From fb21712a6815ff6b4a8a09d7d831ee1f2474f62e Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 19:38:40 -0800
Subject: [PATCH 01/24] Added restore modal HTML

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/layouts/default.blade.php | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/resources/views/layouts/default.blade.php b/resources/views/layouts/default.blade.php
index e9c1553bba..46ca5be033 100644
--- a/resources/views/layouts/default.blade.php
+++ b/resources/views/layouts/default.blade.php
@@ -852,6 +852,28 @@
         </div>
     </div>
 
+
+    <div class="modal modal-warning fade" id="restoreConfirmModal" tabindex="-1" role="dialog" aria-labelledby="restoreConfirmModalLabel" aria-hidden="true">
+        <div class="modal-dialog">
+            <div class="modal-content">
+                <div class="modal-header">
+                    <button type="button" class="close" data-dismiss="modal" aria-hidden="true">&times;</button>
+                    <h4 class="modal-title" id="restoreConfirmModalLabel">&nbsp;</h4>
+                </div>
+                <div class="modal-body"></div>
+                <div class="modal-footer">
+                <form method="post" id="restoreForm" role="form">
+                    {{ csrf_field() }}
+                    {{ method_field('POST') }}
+
+                    <button type="button" class="btn btn-default pull-left" data-dismiss="modal">{{ trans('general.cancel') }}</button>
+                    <button type="submit" class="btn btn-outline" id="dataConfirmOK">{{ trans('general.yes') }}</button>
+                </form>
+                </div>
+            </div>
+        </div>
+    </div>
+
     {{-- Javascript files --}}
     <script src="{{ url(mix('js/dist/all.js')) }}" nonce="{{ csrf_token() }}"></script>
 

From 0e21a9581738cfc9017862eda41bb3aba15082f5 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 19:39:32 -0800
Subject: [PATCH 02/24] Escape error message in asset autdit apI (same as in
 v5)

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Controllers/Api/AssetsController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Controllers/Api/AssetsController.php b/app/Http/Controllers/Api/AssetsController.php
index 6e56b317d2..b1337c45b2 100644
--- a/app/Http/Controllers/Api/AssetsController.php
+++ b/app/Http/Controllers/Api/AssetsController.php
@@ -899,7 +899,7 @@ class AssetsController extends Controller
             }
         }
 
-        return response()->json(Helper::formatStandardApiResponse('error', ['asset_tag'=> e($request->input('asset_tag'))], 'Asset with tag '.$request->input('asset_tag').' not found'));
+        return response()->json(Helper::formatStandardApiResponse('error', ['asset_tag'=> e($request->input('asset_tag'))], 'Asset with tag '.e($request->input('asset_tag')).' not found'));
 
 
 

From 542ab75d892aa1130bb9bf010bcbb340952a5c54 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 19:39:50 -0800
Subject: [PATCH 03/24] Added new backup routes

Signed-off-by: snipe <snipe@snipe.net>
---
 routes/web.php | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/routes/web.php b/routes/web.php
index c1c439638e..a17c511516 100644
--- a/routes/web.php
+++ b/routes/web.php
@@ -189,6 +189,14 @@ Route::group(['prefix' => 'admin', 'middleware' => ['auth', 'authorize:superuser
             [SettingsController::class, 'postBackups']
         )->name('settings.backups.create');
 
+        Route::post('/restore/{filename}', 
+            [SettingsController::class, 'postRestore']
+        )->name('settings.backups.restore');
+
+        Route::post('/upload', 
+            [SettingsController::class, 'postUploadBackup']
+        )->name('settings.backups.upload');
+
         Route::get('/', [SettingsController::class, 'getBackups'])->name('settings.backups.index');
     });
 

From 1b1b54fbf4635d1aadcd0a805d0a6aabddab73d8 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 22:37:49 -0800
Subject: [PATCH 04/24] Add modified_value and modified_display so we can use
 the formatted date but still sort correctly

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Controllers/SettingsController.php | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/app/Http/Controllers/SettingsController.php b/app/Http/Controllers/SettingsController.php
index a52598592f..22a4336e61 100755
--- a/app/Http/Controllers/SettingsController.php
+++ b/app/Http/Controllers/SettingsController.php
@@ -1018,17 +1018,25 @@ class SettingsController extends Controller
         $backup_files = Storage::files($path);
         $files_raw = [];
 
+
         if (count($backup_files) > 0) {
             for ($f = 0; $f < count($backup_files); $f++) {
 
                 // Skip dotfiles like .gitignore and .DS_STORE
                 if ((substr(basename($backup_files[$f]), 0, 1) != '.')) {
+                    //$lastmodified = Carbon::parse(Storage::lastModified($backup_files[$f]))->toDatetimeString();
+                    $file_timestamp = Storage::lastModified($backup_files[$f]);
+
+
                     $files_raw[] = [
                         'filename' => basename($backup_files[$f]),
                         'filesize' => Setting::fileSizeConvert(Storage::size($backup_files[$f])),
-                        'modified' => Storage::lastModified($backup_files[$f]),
+                        'modified_value' => $file_timestamp,
+                        'modified_display' => Helper::getFormattedDateObject($file_timestamp, $type = 'datetime', false),
+                        
                     ];
                 }
+               
             }
         }
 

From 76506dabbfdc3d405bd1425aff3c3bec2b9410bc Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 22:38:14 -0800
Subject: [PATCH 05/24] Made helpers call full namespace (tho I have no idea
 why this was necessary)

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Requests/AssetFileRequest.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/Http/Requests/AssetFileRequest.php b/app/Http/Requests/AssetFileRequest.php
index 1aa1fadb89..f8631f23ba 100644
--- a/app/Http/Requests/AssetFileRequest.php
+++ b/app/Http/Requests/AssetFileRequest.php
@@ -21,7 +21,7 @@ class AssetFileRequest extends Request
      */
     public function rules()
     {
-        $max_file_size = Helper::file_upload_max_size();
+        $max_file_size = \App\Helpers\Helper::file_upload_max_size();
 
         return [
           'file.*' => 'required|mimes:png,gif,jpg,svg,jpeg,doc,docx,pdf,txt,zip,rar,xls,xlsx,lic,xml,rtf,webp|max:'.$max_file_size,

From 3b25093aeb0bf4f6d4e56d03396d05ea69cf47de Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 22:38:27 -0800
Subject: [PATCH 06/24] Removed noisy debugging

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Requests/ImageUploadRequest.php | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/app/Http/Requests/ImageUploadRequest.php b/app/Http/Requests/ImageUploadRequest.php
index c492011110..45d7bca5e6 100644
--- a/app/Http/Requests/ImageUploadRequest.php
+++ b/app/Http/Requests/ImageUploadRequest.php
@@ -90,11 +90,6 @@ class ImageUploadRequest extends Request
             $use_db_field = $db_fieldname;
         }
 
-        \Log::info('Image path is: '.$path);
-        \Log::debug('Type is: '.$type);
-        \Log::debug('Form fieldname is: '.$form_fieldname);
-        \Log::debug('DB fieldname is: '.$use_db_field);
-        \Log::debug('Trying to upload to '. $path);
         
         // ConvertBase64ToFiles just changes object type, 
         // as it cannot currently insert files to $this->files

From 05c6254fdc223ab1e42bbcdc000e03896310b108 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Tue, 9 Nov 2021 22:39:33 -0800
Subject: [PATCH 07/24] Updated snipeit.js with "restore" modal code

