // the IP address of the client making these requests into this application.
+        $throttles = $this->isUsingThrottlesLoginsTrait();
+
+        if ($throttles && $lockedOut = $this->hasTooManyLoginAttempts($request)) {
+            $this->fireLockoutEvent($request);
+            return $this->sendLockoutResponse($request);
+        }
+        $credentials = $this->getCredentials($request);
+        if (Auth::guard($this->getGuard())->attempt($credentials, $request->has('remember'))) {
+            if (Auth::check() && (Auth::user()->status == "locked" || Auth::user()->status == "deleted")) {
+                $this->fireLockoutEvent($request);
+                Auth::guard($this->getGuard())->logout();
+                $output = new \stdClass();
+                $output->status = false;
+                $output->responseJSON = array(
+                    "Your account is locked out. Please contact Ivan for more information."
+                );
+                if ($request->ajax()) {
+                    if ($request->wantsJson()) {
+                        return new JsonResponse($output);
+                    } else {
+                        return $output;
+                    }
+                } else {
+                    return $this->sendLockoutResponse($request);
+                }
+            }
+            return $this->handleUserWasAuthenticated($request, $throttles);
+        }
+
+        if ($throttles && !$lockedOut) {
+            $this->incrementLoginAttempts($request);
+        }
+
+        return $this->sendFailedLoginResponse($request);
+    }
+
+
     /**
      * Create a new user instance after a valid registration.
      *
@@ -167,11 +218,15 @@ protected function authenticated(Request $request, $user)
      */
     protected function sendFailedLoginResponse(Request $request)
     {
-        if ($request->json()) {
+        if ($request->ajax()) {
             $output = new \stdClass();
             $output->status = false;
             $output->responseJSON = array($this->loginUsername() => $this->getFailedLoginMessage());
-            return json_encode($output);
+            if ($request->wantsJson()) {
+                return new JsonResponse($output);
+            } else {
+                return $output;
+            }
         } else {
             return redirect()->back()
                 ->withInput($request->only($this->loginUsername(), 'remember'))
diff --git a/app/Http/Controllers/UserController.php b/app/Http/Controllers/UserController.php
@@ -2,12 +2,14 @@
 
 namespace App\Http\Controllers;
 
+use App\Role;
+use App\User;
 use Illuminate\Database\Eloquent\ModelNotFoundException;
-use Illuminate\Foundation\Auth\User;
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\Request;
 
 use App\Http\Requests;
+use Illuminate\Support\Facades\Validator;
 
 class UserController extends Controller
 {
@@ -20,14 +22,17 @@ public function __construct()
     public function index(Request $request)
     {
         if ($request->ajax()) {
-            $users = User::all();
-            if ($request->json()) {
+            $users = User::with("roles")->get();
+            if ($request->wantsJson()) {
                 return new JsonResponse($users);
             } else {
                 return $users;
             }
         } else {
-            return view('admin.user.index');
+            $roles = Role::all();
+            return view('admin.user.index')->with(array(
+                "roles" => $roles
+            ));
         }
     }
 
@@ -52,8 +57,10 @@ public function edit($user_id)
     {
         try {
             $user = User::findOrFail($user_id);
+            $roles = Role::all();
             return view('admin.user.edit')->with(array(
                 "user" => $user,
+                "roles" => $roles
             ));
         } catch (ModelNotFoundException $e) {
             abort(404, "Page not found");
@@ -63,7 +70,66 @@ public function edit($user_id)
 
     public function update(Request $request, $user_id)
     {
-
+        $validator = Validator::make($request->all(), [
+            "name" => "required|max:255",
+            "email" => "exists:users|max:255",
+            "status" => "in:inactive,active,locked,deleted",
+        ]);
+        if ($validator->fails()) {
+            $output = new \stdClass();
+            $output->status = true;
+            $output->errors = $validator->errors();
+            if ($request->ajax()) {
+                if ($request->wantsJson()) {
+                    return new JsonResponse($output);
+                } else {
+                    return $output;
+                }
+            } else {
+                return back()->withErrors($validator->errors())->withInput();
+            }
+        }
+        try {
+            $user = User::findOrFail($user_id);
+            $user->name = $request->get("name");
+            $user->status = $request->get("status");
+            $user->save();
+            $user->detachRoles();
+            $roles = $request->get("roles");
+            if (is_array($roles)) {
+                foreach ($roles as $roleID) {
+                    $role = Role::findOrFail($roleID);
+                    $user->attachRole($role);
+                }
+            }
+            $output = new \stdClass();
+            $output->status = true;
+            $output->data = array(
+                "user" => $user
+            );
+            if ($request->ajax()) {
+                if ($request->wantsJson()) {
+                    return new JsonResponse($output);
+                } else {
+                    return $output;
+                }
+            } else {
+                return redirect()->route("admin.user", [$user]);
+            }
+        } catch (ModelNotFoundException $e) {
+            $output = new \stdClass();
+            $output->status = true;
+            $output->errors = "User not found";
+            if ($request->ajax()) {
+                if ($request->wantsJson()) {
+                    return new JsonResponse($output);
+                } else {
+                    return $output;
+                }
+            } else {
+                return back()->withErrors(array("User not found"))->withInput();
+            }
+        }
     }
 
