fix: modfiy servers didn't decrease user's coins

1. Added filament for future usage.
2. Modify servers now require coins.
3. Handle Laravel Socialite's invalid state exception.
4. Users without avatars can now log in without error.
5. Coupon redeem webhook now shows the correct used times.
6. Added admin middleware for future usage.
7. Added log viewer for admins to view logs conveniently.
8. If actions that require coins don't run successfully, coins will be refunded.
9. Panel URL without path now works.
10. Added default user's coins configuration.

Author: owenliu0924

.env.example

@@ -74,4 +74,6 @@ WEBHOOK_RESOURCE=https://discord.com/api/webhooks/0000000000000000000/cReAtEaChA
 WEBHOOK_EXCEPTION=https://discord.com/api/webhooks/0000000000000000000/cReAtEaChAnNeLaNdAwEbHoOk
 WEBHOOK_SERVER=https://discord.com/api/webhooks/0000000000000000000/cReAtEaChAnNeLaNdAwEbHoOk
 
-PROXY_HTTPS=false
+PROXY_HTTPS=false
+
+NO_AVATAR_ALTERNATIVE=https://cdn.discordapp.com/embed/avatars/0.png

.gitignore

@@ -12,7 +12,8 @@ yarn-error.log
 /.fleet
 /.idea
 /.vscode
-/public/build/assets/*
+/public/build
+/public/vendor
 /public/hot
 /caddy
 frankenphp

README.md

@@ -17,3 +17,11 @@ Composer、PHP 8.1、Node.js、NPM、Nginx
 7. Run `npm run build`.
 8. Run `php artisan key:generate`.
 9. Configure your webserver.
+10. Change your Pterodactyl Panel's `app/Http/Controllers/Api/Application/Servers/ServerController.php`.
+
+```
+$servers = QueryBuilder::for(Server::query())
+            ->allowedFilters(['id', 'uuid', 'uuidShort', 'name', AllowedFilter::exact('owner_id'), 'node_id', 'external_id'])
+            ->allowedSorts(['id', 'uuid', 'uuidShort', 'name', 'owner_id', 'node_id', 'status'])
+            ->paginate($perPage);
+```

app/Exceptions/Handler.php

@@ -26,6 +26,9 @@ class Handler extends ExceptionHandler
      */
     public function register(): void
     {
+        $this->renderable(function (\Laravel\Socialite\Two\InvalidStateException $e, $request) {
+            return response()->view('errors.state', [], 400);
+        });
         $this->renderable(function (ProxyException $e, Request $request) {
             return response()->view('errors.proxy', [], 403);
         });

app/Http/Controllers/Auth/SocialController.php

@@ -168,7 +168,12 @@ public function handleDiscordCallback(): RedirectResponse
             $newUser->password = bcrypt(request($password));
             $database_id = Str::random(16);
             $newUser->database_id = $database_id;
-            $newUser->avatar = $user->avatar;
+            if ($user->avatar != null) {
+                $newUser->avatar = $user->avatar;
+            } else {
+                $newUser->avatar = env('NO_AVATAR_ALTERNATIVE');
+            }
+
             $url = config('shdactyl.pterodactyl.url');
             $auth = config('shdactyl.pterodactyl.api_key');
             $res = Http::withHeaders([