Signed-off-by: snipe <snipe@snipe.net>
---
 package-lock.json              |   2 +-
 public/css/build/overrides.css | Bin 11384 -> 11383 bytes
 public/css/dist/all.css        | Bin 475782 -> 475783 bytes
 public/js/build/app.js         | Bin 1547422 -> 1548459 bytes
 public/js/dist/all.js          | Bin 3321602 -> 3322639 bytes
 public/js/snipeit.js           | Bin 26045 -> 27003 bytes
 public/mix-manifest.json       |   4 ++--
 resources/assets/js/snipeit.js |  32 ++++++++++++++++++++++++++++++++
 8 files changed, 35 insertions(+), 3 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 463ca7dc3d..05d2f032f7 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -15845,7 +15845,7 @@
     "jquery": {
       "version": "3.6.0",
       "resolved": "https://registry.npmjs.org/jquery/-/jquery-3.6.0.tgz",
-      "integrity": "sha512-JVzAR/AjBvVt2BmYhxRCSYysDsPcssdmTFnzyLEts9qNwmjmu4JTAMYubEfwVOSwpQ1I1sKKFcxhZCI2buerfw=="
+      "integrity": "sha1-xyoJ8Vwb3OFC9J2/EXC9+K2sJHA="
     },
     "jquery-form-validator": {
       "version": "2.3.79",
diff --git a/public/css/build/overrides.css b/public/css/build/overrides.css
index 2ce2c232726c4b38ce0dc988652b70369bdf22c4..c676b59b66bd85c0854bee2dc1f8f459753bce3c 100644
GIT binary patch
delta 15
Wcmewn@jYULvd&~fZG*`nIw}A<F$MJi

delta 15
Wcmew!@grh`vd&}!ZNtgIIw}A<Dh2ca

diff --git a/public/css/dist/all.css b/public/css/dist/all.css
index d0ae4b8a21b9c49e3e40aafd1a6dcb59fb022f3e..269ae29c62c523d3c2b7881501e5c12f25b5ddd2 100644
GIT binary patch
delta 32
ocmZo`m2Gd8ZD?U^VQOJ+VQFFA!sc*k`lC;5!rOx`v6&PA0K^##N&o-=

delta 32
ocmZo~m2GR4ZD?U^VQOJ+VQFFA!sc*k`jby=LfeBcv6&PA0K_f~OaK4?

diff --git a/public/js/build/app.js b/public/js/build/app.js
index 041da5eeed77bc6e14a9da61f5b005918a1520d1..4bb786901303e2ac9fb0e8451f48403d8e1afde1 100644
GIT binary patch
delta 470
zcmY+;ze_?<6bEqBQoEJ?Fog!`ilXm5!uJPgOVQ|%wN=8)chv{)hun9aA_yFuYUmEB
zMSBzxIz(gA(hvk9v^BL9RDVK8&A{OUm+v|EoO5xXy?V&rc4}@)Y-UmZT8p|fgQuf@
z5+0;v%`)>EHPV)<=y(N3g?Qwz!f)!=zR@ne(};M6<w_$p9R1jc|Ht2r`Y=8^+gQZ1
zjB|q>SS31P1RK3wsP$I6bon#=gNPs|C^1z+1u@ympFanBi_1E*6M0Q%gz}%&(CP8J
z*TZwoYHvK$T3^j>2p5^5ubWI`8nFdd)cQY&y{+vgOvNB#tNU{3<ewiXHPUG_D&l>F
zF(s@_O}xpdW)_5A440I2B}W7~CKr}*Jf;{WF0~^(+z#?|+qaZN2S}DAgeAOX6$(1R
zs%9&DI#D5#QN`+1t&RgYfeVa*ao`3X-~|%^fk`k0rhyO4fLSmH=7Aq9fWV#A3Cd5u
D%q6{$

delta 188
zcmZ2|FmB$?xDA(QOlF(IH~G;F>CFandYC60%wgO7eg0BWp3IWe++w}7%$$<cqRAhe
zWT($x#l=4P+}3s$kj&=jZC7Q5N-{FRN>YoXGh_Ag5_3~G2V7}jnw)rDrn&BVd);+L
zAZ7w$W*}w(Vpbq#17da{<^W<&Am##MZXo6XVqPHT17dz4764*FAQl2*VIUR(V$tn&
J*Tr;C0s#CKS5*K2

diff --git a/public/js/dist/all.js b/public/js/dist/all.js
index f22f12b489288e6f5e2d50405d5579c3dab0b386..35aa39b9dd96b1fc4cd40dca4a6f69bd65a85957 100644
GIT binary patch
delta 502
zcmY+;Jxe1|6b4{oG-}+9Mx(Ade%zRt%=j^*l`OiIteu702#ZC~8y%QT<jxHUB8r@4
zJ8guE_!B1C#)a8ZM2ihrETrB>qP73P6EzDd9(cL$IoxyduM#+WtOSlRfGrrrR&2u%
zwqpl&Vi>#d1AfE^c4H4lu^0O=hW$8zgZK%DF#ZeXy^!FpEC{veK`ONNmj6zgadqUu
ze&Vg<O9dxqiTp}oJ8QEqETv_V?~Up$K`GKarmjnnY;O!am0+>)iB^Wp|6;ui7meb%
z46AC&gSd)%5c4-YI1l!%y<WpL-4NW_=0ejK{K`+b@2_taZK*DA;i~O5tJT(_n9uLv
zW`ym^y#3XYmbAF5$z97ea+b~AZ`P*aWb<72KR>{6%W^nZbhe~baGDofDRg!aW=wEd
z6b@UL!g6-B`ZJxeXJ@y#W~R-ZX_iT6^Ly&F3Q6_73IodQ7>)!N!iVa24Mu)cYe0rc
nJ&%$x!bpOQlO#!z36drmq7j`;k|{DxW{5#dGV51sbH<++#;DD{

delta 254
zcmeBwc8am--YLe07RDB)7UmX~7S<NF7WNj77S0x~7VZ|F7Ty-V7XB827Qq&w7U33=
z7SR^57V#E|7ReT=Ez;(zr)RB`=9})eT3UMhly%ZQ%-cgZNv{@V$t+3Doz8YbdNY`{
zeg6sRtFl5R8JWd;X_+~x#nG9udU=VtsoS?alWt&=($~`BQqWQe$xlzuNmWS6EKW?y
zNlgI?>9;?4DGkIjKr9QyazHE(#0o&H2*gT2tPI2|K&%SHYCx<G#2P@X3B+1JtPR9E
UK&%VIdO!>^(_s69mxlT$0YFo76951J

diff --git a/public/js/snipeit.js b/public/js/snipeit.js
index cfa646d9e5717cd8ffb67721119a2b89ac38d293..81c79c884b792ba343347b4e4b43d23029d4258e 100644
GIT binary patch
delta 97
zcmdmcn(_A~#tpy4#JCiIKwn=WIX^EgvnW@gD7CmGzi4uTuqs;+gxMv0f*m57x;ae5
ciIEqo6e>Me^cOEwS~oX8B{667VlgRy0QXuX&;S4c

delta 14
Wcmex;iE-~~#tpy4Ht&==<Ocvf_y?~5

diff --git a/public/mix-manifest.json b/public/mix-manifest.json
index cd55b16f02..8c393d17f3 100644
--- a/public/mix-manifest.json
+++ b/public/mix-manifest.json
@@ -1,5 +1,5 @@
 {
-    "/js/build/app.js": "/js/build/app.js?id=c8a70594c0d99275266d",
+    "/js/build/app.js": "/js/build/app.js?id=202aad1c623e7f3c560c",
     "/css/dist/skins/skin-blue.css": "/css/dist/skins/skin-blue.css?id=83e39e254b7f9035eddc",
     "/css/build/overrides.css": "/css/build/overrides.css?id=b1866ec98d44c0a8ceea",
     "/css/build/app.css": "/css/build/app.css?id=61d5535cb27cce41d422",
@@ -26,7 +26,7 @@
     "/css/dist/bootstrap-table.css": "/css/dist/bootstrap-table.css?id=93c24b4c89490bbfd73e",
     "/js/build/vendor.js": "/js/build/vendor.js?id=651427cc4b45d8e68d0c",
     "/js/dist/bootstrap-table.js": "/js/dist/bootstrap-table.js?id=867755a1544f6c0ea828",
-    "/js/dist/all.js": "/js/dist/all.js?id=a233dcde4650f5d34491",
+    "/js/dist/all.js": "/js/dist/all.js?id=78b490e0623f67ef071d",
     "/css/dist/skins/skin-green.min.css": "/css/dist/skins/skin-green.min.css?id=efda2335fa5243175850",
     "/css/dist/skins/skin-green-dark.min.css": "/css/dist/skins/skin-green-dark.min.css?id=6e35fb4cb2f1063b3047",
     "/css/dist/skins/skin-black.min.css": "/css/dist/skins/skin-black.min.css?id=ec96c42439cdeb022133",
diff --git a/resources/assets/js/snipeit.js b/resources/assets/js/snipeit.js
index c74340b10c..f55d16a879 100755
--- a/resources/assets/js/snipeit.js
+++ b/resources/assets/js/snipeit.js
@@ -84,6 +84,37 @@ var baseUrl = $('meta[name="baseUrl"]').attr('content');
     var Components = {};
     Components.modals = {};
 