     public function destroy(Request $request, $user_id)
@@ -72,20 +138,21 @@ public function destroy(Request $request, $user_id)
             $user = User::findOrFail($user_id);
             $user->status = "deleted";
             $user->save();
-            $output = array(
-                "status" => true,
-                "data" => array(
-                    "user" => $user
-                )
+            $output = new \stdClass();
+            $output->status = true;
+            $output->data = array(
+                "user" => $user
             );
-            if ($request->json()) {
-                return response()->json($output);
+        } catch (ModelNotFoundException $e) {
+            $output = new \stdClass();
+            $output->status = false;
+            $output->errors = array("User not found");
+        } finally {
+            if ($request->ajax()) {
+                return new JsonResponse($output);
             } else {
                 return $output;
             }
-        } catch (ModelNotFoundException $e) {
-            abort(404, "Page not found");
-            return false;
         }
     }
 
@@ -100,10 +167,14 @@ public function revive(Request $request, $user_id)
                     "user" => $user
                 )
             );
-            if ($request->json()) {
-                return response()->json($output);
+            if ($request->ajax()) {
+                if ($request->wantsJson()) {
+                    return new JsonResponse($output);
+                } else {
+                    return $output;
+                }
             } else {
-                return $output;
+                return redirect()->route("admin.user");
             }
         } catch (ModelNotFoundException $e) {
             abort(404, "Page not found");
diff --git a/public/assets/internal/css/app.css b/public/assets/internal/css/app.css
@@ -77,4 +77,12 @@
 
 select.control-inline {
     padding-right: 30px;
+}
+
+table th.shrink, table td.shrink {
+    width: 1%;
+}
+
+.form-group{
+    margin-bottom: 10px;
 }
diff --git a/resources/views/admin/user/edit.blade.php b/resources/views/admin/user/edit.blade.php
@@ -34,6 +34,14 @@
                         </div>
                         {!! Form::model($user, array('route' => array('admin.user.update', $user->id), 'method' => 'patch', 'files' => true, 'onsubmit' => 'return false;', "id" => "frm-update-user")) !!}
                         @include('admin.user.forms.user')
+                        <div class="form-group">
+                            <label for="roles">Roles</label>
+                            <select name="roles[]" id="roles" class="form-control input-sm" multiple="multiple">
+                                @foreach($roles as $role)
+                                    <option value="{{$role->id}}" {{$user->hasRole($role->name) ? "selected" : ""}}>{{$role->display_name}}</option>
+                                @endforeach
+                            </select>
+                        </div>
                         {!! Form::submit('Save', ["class"=>"btn btn-default btn-sm", "href"=>"#", "onclick" => "updateUserOnClick()"]) !!}
                         {!! Form::close() !!}
                     </div>
@@ -52,9 +60,9 @@ function updateUserOnClick() {
                 "data": $("#frm-update-user").serialize(),
                 "dataType": "json",
                 "success": function (response) {
-                    if(response.status == true){
-
-                    }else{
+                    if (response.status == true) {
+                        window.location.href = "{{url('admin/user')}}";
+                    } else {
                         if (response.responseJSON) {
                             try {
                                 var $error = response.responseJSON;
@@ -94,8 +102,7 @@ function updateUserOnClick() {
             })
         }
 
-        function showEditUserErrMsg(callback)
-        {
+        function showEditUserErrMsg(callback) {
             $(".error-msgs").slideDown(function () {
                 if ($.isFunction(callback)) {
                     callback();
diff --git a/resources/views/admin/user/index.blade.php b/resources/views/admin/user/index.blade.php
