Merge branch 'main' into fix-error-display-in-prefixed-fields

Author: pxpm

src/app/Http/Middleware/AuthenticateSession.php

@@ -2,112 +2,8 @@
 
 namespace Backpack\CRUD\app\Http\Middleware;
 
-use Closure;
-use Illuminate\Auth\AuthenticationException;
-use Illuminate\Contracts\Auth\Factory as AuthFactory;
-use Illuminate\Contracts\Session\Middleware\AuthenticatesSessions;
-
-class AuthenticateSession implements AuthenticatesSessions
-{
-    /**
-     * The authentication factory implementation.
-     *
-     * @var \Illuminate\Contracts\Auth\Factory
-     */
-    protected $auth;
-    protected $user;
-
-    /**
-     * Create a new middleware instance.
-     *
-     * @param  \Illuminate\Contracts\Auth\Factory  $auth
-     * @return void
-     */
-    public function __construct(AuthFactory $auth)
-    {
-        $this->auth = $auth;
-        $this->user = backpack_user();
-    }
-
-    /**
-     * Handle an incoming request.
-     *
-     * @param  \Illuminate\Http\Request  $request
-     * @param  \Closure  $next
-     * @return mixed
-     */
-    public function handle($request, Closure $next)
-    {
-        if (! $request->hasSession() || ! $this->user) {
-            return $next($request);
-        }
-
-        if ($this->guard()->viaRemember()) {
-            $passwordHash = explode('|', $request->cookies->get($this->guard()->getRecallerName()))[2] ?? null;
-
-            if (! $passwordHash || $passwordHash != $this->user->getAuthPassword()) {
-                $this->logout($request);
-            }
-        }
-
-        if (! $request->session()->has('password_hash_'.backpack_guard_name())) {
-            $this->storePasswordHashInSession($request);
-        }
-
-        if ($request->session()->get('password_hash_'.backpack_guard_name()) !== $this->user->getAuthPassword()) {
-            $this->logout($request);
-        }
-
-        return tap($next($request), function () use ($request) {
-            if (! is_null($this->guard()->user())) {
-                $this->storePasswordHashInSession($request);
-            }
-        });
-    }
-
-    /**
-     * Store the user's current password hash in the session.
-     *
-     * @param  \Illuminate\Http\Request  $request
-     * @return void
-     */
-    protected function storePasswordHashInSession($request)
-    {
-        if (! $this->user) {
-            return;
-        }
-
-        $request->session()->put([
-            'password_hash_'.backpack_guard_name() => $this->user->getAuthPassword(),
-        ]);
-    }
-
-    /**
-     * Log the user out of the application.
-     *
-     * @param  \Illuminate\Http\Request  $request
-     * @return void
-     *
-     * @throws \Illuminate\Auth\AuthenticationException
-     */
-    protected function logout($request)
-    {
-        $this->guard()->logoutCurrentDevice();
-
-        $request->session()->flush();
-
-        \Alert::error('Your password was changed in another browser session. Please login again using the new password.')->flash();
-
-        throw new AuthenticationException('Unauthenticated.', [backpack_guard_name()], backpack_url('login'));
-    }
-
-    /**
-     * Get the guard instance that should be used by the middleware.
-     *
-     * @return \Illuminate\Contracts\Auth\Factory|\Illuminate\Contracts\Auth\Guard
-     */
-    protected function guard()
+if (class_exists('Illuminate\Contracts\Session\Middleware\AuthenticatesSessions', false)) {
+    class AuthenticateSession extends AuthenticateSessionL9
     {
-        return $this->auth;
     }
 }