+    // confirm restore modal
+    Components.modals.confirmRestore = function() {
+        var $el = $('table');
+
+        var events = {
+            'click': function(evnt) {
+                var $context = $(this);
+                var $restoreConfirmModal = $('#restoreConfirmModal');
+                var href = $context.attr('href');
+                var message = $context.attr('data-content');
+                var title = $context.attr('data-title');
+
+                $('#restoreConfirmModalLabel').text(title);
+                $restoreConfirmModal.find('.modal-body').text(message);
+                $('#restoreForm').attr('action', href);
+                $restoreConfirmModal.modal({
+                    show: true
+                });
+                return false;
+            }
+        };
+
+        var render = function() {
+            $el.on('click', '.restore-asset', events['click']);
+        };
+
+        return {
+            render: render
+        };
+    };
+
     // confirm delete modal
     Components.modals.confirmDelete = function() {
         var $el = $('table');
@@ -121,6 +152,7 @@ var baseUrl = $('meta[name="baseUrl"]').attr('content');
      * Component definition stays out of load event, execution only happens.
      */
     $(function() {
+        new Components.modals.confirmRestore().render();
         new Components.modals.confirmDelete().render();
     });
 }(jQuery, window.snipeit.settings));

From 96f76e1f6b5ddf91c40c2285ebd3fc1217010da4 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 00:07:17 -0800
Subject: [PATCH 08/24] INCOMPLETE: Added restore and upload methods for
 backups

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Controllers/SettingsController.php | 95 ++++++++++++++++++++-
 1 file changed, 94 insertions(+), 1 deletion(-)

diff --git a/app/Http/Controllers/SettingsController.php b/app/Http/Controllers/SettingsController.php
index 22a4336e61..9f15493e21 100755
--- a/app/Http/Controllers/SettingsController.php
+++ b/app/Http/Controllers/SettingsController.php
@@ -11,7 +11,6 @@ use App\Models\Setting;
 use App\Models\User;
 use App\Notifications\FirstAdminNotification;
 use App\Notifications\MailTest;
-use Artisan;
 use Auth;
 use Crypt;
 use DB;
@@ -22,6 +21,8 @@ use Image;
 use Input;
 use Redirect;
 use Response;
+use Illuminate\Support\Str;
+use Illuminate\Support\Facades\Artisan;
 
 /**
  * This controller handles all actions related to Settings for
@@ -1136,6 +1137,98 @@ class SettingsController extends Controller
         }
     }
 
+
+    /**
+     * Uploads a backup file
+     *
+     * @author [A. Gianotto] [<snipe@snipe.net>]
+     *
+     * @since [v6.0]
+     *
+     * @return Redirect
+     */
+
+    public function postUploadBackup(Request $request) {
+
+        $max_file_size = Helper::file_upload_max_size();
+
+        $rules = [
+            'file' => 'required|mimes:zip|max:'.$max_file_size,
+        ];
+
+        $validator = \Validator::make($request->all(), $rules);
+
+        if ($validator->passes()) {
+
+            if ($request->hasFile('file')) {
+
+                $upload_filename = 'uploaded-'.date('U').'-'.Str::slug(pathinfo($request->file('file')->getClientOriginalName(), PATHINFO_FILENAME)).'.zip';
+
+                Storage::putFileAs('app/backups', $request->file('file'), $upload_filename);
+    
+                return redirect()->route('settings.backups.index')->with('success', 'File uploaded');
+    
+            } else {
+                return redirect()->route('settings.backups.index')->with('error', 'No file uploaded');
+            }
+
+        } else {
+            return redirect()->route('settings.backups.index')->withErrors($request->getErrors());
+        }
+        
+    }
+
+    /**
+     * Restore the backup file.
+     *
+     * @author [A. Gianotto] [<snipe@snipe.net>]
+     *
+     * @since [v6.0]
+     *
+     * @return View
+     */
+    public function postRestore($filename = null)
+    {
+        
+        if (! config('app.lock_passwords')) {
+            $path = 'app/backups';
+
+            if (Storage::exists($path.'/'.$filename)) {
+
+                // grab the user's info so we can make sure they exist in the system
+                $user = User::find(Auth::user()->id);
+
+                // run the restore command
+                Artisan::call('snipeit:restore', 
+                    [
+                        '--force' => true, 
+                        '--no-progress' => true, 
+                        'filename' => storage_path($path).'/'.$filename
+                    ]);
+
+                $output = Artisan::output();
+
+
+                // If it's greater than 300, it probably worked
+                if (strlen($output) > 300) {
+                    return redirect()->route('settings.backups.index')->with('success', 'Your system has been restored.');
+
+                } else {
+                    return redirect()->route('settings.backups.index')->with('error', $output);
+
+                }
+                //dd($output);
+
+                // insert the user if they are not there in the old one
+                // log the user out
+            } else {
+                return redirect()->route('settings.backups.index')->with('error', trans('admin/settings/message.backup.file_not_found'));
+            }
+        } else {
+            return redirect()->route('settings.backups.index')->with('error', trans('general.feature_disabled'));
+        }
+    }
+
     /**
      * Return a form to allow a super admin to update settings.
      *

From 76685d7fd31d7bcf8bcaa4daeff482d603b48174 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 00:07:32 -0800
Subject: [PATCH 09/24] Clearer text in restore artisan command

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Console/Commands/RestoreFromBackup.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/Console/Commands/RestoreFromBackup.php b/app/Console/Commands/RestoreFromBackup.php
index 8f8114229e..93aacbeb36 100644
--- a/app/Console/Commands/RestoreFromBackup.php
+++ b/app/Console/Commands/RestoreFromBackup.php
@@ -14,7 +14,7 @@ class RestoreFromBackup extends Command
      */
     protected $signature = 'snipeit:restore 
                                             {--force : Skip the danger prompt; assuming you hit "y"} 
-                                            {filename : The zip file to be migrated}
+                                            {filename : The full path of the .zip file to be migrated}
                                             {--no-progress : Don\'t show a progress bar}';
 
     /**
@@ -22,7 +22,7 @@ class RestoreFromBackup extends Command
      *
      * @var string
      */
-    protected $description = 'Restore from a previously created backup';
+    protected $description = 'Restore from a previously created Snipe-IT backup file';
 
     /**
      * Create a new command instance.
@@ -67,7 +67,7 @@ class RestoreFromBackup extends Command
                 ZipArchive::ER_INCONS => 'Zip archive inconsistent.',
                 ZipArchive::ER_INVAL => 'Invalid argument.',
                 ZipArchive::ER_MEMORY => 'Malloc failure.',
-                ZipArchive::ER_NOENT => 'No such file.',
+                ZipArchive::ER_NOENT => 'No such file ('.$filename.') in directory '.$dir.'.',
                 ZipArchive::ER_NOZIP => 'Not a zip archive.',
                 ZipArchive::ER_OPEN => "Can't open file.",
                 ZipArchive::ER_READ => 'Read error.',