app/Http/Controllers/Dashboard/DashboardController.php

@@ -415,6 +415,8 @@ public function serverCreation(Request $request)
             ]);
             return redirect('/dashboard/server/create')->with('success', '成功花費 $ ' . number_format($price, 2) . ' SDC 創建伺服器！');
         } else {
+            $user->increment('coins', $price);
+            $user->save();
             return redirect('/dashboard/server/create')->with('error', '創建伺服器時發生錯誤 ' . $res);
         }
     }
@@ -483,6 +485,8 @@ public function unsuspendServer(Request $request)
                 ]);
                 return redirect('/dashboard/server/manage')->with('success', '成功花費 $ ' . number_format($price, 2) . ' SDC 續約伺服器');
             } else {
+                $user->increment('coins', $price);
+                $user->save();
                 return redirect('/dashboard/server/manage')->with('error', '續約伺服器時發生錯誤 ' . $res);
             }
         } else {
@@ -572,7 +576,18 @@ public function modifyServer(Request $request)
         if ($total['ports'] - $resData['attributes']['feature_limits']['allocations'] + $data['ports'] > $user->ports) {
             return redirect('/dashboard/server/manage')->with('error', '你沒有那麼多 Ports 資源來編輯這個伺服器');
         }
-
+        $new_price = config('shdactyl.fee.create') * config('shdactyl.fee.node.' . $resData['attributes']['node']) * ((config('shdactyl.fee.resource.cpu') * $data['cpu']) + (config('shdactyl.fee.resource.ram') * $data['ram']) + (config('shdactyl.fee.resource.disk') * $data['disk']) + (config('shdactyl.fee.resource.databases') * $data['databases']) + (config('shdactyl.fee.resource.backups') * $data['backups']) + (config('shdactyl.fee.resource.ports') * $data['ports']));
+        $old_price = config('shdactyl.fee.create') * config('shdactyl.fee.node.' . $resData['attributes']['node']) * ((config('shdactyl.fee.resource.cpu') * $resData['attributes']['limits']['cpu']) + (config('shdactyl.fee.resource.ram') * $resData['attributes']['limits']['memory']) + (config('shdactyl.fee.resource.disk') * $resData['attributes']['limits']['disk']) + (config('shdactyl.fee.resource.databases') * $resData['attributes']['feature_limits']['databases']) + (config('shdactyl.fee.resource.backups') * $resData['attributes']['feature_limits']['backups']) + (config('shdactyl.fee.resource.ports') * $resData['attributes']['feature_limits']['allocations']));
+        if ($new_price < $old_price) {
+            $price = 0;
+        } else {
+            $price = $new_price - $old_price;
+        }
+        if ($user->coins < $price) {
+            return redirect('/dashboard/server/manage')->with('error', '你沒有足夠的代幣來編輯伺服器');
+        }
+        $user->decrement('coins', $price);
+        $user->save();
         $response = Http::withHeaders([
             'Accept' => 'application/json',
             'Authorization' => $auth,
@@ -601,7 +616,7 @@ public function modifyServer(Request $request)
                     [
                         'title' => '[編輯伺服器]',
                         'description' => '帳號：<@' . $user->discord_id . '> (' . $user->discord_id . ')\n' .
-                            '伺服器識別碼：' . $serverData['attributes']['identifier'] . '\n伺服器名稱：' . $serverData['attributes']['name'] . '\n節點識別碼：' . $serverData['attributes']['node'] . '\n處理器：' . $serverData['attributes']['limits']['cpu'] . '%\n記憶體：' . $serverData['attributes']['limits']['memory'] . ' MiB\n儲存空間：' . $serverData['attributes']['limits']['disk'] . ' MiB\n資料庫：' . $serverData['attributes']['feature_limits']['databases'] . ' 個\n額外端口：' . $serverData['attributes']['feature_limits']['allocations'] . ' 個\n備份欄位：' . $serverData['attributes']['feature_limits']['backups'] . ' 個',
+                            '伺服器識別碼：' . $serverData['attributes']['identifier'] . '\n伺服器名稱：' . $serverData['attributes']['name'] . '\n節點識別碼：' . $serverData['attributes']['node'] . '\n花費：$ ' . number_format($price, 2) . ' SDC\n處理器：' . $serverData['attributes']['limits']['cpu'] . '%\n記憶體：' . $serverData['attributes']['limits']['memory'] . ' MiB\n儲存空間：' . $serverData['attributes']['limits']['disk'] . ' MiB\n資料庫：' . $serverData['attributes']['feature_limits']['databases'] . ' 個\n額外端口：' . $serverData['attributes']['feature_limits']['allocations'] . ' 個\n備份欄位：' . $serverData['attributes']['feature_limits']['backups'] . ' 個',
                         'color' => '#03cafc',
                         'footer' => [
                             'icon_url' => config('shdactyl.webhook.icon_url'),
@@ -614,8 +629,10 @@ public function modifyServer(Request $request)
                         ],
                     ]
                 ]);
-                return redirect('/dashboard/server/manage')->with('success', '成功編輯伺服器');
+                return redirect('/dashboard/server/manage')->with('success', '成功花費 $ ' . number_format($price, 2) . ' SDC 編輯伺服器');
             } else {
+                $user->increment('coins', $price);
+                $user->save();
                 return redirect('/dashboard/server/manage')->with('error', '編輯伺服器時發生錯誤 ' . $response);
             }
         } else {
@@ -639,6 +656,11 @@ public function redeemCoupon(Request $request)
                     ->whereJsonContains('content->code', $realCoupon->code)->first();
 
                 if (!$history) {
+
+                    $user->increment('coins', $realCoupon->coins);
+                    $user->save();
+                    $realCoupon->used_times++;
+                    $realCoupon->save();
                     ActionLog::create([
                         'action_type' => 'resource.coupon.redeem',
                         'user_id' => $user->id,
@@ -664,10 +686,6 @@ public function redeemCoupon(Request $request)
                             ],
                         ]
                     ]);
-                    $user->increment('coins', $realCoupon->coins);
-                    $user->save();
-                    $realCoupon->used_times++;
-                    $realCoupon->save();
                     return redirect('/dashboard/resource/coupon')->with('success', '成功兌換名為 "' . $realCoupon->name . '" 的代碼並獲得了 $ ' . $realCoupon->coins . ' SDC');
 