src/app/Http/Middleware/AuthenticateSessionL9.php

@@ -0,0 +1,113 @@
+<?php
+
+namespace Backpack\CRUD\app\Http\Middleware;
+
+use Closure;
+use Illuminate\Auth\AuthenticationException;
+use Illuminate\Contracts\Auth\Factory as AuthFactory;
+
+class AuthenticateSessionL9 implements \Illuminate\Contracts\Session\Middleware\AuthenticatesSessions
+{
+    /**
+     * The authentication factory implementation.
+     *
+     * @var \Illuminate\Contracts\Auth\Factory
+     */
+    protected $auth;
+
+    protected $user;
+
+    /**
+     * Create a new middleware instance.
+     *
+     * @param  \Illuminate\Contracts\Auth\Factory  $auth
+     * @return void
+     */
+    public function __construct(AuthFactory $auth)
+    {
+        $this->auth = $auth;
+        $this->user = backpack_user();
+    }
+
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return mixed
+     */
+    public function handle($request, Closure $next)
+    {
+        if (! $request->hasSession() || ! $this->user) {
+            return $next($request);
+        }
+
+        if ($this->guard()->viaRemember()) {
+            $passwordHash = explode('|', $request->cookies->get($this->guard()->getRecallerName()))[2] ?? null;
+
+            if (! $passwordHash || $passwordHash != $this->user->getAuthPassword()) {
+                $this->logout($request);
+            }
+        }
+
+        if (! $request->session()->has('password_hash_'.backpack_guard_name())) {
+            $this->storePasswordHashInSession($request);
+        }
+
+        if ($request->session()->get('password_hash_'.backpack_guard_name()) !== $this->user->getAuthPassword()) {
+            $this->logout($request);
+        }
+
+        return tap($next($request), function () use ($request) {
+            if (! is_null($this->guard()->user())) {
+                $this->storePasswordHashInSession($request);
+            }
+        });
+    }
+
+    /**
+     * Store the user's current password hash in the session.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return void
+     */
+    protected function storePasswordHashInSession($request)
+    {
+        if (! $this->user) {
+            return;
+        }
+
+        $request->session()->put([
+            'password_hash_'.backpack_guard_name() => $this->user->getAuthPassword(),
+        ]);
+    }
+
+    /**
+     * Log the user out of the application.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return void
+     *
+     * @throws \Illuminate\Auth\AuthenticationException
+     */
+    protected function logout($request)
+    {
+        $this->guard()->logoutCurrentDevice();
+
+        $request->session()->flush();
+
+        \Alert::error('Your password was changed in another browser session. Please login again using the new password.')->flash();
+
+        throw new AuthenticationException('Unauthenticated.', [backpack_guard_name()], backpack_url('login'));
+    }
+
+    /**
+     * Get the guard instance that should be used by the middleware.
+     *
+     * @return \Illuminate\Contracts\Auth\Factory|\Illuminate\Contracts\Auth\Guard
+     */
+    protected function guard()
+    {
+        return $this->auth;
+    }
+}

src/app/Library/CrudPanel/CrudColumn.php

@@ -89,7 +89,7 @@ public function key(string $key)
             $column['key'] = $key;
         }
         $this->attributes = $column;
-        $this->setOperationSetting('columns', array_merge($columns, [$key => $column]));
+        $this->crud()->setOperationSetting('columns', array_merge($columns, [$key => $column]));
 
         return $this;
     }

src/app/Library/CrudPanel/CrudFilter.php

@@ -181,7 +181,9 @@ public function getNamespacedViewWithFallbacks()
      */
     public static function name($name)
     {
-        return new static(compact('name'), null, null, null);
+        $filter = new static(compact('name'), null, null, null);
+
+        return $filter->save();
     }
 
     /**

src/app/Library/CrudPanel/Traits/Validation.php

@@ -2,6 +2,7 @@
 
 namespace Backpack\CRUD\app\Library\CrudPanel\Traits;
 
+use Illuminate\Foundation\Http\FormRequest;
 use Illuminate\Support\Str;
 
 trait Validation
@@ -98,7 +99,7 @@ private function getValidationMessagesFromFieldsAndSubfields($fields)
                     });
 
                     foreach ($subfieldsWithValidationMessages as $subfield) {
-                        foreach ($subfield['validationMessages'] as $rule => $message) {
+                        foreach ($subfield['validationMessages'] ?? [] as $rule => $message) {
                             $messages[$item['name'].'.*.'.$subfield['name'].'.'.$rule] = $message;
                         }
                     }
@@ -133,7 +134,7 @@ public function setValidation($classOrRulesArray = false, $messages = [])
             $this->setValidationFromFields();
         } elseif (is_array($classOrRulesArray)) {
             $this->setValidationFromArray($classOrRulesArray, $messages);
-        } elseif (is_string($classOrRulesArray) || is_class($classOrRulesArray)) {
+        } elseif (is_string($classOrRulesArray) && class_exists($classOrRulesArray) && is_a($classOrRulesArray, FormRequest::class, true)) {
             $this->setValidationFromRequest($classOrRulesArray);
         } else {
             abort(500, 'Please pass setValidation() nothing, a rules array or a FormRequest class.');
@@ -202,55 +203,71 @@ public function validateRequest()
                 return app($formRequest);
             }
 