From cf070866f0ee9602e8e4710826afbe5f6236406e Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 00:07:47 -0800
Subject: [PATCH 10/24] INCOMPLETE: Added more generic language strings

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/lang/en/general.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/resources/lang/en/general.php b/resources/lang/en/general.php
index 942947e6c1..c16d464da1 100644
--- a/resources/lang/en/general.php
+++ b/resources/lang/en/general.php
@@ -113,6 +113,8 @@
     'image'                 => 'Image',
     'image_delete'         	=> 'Delete Image',
     'image_upload'         	=> 'Upload Image',
+    'filetypes_accepted_help'    => 'Accepted filetype is :types. Max upload size allowed is :size.|Accepted filetypes are :types. Max upload size allowed is :size.',
+    'filetypes_size_help'   => 'Max upload size allowed is :size.',
     'image_filetypes_help'  => 'Accepted filetypes are jpg, webp, png, gif, and svg. Max upload size allowed is :size.',
     'import'         	    => 'Import',
     'importing'         	=> 'Importing',

From 8590e5d67e6e195402c15a081bd60a17866afd13 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 00:08:15 -0800
Subject: [PATCH 11/24] UNRELATED: fixed wrong html tag for license view badge
 count

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/licenses/view.blade.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/views/licenses/view.blade.php b/resources/views/licenses/view.blade.php
index 5d5eadb880..7e4253f108 100755
--- a/resources/views/licenses/view.blade.php
+++ b/resources/views/licenses/view.blade.php
@@ -47,7 +47,7 @@
               <i class="far fa-list-alt fa-2x" aria-hidden="true"></i>
               </span>
               <span class="hidden-xs hidden-sm">{{ trans('admin/licenses/form.seats') }}</span>
-              <badge class="badge badge-secondary">{{ $license->availCount()->count() }} / {{ $license->seats }}</badge>
+              <span class="badge badge-secondary">{{ $license->availCount()->count() }} / {{ $license->seats }}</span>
 
             </a>
         </li>

From 856b9294f8e5ab63d7307af1df69f26f98fc6450 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 00:08:43 -0800
Subject: [PATCH 12/24] Improved BS tables on backups

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 86 ++++++++++++++++------
 1 file changed, 64 insertions(+), 22 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 78537bb92e..fed72052ed 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -7,7 +7,15 @@
 @stop
 
 @section('header_right')
-    <a href="{{ route('settings.index') }}" class="btn btn-primary"> {{ trans('general.back') }}</a>
+    <a href="{{ route('settings.index') }}" class="btn btn-default pull-right" style="margin-left: 5px;"> 
+      {{ trans('general.back') }}
+    </a>
+
+    <form method="POST" style="display: inline">
+      {{ Form::hidden('_token', csrf_token()) }}
+            <button class="btn btn-primary {{ (config('app.lock_passwords')) ? ' disabled': '' }}">{{ trans('admin/settings/general.generate_backup') }}</button>
+      </form>
+
 @stop
 
 {{-- Page content --}}
@@ -15,10 +23,16 @@
 
 
 <div class="row">
+
   <div class="col-md-9">
+    
     <div class="box box-default">
       <div class="box-body">
+       
+        
+          
         <div class="table-responsive">
+          
             <table
                     data-cookie="true"
                     data-cookie-id-table="system-backups"
@@ -30,10 +44,13 @@
                     id="system-backups"
                     class="table table-striped snipe-table">
             <thead>
-              <th>File</th>
-              <th>Created</th>
-              <th>Size</th>
+              <tr>
+              <th data-sortable="true">File</th>
+              <th data-sortable="true" data-field="modified_display" data-sort-name="modified_value">Created</th>
+              <th data-field="modified_value" data-visible="false"></th>
+              <th data-sortable="true">Size</th>
               <th><span class="sr-only">{{ trans('general.delete') }}</span></th>
+              </tr>
             </thead>
             <tbody>
             @foreach ($files as $file)
@@ -43,7 +60,8 @@
                       {{ $file['filename'] }}
                   </a>
               </td>
-              <td>{{ date("M d, Y g:i A", $file['modified']) }} </td>
+              <td>{{ $file['modified_display'] }} </td>
+              <td>{{ $file['modified_value'] }} </td>
               <td>{{ $file['filesize'] }}</td>
               <td>
 
@@ -53,38 +71,62 @@
                           <i class="fas fa-trash icon-white" aria-hidden="true"></i>
                           <span class="sr-only">{{ trans('general.delete') }}</span>
                       </a>
+
+                     <a data-html="false" 
+                        href="{{ route('settings.backups.restore', $file['filename']) }}" class="btn btn-warning btn-sm restore-asset {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" data-content="Yes, restore it. I acknowledge that this will overwrite any existing data currently in the database. This method does not currently support installations that use S3 for file storage." data-title="Are you sure you wish to restore your database from {{ $file['filename']}}?" onClick="return false;">
+                      <i class="fas fa-retweet" aria-hidden="true"></i>
+                      <span class="sr-only">Restore</span>
+                    </a>
+                     
                   @endcan
               </td>
             </tr>
             @endforeach
             </tbody>
           </table>
-      </div>
-    </div>
-</div>
-</div>
+      </div> <!-- end table-responsive div -->
+    </div> <!-- end box-body div -->
+</div> <!-- end box div -->
+</div> <!-- end col-md div -->
+
    <!-- side address column -->
   <div class="col-md-3">
 
-      <form method="POST">
-        {{ Form::hidden('_token', csrf_token()) }}
+     
+      <p>Backup files are located in: <code>{{ $path  }}</code></p>
 
-          <p>
-              <button class="btn btn-primary {{ (config('app.lock_passwords')) ? ' disabled': '' }}">{{ trans('admin/settings/general.generate_backup') }}</button>
-          </p>
+      <h2>Upload Backup</h2>
 
-           @if (config('app.lock_passwords'))
-              <p class="text-warning"><i class="fas fa-lock"></i> {{ trans('general.feature_disabled') }}</p>
-          @endif
+      
+      <div class="form-group{{ $errors->has('file') ? ' has-error' : '' }}">
+        <div class="col-md-12">
+          
+          {{ Form::open([
+            'method' => 'POST',
+            'route' => 'settings.backups.upload',
+            'files' => true,
+            'class' => 'form-horizontal' ]) }}
 
+            @csrf
 
-      </form>
-      <p>Backup files are located in: {{ $path  }}</p>
+            <input type="file" id="file" name="file" aria-label="file" class="sr-only">
+    
+            <label class="btn btn-default" aria-hidden="true">
+                {{ trans('button.select_file')  }}
+                <input type="file" name="file" class="js-uploadFile" data-maxsize="{{ Helper::file_upload_max_size() }}" accept="application/zip" style="display:none; max-width: 90%" aria-label="file" aria-hidden="true">
+            </label>
+    
+            <p class="help-block" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 3, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>
+            {!! $errors->first('file', '<span class="alert-msg" aria-hidden="true">:message</span>') !!}
 
+            <button>Submit</button>
+          {{ Form::close() }}
+          
+        </div> <!-- end col-md-12 form div -->
+   </div> <!-- end form group div -->
 
-
-  </div>
-
+  </div> <!-- end col-md-3 div -->
+</div> <!-- end row div -->
 
 @stop
 

From 457c6080cc60da50639c118ef1cb6520525327cf Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 01:43:45 -0800
Subject: [PATCH 13/24] Better handling if there was no file uploaded