                 } else {

app/Http/Middleware/AdminAuthenticate.php

@@ -0,0 +1,36 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Http;
+
+class AdminAuthenticate
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        $user = Auth::user();
+        if (!$user) {
+            return redirect()->route('login');
+        }
+        $url = config('shdactyl.pterodactyl.url');
+        $auth = config('shdactyl.pterodactyl.api_key');
+        $res = Http::withHeaders([
+            'Accept' => 'application/json',
+            'Authorization' => $auth,
+        ])->get($url . '/api/application/users/' . $user->panel_id);
+        $data = json_decode($res, true);
+        if ($data['attributes']['root_admin'] === false) {
+            return redirect()->route('login');
+        }
+        return $next($request);
+    }
+}

app/Providers/AppServiceProvider.php

@@ -4,6 +4,7 @@
 
 use Illuminate\Support\ServiceProvider;
 use Illuminate\Support\Facades\URL;
+use Opcodes\LogViewer\Facades\LogViewer;
 
 class AppServiceProvider extends ServiceProvider
 {
@@ -23,5 +24,9 @@ public function boot(): void
         if (env('PROXY_HTTPS') === true) {
             URL::forceScheme('https');
         }
+        LogViewer::auth(function ($request) {
+            return $request->user()
+                && in_array($request->user()->email, config('shdactyl.log_viewer.can_view'));
+        });
     }
 }

app/Providers/Filament/AdminPanelProvider.php

@@ -0,0 +1,60 @@
+<?php
+
+namespace App\Providers\Filament;
+
+use App\Http\Middleware\AdminAuthenticate;
+use Filament\Http\Middleware\Authenticate;
+use Filament\Http\Middleware\DisableBladeIconComponents;
+use Filament\Http\Middleware\DispatchServingFilamentEvent;
+use Filament\Pages;
+use Filament\Panel;
+use Filament\PanelProvider;
+use Filament\Support\Colors\Color;
+use Filament\Widgets;
+use Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse;
+use Illuminate\Cookie\Middleware\EncryptCookies;
+use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken;
+use Illuminate\Routing\Middleware\SubstituteBindings;
+use Illuminate\Session\Middleware\AuthenticateSession;
+use Illuminate\Session\Middleware\StartSession;
+use Illuminate\View\Middleware\ShareErrorsFromSession;
+
+class AdminPanelProvider extends PanelProvider
+{
+    public function panel(Panel $panel): Panel
+    {
+        return $panel
+            ->default()
+            ->id('admin')
+            ->path('admin')
+            ->login()
+            ->colors([
+                'primary' => Color::Amber,
+            ])
+            ->discoverResources(in: app_path('Filament/Resources'), for: 'App\\Filament\\Resources')
+            ->discoverPages(in: app_path('Filament/Pages'), for: 'App\\Filament\\Pages')
+            ->pages([
+                Pages\Dashboard::class,
+            ])
+            ->discoverWidgets(in: app_path('Filament/Widgets'), for: 'App\\Filament\\Widgets')
+            ->widgets([
+                Widgets\AccountWidget::class,
+                Widgets\FilamentInfoWidget::class,
+            ])
+            ->middleware([
+                EncryptCookies::class,
+                AddQueuedCookiesToResponse::class,
+                StartSession::class,
+                AuthenticateSession::class,
+                ShareErrorsFromSession::class,
+                VerifyCsrfToken::class,
+                SubstituteBindings::class,
+                DisableBladeIconComponents::class,
+                DispatchServingFilamentEvent::class,
+                AdminAuthenticate::class,
+            ])
+            ->authMiddleware([
+                Authenticate::class,
+            ]);
+    }
+}

composer.json

@@ -2,11 +2,15 @@
     "name": "laravel/laravel",
     "type": "project",
     "description": "The skeleton application for the Laravel framework.",
-    "keywords": ["laravel", "framework"],
+    "keywords": [
+        "laravel",
+        "framework"
+    ],
     "license": "MIT",
     "require": {
         "php": "^8.1",
         "beyondcode/laravel-websockets": "^1.14",
+        "filament/filament": "3.2",
         "guzzlehttp/guzzle": "^7.8",
         "inertiajs/inertia-laravel": "^0.6.8",
         "laravel/framework": "^10.10",
@@ -18,6 +22,7 @@
         "laravel/socialite": "^5.11",
         "laravel/tinker": "^2.8",
         "nwidart/laravel-modules": "^10.0",
+        "opcodesio/log-viewer": "^3.4",
         "pusher/pusher-php-server": "^7.2",
         "realrashid/sweet-alert": "^7.1",
         "socialiteproviders/discord": "^4.2",
@@ -52,7 +57,8 @@
     "scripts": {
         "post-autoload-dump": [
             "Illuminate\\Foundation\\ComposerScripts::postAutoloadDump",
-            "@php artisan package:discover --ansi"
+            "@php artisan package:discover --ansi",
+            "@php artisan filament:upgrade"
         ],
         "post-update-cmd": [
             "@php artisan vendor:publish --tag=laravel-assets --ansi --force"