-            // create an alias of the provided FormRequest so we can create a new class that extends it.
-            // we can't use $variables to extend classes.
-            class_alias(get_class(new $formRequest), 'DeveloperProvidedFormRequest');
+            $formRequest = (new $formRequest)->createFrom($this->getRequest());
+            $extendedRules = $this->mergeRules($formRequest, $rules);
+            $extendedMessages = array_merge($messages, $formRequest->messages());
 
-            // create a new anonymous class that will extend the provided developer FormRequest
-            // in this class we will merge the FormRequest rules() and messages() with the ones provided by developer in fields.
-            $extendedRequest = new class($rules, $messages) extends \DeveloperProvidedFormRequest
-            {
-                private $_rules;
-
-                private $_messages;
+            // validate the complete request with FormRequest + controller validation + field validation (our anonymous class)
+            return $this->checkRequestValidity($extendedRules, $extendedMessages, $formRequest);
+        }
 
-                public function __construct($rules, $messages)
-                {
-                    parent::__construct();
-                    $this->_rules = $rules;
-                    $this->_messages = $messages;
-                }
+        return ! empty($rules) ? $this->checkRequestValidity($rules, $messages) : $this->getRequest();
+    }
 
-                public function rules()
-                {
-                    return array_merge(parent::rules(), $this->_rules);
-                }
+    /**
+     * Return an array containing the request rules and the field/controller rules merged.
+     * The rules in request will take precedence over the ones in controller/fields.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  array  $rules
+     * @return array
+     */
+    private function mergeRules($request, $rules)
+    {
+        $extendedRules = [];
+        $requestRules = $this->getRequestRulesAsArray($request);
+        $rules = array_map(function ($ruleDefinition) {
+            return is_array($ruleDefinition) ? $ruleDefinition : explode('|', $ruleDefinition);
+        }, $rules);
+
+        foreach ($requestRules as $ruleKey => $rule) {
+            $extendedRules[$ruleKey] = array_key_exists($ruleKey, $rules) ? array_merge($rule, $rules[$ruleKey]) : $rule;
+            unset($rules[$ruleKey]);
+        }
 
-                public function messages()
-                {
-                    return array_merge(parent::messages(), $this->_messages);
-                }
-            };
+        return array_merge($rules, $extendedRules);
+    }
 
-            // validate the complete request with FormRequest + controller validation + field validation (our anonymous class)
-            return app(get_class($extendedRequest), ['rules' => $rules, 'messages' => $messages]);
+    /**
+     * Return the request rules as an array of rules if developer provided a rule string configuration.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return array
+     */
+    private function getRequestRulesAsArray($request)
+    {
+        $requestRules = [];
+        foreach ($request->rules() as $ruleKey => $rule) {
+            $requestRules[$ruleKey] = is_array($rule) ? $rule : explode('|', $rule);
         }
 
-        return ! empty($rules) ? $this->checkRequestValidity($rules, $messages) : $this->getRequest();
+        return $requestRules;
     }
 
     /**
-     * Checks if the current crud request is valid against the provided rules.
+     * Checks if the request is valid against the rules.
      *
      * @param  array  $rules
      * @param  array  $messages
+     * @param  \Illuminate\Http\Request|null  $request
      * @return \Illuminate\Http\Request
      */
-    private function checkRequestValidity($rules, $messages)
+    private function checkRequestValidity($rules, $messages, $request = null)
     {
-        $this->getRequest()->validate($rules, $messages);
+        $request = $request ?? $this->getRequest();
+        $request->validate($rules, $messages);
 
-        return $this->getRequest();
+        return $request;
     }
 
     /**