Signed-off-by: snipe <snipe@snipe.net>
---
 app/Http/Controllers/SettingsController.php | 77 ++++++++++++---------
 1 file changed, 45 insertions(+), 32 deletions(-)

diff --git a/app/Http/Controllers/SettingsController.php b/app/Http/Controllers/SettingsController.php
index 9f15493e21..716743a175 100755
--- a/app/Http/Controllers/SettingsController.php
+++ b/app/Http/Controllers/SettingsController.php
@@ -1150,31 +1150,32 @@ class SettingsController extends Controller
 
     public function postUploadBackup(Request $request) {
 
-        $max_file_size = Helper::file_upload_max_size();
-
-        $rules = [
-            'file' => 'required|mimes:zip|max:'.$max_file_size,
-        ];
-
-        $validator = \Validator::make($request->all(), $rules);
-
-        if ($validator->passes()) {
-
-            if ($request->hasFile('file')) {
-
-                $upload_filename = 'uploaded-'.date('U').'-'.Str::slug(pathinfo($request->file('file')->getClientOriginalName(), PATHINFO_FILENAME)).'.zip';
-
-                Storage::putFileAs('app/backups', $request->file('file'), $upload_filename);
-    
-                return redirect()->route('settings.backups.index')->with('success', 'File uploaded');
-    
-            } else {
-                return redirect()->route('settings.backups.index')->with('error', 'No file uploaded');
-            }
-
+        if (!$request->hasFile('file')) {
+            return redirect()->route('settings.backups.index')->with('error', 'No file uploaded');
         } else {
-            return redirect()->route('settings.backups.index')->withErrors($request->getErrors());
+            $max_file_size = Helper::file_upload_max_size();
+
+            $rules = [
+                'file' => 'required|mimes:zip|max:'.$max_file_size,
+            ];
+
+            $validator = \Validator::make($request->all(), $rules);
+
+            if ($validator->passes()) {
+
+
+
+                    $upload_filename = 'uploaded-'.date('U').'-'.Str::slug(pathinfo($request->file('file')->getClientOriginalName(), PATHINFO_FILENAME)).'.zip';
+
+                    Storage::putFileAs('app/backups', $request->file('file'), $upload_filename);
+        
+                    return redirect()->route('settings.backups.index')->with('success', 'File uploaded');
+            } else {
+                return redirect()->route('settings.backups.index')->withErrors($request->getErrors());
+            }
         }
+
+        
         
     }
 
@@ -1198,29 +1199,41 @@ class SettingsController extends Controller
                 // grab the user's info so we can make sure they exist in the system
                 $user = User::find(Auth::user()->id);
 
+
+                // TODO: run a backup 
+
+                // TODO: add db:wipe 
+
+
                 // run the restore command
                 Artisan::call('snipeit:restore', 
-                    [
-                        '--force' => true, 
-                        '--no-progress' => true, 
-                        'filename' => storage_path($path).'/'.$filename
-                    ]);
+                [
+                    '--force' => true, 
+                    '--no-progress' => true, 
+                    'filename' => storage_path($path).'/'.$filename
+                ]);
 
                 $output = Artisan::output();
-
-
+                    
+            
                 // If it's greater than 300, it probably worked
                 if (strlen($output) > 300) {
                     return redirect()->route('settings.backups.index')->with('success', 'Your system has been restored.');
-
                 } else {
                     return redirect()->route('settings.backups.index')->with('error', $output);
 
                 }
                 //dd($output);
 
-                // insert the user if they are not there in the old one
+                // TODO: insert the user if they are not there in the old one
+                
+
+
+
                 // log the user out
+                // \Auth::logout();
+
+
             } else {
                 return redirect()->route('settings.backups.index')->with('error', trans('admin/settings/message.backup.file_not_found'));
             }

From 230a56814585b66d042dd4c400e63f47c72134ad Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 01:44:11 -0800
Subject: [PATCH 14/24] Added help text and more info in the modal

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 69 +++++++++++++---------
 1 file changed, 41 insertions(+), 28 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index fed72052ed..90d17b0d7c 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -1,4 +1,6 @@
-@extends('layouts/default')
+@extends('layouts/default', [
+  'helpText' => 'Backup files are located in: <code>'.$path.'</code>',
+])
 
 {{-- Page title --}}
 @section('title')
@@ -72,8 +74,8 @@
                           <span class="sr-only">{{ trans('general.delete') }}</span>
                       </a>
 
-                     <a data-html="false" 
-                        href="{{ route('settings.backups.restore', $file['filename']) }}" class="btn btn-warning btn-sm restore-asset {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" data-content="Yes, restore it. I acknowledge that this will overwrite any existing data currently in the database. This method does not currently support installations that use S3 for file storage." data-title="Are you sure you wish to restore your database from {{ $file['filename']}}?" onClick="return false;">
+                     <a data-html="true" 
+                        href="{{ route('settings.backups.restore', $file['filename']) }}" class="btn btn-warning btn-sm restore-asset {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" data-content="Yes, restore it. I acknowledge that this will overwrite any existing data currently in the database. This method does not currently support installations that use S3 for file storage. This will also log out all of your existing users (including you)." data-title="Are you sure you wish to restore your database from {{ $file['filename']}}?" onClick="return false;">
                       <i class="fas fa-retweet" aria-hidden="true"></i>
                       <span class="sr-only">Restore</span>
                     </a>
@@ -91,37 +93,48 @@
 
    <!-- side address column -->
   <div class="col-md-3">
+   <h2 style="margin-top: 0px">Upload Backup</h2>
 
-     
-      <p>Backup files are located in: <code>{{ $path  }}</code></p>
+      {{ Form::open([
+        'method' => 'POST',
+        'route' => 'settings.backups.upload',
+        'files' => true,
+        'class' => 'form-horizontal' ]) }}
 
-      <h2>Upload Backup</h2>
+        @csrf
 
-      
-      <div class="form-group{{ $errors->has('file') ? ' has-error' : '' }}">
+        
+      <div class="form-group {{ $errors->has((isset($fieldname) ? $fieldname : 'image')) ? 'has-error' : '' }}">
+        <div class="col-md-8 col-xs-8">
+            <!-- screen reader only -->
+            <input type="file" id="file" name="file" aria-label="file" class="sr-only">
+
+             <!-- displayed on screen -->
+            <label class="btn btn-default col-md-12 col-xs-12" aria-hidden="true">
+                {{ trans('button.select_file')  }}
+                <input type="file" name="file" class="js-uploadFile" id="uploadFile" data-maxsize="{{ Helper::file_upload_max_size() }}" accept="application/zip" style="display:none;" aria-label="file" aria-hidden="true">
+            </label>   
+
+        </div>
+        <div class="col-md-4 col-xs-4">
+            <button class="btn btn-primary col-md-12 col-xs-12">Upload</button>
+        </div>
         <div class="col-md-12">
           
-          {{ Form::open([
-            'method' => 'POST',
-            'route' => 'settings.backups.upload',
-            'files' => true,
-            'class' => 'form-horizontal' ]) }}
-
-            @csrf
-
-            <input type="file" id="file" name="file" aria-label="file" class="sr-only">
-    
-            <label class="btn btn-default" aria-hidden="true">
-                {{ trans('button.select_file')  }}
-                <input type="file" name="file" class="js-uploadFile" data-maxsize="{{ Helper::file_upload_max_size() }}" accept="application/zip" style="display:none; max-width: 90%" aria-label="file" aria-hidden="true">
-            </label>
-    
-            <p class="help-block" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 3, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>
-            {!! $errors->first('file', '<span class="alert-msg" aria-hidden="true">:message</span>') !!}
-
-            <button>Submit</button>
-          {{ Form::close() }}
+          <p class="label label-default col-md-12" style="font-size: 120%!important; margin-top: 10px; margin-bottom: 10px;" id="uploadFile-info"></p>
           
+          <p class="help-block" style="margin-top: 10px; margin-bottom: 10px;" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 3, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>     
+          {!! $errors->first('image', '<span class="alert-msg" aria-hidden="true">:message</span>') !!}
+
+        </div>
+        
+        
+    </div>
+    
+    {{ Form::close() }}
+
+      
+    
         </div> <!-- end col-md-12 form div -->
    </div> <!-- end form group div -->
 

From ec2a3b0f35af3654ca076d87c60bad5b913cd0dd Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 01:44:34 -0800
Subject: [PATCH 15/24] Updated label names

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/layouts/default.blade.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/resources/views/layouts/default.blade.php b/resources/views/layouts/default.blade.php
index 46ca5be033..0138a61923 100644
--- a/resources/views/layouts/default.blade.php
+++ b/resources/views/layouts/default.blade.php
@@ -853,12 +853,12 @@
     </div>
 
 
-    <div class="modal modal-warning fade" id="restoreConfirmModal" tabindex="-1" role="dialog" aria-labelledby="restoreConfirmModalLabel" aria-hidden="true">
+    <div class="modal modal-warning fade" id="restoreConfirmModal" tabindex="-1" role="dialog" aria-labelledby="confirmModalLabel" aria-hidden="true">
         <div class="modal-dialog">
             <div class="modal-content">
                 <div class="modal-header">
                     <button type="button" class="close" data-dismiss="modal" aria-hidden="true">&times;</button>
-                    <h4 class="modal-title" id="restoreConfirmModalLabel">&nbsp;</h4>
+                    <h4 class="modal-title" id="confirmModalLabel">&nbsp;</h4>
                 </div>
                 <div class="modal-body"></div>
                 <div class="modal-footer">

From 2b6614e2dd943594a3a6badafc3f23fe7f6b46a7 Mon Sep 17 00:00:00 2001
From: Brady Wetherington <bwetherington@grokability.com>
Date: Wed, 10 Nov 2021 12:44:19 -0800
Subject: [PATCH 16/24] Tweak Restore command to _also_ run via webserver via
 Artisan::call()

---
 app/Console/Commands/RestoreFromBackup.php | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/app/Console/Commands/RestoreFromBackup.php b/app/Console/Commands/RestoreFromBackup.php
index 93aacbeb36..49243ae3c1 100644
--- a/app/Console/Commands/RestoreFromBackup.php
+++ b/app/Console/Commands/RestoreFromBackup.php
@@ -34,6 +34,8 @@ class RestoreFromBackup extends Command
         parent::__construct();
     }
 
+    public static $buffer_size = 1024 * 1024;  // use a 1MB buffer, ought to work fine for most cases?
+
     /**
      * Execute the console command.
      *
@@ -42,7 +44,10 @@ class RestoreFromBackup extends Command
     public function handle()
     {
         $dir = getcwd();
-        echo "Current working directory is: $dir\n";
+        if( $dir != base_path() ) { // usually only the case when running via webserver, not via command-line
+            \Log::debug("Current working directory is: $dir, changing directory to: ".base_path());
+            chdir(base_path()); // TODO - is this *safe* to change on a running script?!
+        }
         //
         $filename = $this->argument('filename');
 
@@ -144,7 +149,7 @@ class RestoreFromBackup extends Command
                 continue;
             }
             if (@pathinfo($raw_path)['extension'] == 'sql') {
-                echo "Found a sql file!\n";
+                \Log::debug("Found a sql file!\n");
                 $sqlfiles[] = $raw_path;
                 $sqlfile_indices[] = $i;
                 continue;
@@ -206,7 +211,9 @@ class RestoreFromBackup extends Command
 
         $env_vars = getenv();
         $env_vars['MYSQL_PWD'] = config('database.connections.mysql.password');
-        $proc_results = proc_open('mysql -h '.escapeshellarg(config('database.connections.mysql.host')).' -u '.escapeshellarg(config('database.connections.mysql.username')).' '.escapeshellarg(config('database.connections.mysql.database')), // yanked -p since we pass via ENV
+        // TODO notes: we are stealing the dump_binary_path (which *probably* also has your copy of the mysql binary in it. But it might not, so we might need to extend this)
+        //             we unilaterally prepend a slash to the `mysql` command. This might mean your path could look like /blah/blah/blah//mysql - which should be fine. But maybe in some environments it isn't?
+        $proc_results = proc_open(config('database.connections.mysql.dump.dump_binary_path').'/mysql -h '.escapeshellarg(config('database.connections.mysql.host')).' -u '.escapeshellarg(config('database.connections.mysql.username')).' '.escapeshellarg(config('database.connections.mysql.database')), // yanked -p since we pass via ENV
                                   [0 => ['pipe', 'r'], 1 => ['pipe', 'w'], 2 => ['pipe', 'w']],
                                   $pipes,
                                   null,
@@ -234,7 +241,7 @@ class RestoreFromBackup extends Command
             return false;
         }
 
-        while (($buffer = fgets($sql_contents)) !== false) {
+        while (($buffer = fgets($sql_contents, self::$buffer_size)) !== false) {
             //$this->info("Buffer is: '$buffer'");
             $bytes_written = fwrite($pipes[0], $buffer);
             if ($bytes_written === false) {
@@ -273,7 +280,7 @@ class RestoreFromBackup extends Command
             $fp = $za->getStream($ugly_file_name);
             //$this->info("Weird problem, here are file details? ".print_r($file_details,true));
             $migrated_file = fopen($file_details['dest'].'/'.basename($pretty_file_name), 'w');
-            while (($buffer = fgets($fp)) !== false) {
+            while (($buffer = fgets($fp, self::$buffer_size)) !== false) {
                 fwrite($migrated_file, $buffer);
             }
             fclose($migrated_file);

From f8cf65bbb3de5d50e835de5eeb6a829587b247f4 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 13:01:02 -0800
Subject: [PATCH 17/24] Small layout fixes

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 64 ++++++++++++++++++----
 1 file changed, 54 insertions(+), 10 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 90d17b0d7c..004f4da50a 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -1,6 +1,4 @@
-@extends('layouts/default', [
-  'helpText' => 'Backup files are located in: <code>'.$path.'</code>',
-])
+@extends('layouts/default')
 
 {{-- Page title --}}
 @section('title')
@@ -26,7 +24,7 @@
 
 <div class="row">
 
-  <div class="col-md-9">
+  <div class="col-md-8">
     
     <div class="box box-default">
       <div class="box-body">
@@ -92,7 +90,7 @@
 </div> <!-- end col-md div -->
 
    <!-- side address column -->
-  <div class="col-md-3">
+  <div class="col-md-4">
    <h2 style="margin-top: 0px">Upload Backup</h2>
 
       {{ Form::open([
@@ -100,7 +98,6 @@
         'route' => 'settings.backups.upload',
         'files' => true,
         'class' => 'form-horizontal' ]) }}
-
         @csrf
 
         
@@ -111,13 +108,14 @@
 
              <!-- displayed on screen -->
             <label class="btn btn-default col-md-12 col-xs-12" aria-hidden="true">
+              <i class="fas fa-paperclip" aria-hidden="true"></i>
                 {{ trans('button.select_file')  }}
                 <input type="file" name="file" class="js-uploadFile" id="uploadFile" data-maxsize="{{ Helper::file_upload_max_size() }}" accept="application/zip" style="display:none;" aria-label="file" aria-hidden="true">
             </label>   
 
         </div>
         <div class="col-md-4 col-xs-4">
-            <button class="btn btn-primary col-md-12 col-xs-12">Upload</button>
+            <button class="btn btn-primary col-md-12 col-xs-12" id="uploadButton" disabled>Upload</button>
         </div>
         <div class="col-md-12">
           
@@ -126,13 +124,40 @@
           <p class="help-block" style="margin-top: 10px; margin-bottom: 10px;" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 3, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>     
           {!! $errors->first('image', '<span class="alert-msg" aria-hidden="true">:message</span>') !!}
 
-        </div>
-        
-        
+        </div>        
     </div>
     
     {{ Form::close() }}
 
+    <h3>Restoring from Backup</h3>
+
+    <div class="alert alert-warning fade in">
+      <p>You can use the restore (<i class="text-white fas fa-retweet" aria-hidden="true"></i>) button to restore from a previous backup, however there are a few things you should know: </p>
+    </div>
+
+
+      
+      <ul class="list-unstyled">
+        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
+          Your entire database and any uploaded files will be completely replaced by what's in the backup file.
+          <br><br>
+        </li>
+        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
+            Very large backups may time out on the restore attempt and may still need to be run via command line. 
+            <br><br>
+        </li>
+        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
+          This does not currently work with S3 file storage.
+          <br><br>
+        </li>
+        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
+          You will be logged out after your restore is complete.</li>
+      </ul>  
+      
+
+      <br><br>
+    <p>Backup files are located in: <code>{{ $path }}</code></p>
+
       
     
         </div> <!-- end col-md-12 form div -->
@@ -144,6 +169,25 @@
 @stop
 
 @section('moar_scripts')
+
     @include ('partials.bootstrap-table')
+
+    <script>
+      $(document).ready(function() {
+        
+        $('#uploadFile').on('keyup', function() {
+          let empty = false;
+
+          $('#uploadFile').each(function() {
+            empty = $(this).val().length == 0;
+          });
+
+          if (empty)
+            $('#uploadButton').attr('disabled', 'disabled');
+          else
+            $('#uploadButton').attr('disabled', false);
+        });
+      });
+  </script>
 @stop
 

From b069eec43ac2af5b826718fccd20c793f7d136d7 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 16:01:22 -0800
Subject: [PATCH 18/24] Fixed upload disabled button

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 22 +++++++++-------------
 1 file changed, 9 insertions(+), 13 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 004f4da50a..1af448e7cc 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -67,13 +67,12 @@
 
                   @can('superadmin')
                       <a data-html="false"
-                         class="btn delete-asset btn-danger btn-sm {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" href=" {{ route('settings.backups.destroy', $file['filename']) }}" data-content="{{ trans('admin/settings/message.backup.delete_confirm') }}" data-title="{{ trans('general.delete') }}  {{ htmlspecialchars($file['filename']) }} ?" onClick="return false;">
+                         class="btn delete-asset btn-danger btn-sm {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" href="{{ route('settings.backups.destroy', $file['filename']) }}" data-content="{{ trans('admin/settings/message.backup.delete_confirm') }}" data-title="{{ trans('general.delete') }}  {{ e($file['filename']) }} ?" onClick="return false;">
                           <i class="fas fa-trash icon-white" aria-hidden="true"></i>
                           <span class="sr-only">{{ trans('general.delete') }}</span>
                       </a>
 
-                     <a data-html="true" 
-                        href="{{ route('settings.backups.restore', $file['filename']) }}" class="btn btn-warning btn-sm restore-asset {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" data-content="Yes, restore it. I acknowledge that this will overwrite any existing data currently in the database. This method does not currently support installations that use S3 for file storage. This will also log out all of your existing users (including you)." data-title="Are you sure you wish to restore your database from {{ $file['filename']}}?" onClick="return false;">
+                     <a data-html="true" href="{{ route('settings.backups.restore', $file['filename']) }}" class="btn btn-warning btn-sm restore-asset {{ (config('app.lock_passwords')) ? ' disabled': '' }}" data-toggle="modal" data-content="Yes, restore it. I acknowledge that this will overwrite any existing data currently in the database. This will also log out all of your existing users (including you)." data-title="Are you sure you wish to restore your database from {{ e($file['filename']) }}?" onClick="return false;">
                       <i class="fas fa-retweet" aria-hidden="true"></i>
                       <span class="sr-only">Restore</span>
                     </a>
@@ -175,17 +174,14 @@
     <script>
       $(document).ready(function() {
         
-        $('#uploadFile').on('keyup', function() {
-          let empty = false;
+        $("#uploadFile").on('change',function(event){
 
-          $('#uploadFile').each(function() {
-            empty = $(this).val().length == 0;
-          });
-
-          if (empty)
-            $('#uploadButton').attr('disabled', 'disabled');
-          else
-            $('#uploadButton').attr('disabled', false);
+            if ($('#uploadFile').val().length == 0) {
+              $("#uploadButton").attr("disabled", true);
+            } else {
+              $('#uploadButton').removeAttr('disabled');
+            }
+            
         });
       });
   </script>

From c2b5f9b372597dcb24a5de5ef48f89acba65fc19 Mon Sep 17 00:00:00 2001
From: Brady Wetherington <bwetherington@grokability.com>
Date: Wed, 10 Nov 2021 17:08:04 -0800
Subject: [PATCH 19/24] Cleaned up the output and added some better checks for
 errors

---
 app/Console/Commands/RestoreFromBackup.php | 17 +++++++++++++----
 1 file changed, 13 insertions(+), 4 deletions(-)

diff --git a/app/Console/Commands/RestoreFromBackup.php b/app/Console/Commands/RestoreFromBackup.php
index 49243ae3c1..0ebda27d89 100644
--- a/app/Console/Commands/RestoreFromBackup.php
+++ b/app/Console/Commands/RestoreFromBackup.php
@@ -149,7 +149,7 @@ class RestoreFromBackup extends Command
                 continue;
             }
             if (@pathinfo($raw_path)['extension'] == 'sql') {
-                \Log::debug("Found a sql file!\n");
+                \Log::debug("Found a sql file!");
                 $sqlfiles[] = $raw_path;
                 $sqlfile_indices[] = $i;
                 continue;
@@ -213,7 +213,11 @@ class RestoreFromBackup extends Command
         $env_vars['MYSQL_PWD'] = config('database.connections.mysql.password');
         // TODO notes: we are stealing the dump_binary_path (which *probably* also has your copy of the mysql binary in it. But it might not, so we might need to extend this)
         //             we unilaterally prepend a slash to the `mysql` command. This might mean your path could look like /blah/blah/blah//mysql - which should be fine. But maybe in some environments it isn't?
-        $proc_results = proc_open(config('database.connections.mysql.dump.dump_binary_path').'/mysql -h '.escapeshellarg(config('database.connections.mysql.host')).' -u '.escapeshellarg(config('database.connections.mysql.username')).' '.escapeshellarg(config('database.connections.mysql.database')), // yanked -p since we pass via ENV
+        $mysql_binary = config('database.connections.mysql.dump.dump_binary_path').'/mysql';
+        if( ! file_exists($mysql_binary) ) {
+            return $this->error("mysql tool at: '$mysql_binary' does not exist, cannot restore. Please edit DB_DUMP_PATH in your .env to point to a directory that contains the mysqldump and mysql binary");
+        }
+        $proc_results = proc_open("$mysql_binary -h ".escapeshellarg(config('database.connections.mysql.host')).' -u '.escapeshellarg(config('database.connections.mysql.username')).' '.escapeshellarg(config('database.connections.mysql.database')), // yanked -p since we pass via ENV
                                   [0 => ['pipe', 'r'], 1 => ['pipe', 'w'], 2 => ['pipe', 'w']],
                                   $pipes,
                                   null,
@@ -240,9 +244,10 @@ class RestoreFromBackup extends Command
 
             return false;
         }
-
+        $bytes_read = 0;
         while (($buffer = fgets($sql_contents, self::$buffer_size)) !== false) {
-            //$this->info("Buffer is: '$buffer'");
+            $bytes_read += strlen($buffer);
+            // \Log::debug("Buffer is: '$buffer'");
             $bytes_written = fwrite($pipes[0], $buffer);
             if ($bytes_written === false) {
                 $stdout = fgets($pipes[1]);
@@ -253,6 +258,10 @@ class RestoreFromBackup extends Command
                 return false;
             }
         }
+        if (!feof($sql_contents) || $bytes_read == 0) {
+            return $this->error("Not at end of file for sql file, or zero bytes read. aborting!");
+        }
+    
         fclose($pipes[0]);
         fclose($sql_contents);
         

From e2702186a9b6b0e7ecc8654e9f8c3ad036fb1e16 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 17:48:59 -0800
Subject: [PATCH 20/24] Slightly reworked UI

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 68 ++++++++++++----------
 1 file changed, 38 insertions(+), 30 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 1af448e7cc..1a4c27489a 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -90,8 +90,20 @@
 
    <!-- side address column -->
   <div class="col-md-4">
-   <h2 style="margin-top: 0px">Upload Backup</h2>
 
+    <div class="box box-default">
+      <div class="box-header with-border">
+        <h2 class="box-title">
+          <i class="far fa-file-archive" aria-hidden="true"></i>
+          Upload Backup</h2>
+        <div class="box-tools pull-right">
+        </div>
+      </div><!-- /.box-header -->
+
+      <div class="box-body">
+
+        <p>Backup files on the server are stored in: <code>{{ $path }}</code></p>
+        
       {{ Form::open([
         'method' => 'POST',
         'route' => 'settings.backups.upload',
@@ -100,7 +112,7 @@
         @csrf
 
         
-      <div class="form-group {{ $errors->has((isset($fieldname) ? $fieldname : 'image')) ? 'has-error' : '' }}">
+      <div class="form-group {{ $errors->has((isset($fieldname) ? $fieldname : 'image')) ? 'has-error' : '' }}" style="margin-bottom: 0px;">
         <div class="col-md-8 col-xs-8">
             <!-- screen reader only -->
             <input type="file" id="file" name="file" aria-label="file" class="sr-only">
@@ -120,44 +132,40 @@
           
           <p class="label label-default col-md-12" style="font-size: 120%!important; margin-top: 10px; margin-bottom: 10px;" id="uploadFile-info"></p>
           
-          <p class="help-block" style="margin-top: 10px; margin-bottom: 10px;" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 3, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>     
+          <p class="help-block" style="margin-top: 10px;" id="uploadFile-status">{{ trans_choice('general.filetypes_accepted_help', 1, ['size' => Helper::file_upload_max_size_readable(), 'types' => '.zip']) }}</p>     
           {!! $errors->first('image', '<span class="alert-msg" aria-hidden="true">:message</span>') !!}
 
         </div>        
     </div>
     
     {{ Form::close() }}
-
-    <h3>Restoring from Backup</h3>
-
-    <div class="alert alert-warning fade in">
-      <p>You can use the restore (<i class="text-white fas fa-retweet" aria-hidden="true"></i>) button to restore from a previous backup, however there are a few things you should know: </p>
+      </div>
     </div>
 
+    <div class="box box-warning">
+      <div class="box-header with-border">
+        <h2 class="box-title">
+          <i class="fas fa-exclamation-triangle text-orange" aria-hidden="true"></i>  Restoring from Backup</h2>
+        <div class="box-tools pull-right">
+        </div>
+      </div><!-- /.box-header -->
+      <div class="box-body">
+        
+      <p>
+        Use the restore (<i class="text-white fas fa-retweet" aria-hidden="true"></i>) button to 
+        restore from a previous backup. (This does not currently with with S3 file storage.)<br><br>Your <strong>entire {{ config('app.name') }} database and any uploaded files will be completely replaced</strong> by what's in the backup file.  
+      </p>
+        
+      <p>
+        You will be logged out after your restore is complete.
+      </p>
 
+      <p>
+        Very large backups may time out on the restore attempt and may still need to be run via command line.  
+      </p>
       
-      <ul class="list-unstyled">
-        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
-          Your entire database and any uploaded files will be completely replaced by what's in the backup file.
-          <br><br>
-        </li>
-        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
-            Very large backups may time out on the restore attempt and may still need to be run via command line. 
-            <br><br>
-        </li>
-        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
-          This does not currently work with S3 file storage.
-          <br><br>
-        </li>
-        <li><i class="fas fa-exclamation-triangle" aria-hidden="true"></i> 
-          You will be logged out after your restore is complete.</li>
-      </ul>  
-      
-
-      <br><br>
-    <p>Backup files are located in: <code>{{ $path }}</code></p>
-
-      
+    </div>
+  </div>
     
         </div> <!-- end col-md-12 form div -->
    </div> <!-- end form group div -->

From 69fe3c02992825d2e978cab4689661edefed8f88 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 17:57:15 -0800
Subject: [PATCH 21/24] Added some comments on the JS

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 1a4c27489a..2113391b28 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -179,7 +179,15 @@
 
     @include ('partials.bootstrap-table')
 
+    
     <script>
+      /*
+      * This just disables the upload button via JS unless they have actually selected a file.
+      *
+      * Todo: - key off off of the javascript response for JS file upload info as well, so that if it fails that 
+      * check (file size and type) we should also leave it disabled.
+      */
+
       $(document).ready(function() {
         
         $("#uploadFile").on('change',function(event){

From 494c72d92bf1f3f4f7a3014de4de0f480189a66d Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 17:58:04 -0800
Subject: [PATCH 22/24] Fixed typo

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 2113391b28..b2e7a3e255 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -184,7 +184,7 @@
       /*
       * This just disables the upload button via JS unless they have actually selected a file.
       *
-      * Todo: - key off off of the javascript response for JS file upload info as well, so that if it fails that 
+      * Todo: - key off the javascript response for JS file upload info as well, so that if it fails that 
       * check (file size and type) we should also leave it disabled.
       */
 

From 1a703bf78bb3ebc7070af86ad8e2c8984c494ac5 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 17:59:52 -0800
Subject: [PATCH 23/24] Added logout clarification

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index b2e7a3e255..141dc07d44 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -156,7 +156,7 @@
         restore from a previous backup. (This does not currently with with S3 file storage.)<br><br>Your <strong>entire {{ config('app.name') }} database and any uploaded files will be completely replaced</strong> by what's in the backup file.  
       </p>
         
-      <p>
+      <p class="text-danger" style="font-weight: bold">
         You will be logged out after your restore is complete.
       </p>
 

From bc2187532497b3fc6ec1a39e28fbd117b82ae883 Mon Sep 17 00:00:00 2001
From: snipe <snipe@snipe.net>
Date: Wed, 10 Nov 2021 18:15:38 -0800
Subject: [PATCH 24/24] More refinements to the UI

Signed-off-by: snipe <snipe@snipe.net>
---
 resources/views/settings/backups.blade.php | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/resources/views/settings/backups.blade.php b/resources/views/settings/backups.blade.php
index 141dc07d44..636d624eb6 100644
--- a/resources/views/settings/backups.blade.php
+++ b/resources/views/settings/backups.blade.php
@@ -152,12 +152,14 @@
       <div class="box-body">
         
       <p>
-        Use the restore (<i class="text-white fas fa-retweet" aria-hidden="true"></i>) button to 
-        restore from a previous backup. (This does not currently with with S3 file storage.)<br><br>Your <strong>entire {{ config('app.name') }} database and any uploaded files will be completely replaced</strong> by what's in the backup file.  
+        Use the restore button <small><span class="btn btn-xs btn-warning"><i class="text-white fas fa-retweet" aria-hidden="true"></i></span></small> to 
+        restore from a previous backup. (This does not currently with with S3 file storage.)</p>
+        
+      <p>Your <strong>entire {{ config('app.name') }} database and any uploaded files will be completely replaced</strong> by what's in the backup file.  
       </p>
         
-      <p class="text-danger" style="font-weight: bold">
-        You will be logged out after your restore is complete.
+      <p class="text-danger" style="font-weight: bold; font-size: 120%;">
+        You will be logged out once your restore is complete.
       </p>
 
       <p>