] * @since [v1.6] */ public function store(UploadFileRequest $request, $userId = null) { $user = User::find($userId); $destinationPath = config('app.private_uploads').'/users'; if (isset($user->id)) { $this->authorize('update', $user); $logActions = []; $files = $request->file('file'); if (is_null($files)) { return redirect()->back()->with('error', trans('admin/users/message.upload.nofiles')); } foreach ($files as $file) { $file_name = $request->handleFile('private_uploads/users/', 'user-'.$user->id, $file); //Log the uploaded file to the log $logAction = new Actionlog(); $logAction->item_id = $user->id; $logAction->item_type = User::class; $logAction->created_by = auth()->id(); $logAction->note = $request->input('notes'); $logAction->target_id = null; $logAction->created_at = date("Y-m-d H:i:s"); $logAction->filename = $file_name; $logAction->action_type = 'uploaded'; if (! $logAction->save()) { return JsonResponse::create(['error' => 'Failed validation: '.print_r($logAction->getErrors(), true)], 500); } $logActions[] = $logAction; } // dd($logActions); return redirect()->back()->with('success', trans('admin/users/message.upload.success')); } return redirect()->back()->with('error', trans('admin/users/message.upload.nofiles')); } /** * Delete file * * @author [A. Gianotto] [] * @since [v1.6] * @param int $userId * @param int $fileId * @return \Illuminate\Http\RedirectResponse * @throws \Illuminate\Auth\Access\AuthorizationException */ public function destroy($userId = null, $fileId = null) { if ($user = User::find($userId)) { $this->authorize('delete', $user); $rel_path = 'private_uploads/users'; if ($log = Actionlog::find($fileId)) { $filename = $log->filename; $log->delete(); if (Storage::exists($rel_path.'/'.$filename)) { Storage::delete($rel_path.'/'.$filename); return redirect()->back()->with('success', trans('admin/users/message.deletefile.success')); } } // The log record doesn't exist somehow return redirect()->back()->with('success', trans('admin/users/message.deletefile.success')); } return redirect()->route('users.index')->with('error', trans('admin/users/message.user_not_found', ['id' => $userId])); } /** * Display/download the uploaded file * * @author [A. Gianotto] [] * @since [v1.6] * @param int $userId * @param int $fileId * @return mixed * @throws \Illuminate\Auth\Access\AuthorizationException */ public function show($userId = null, $fileId = null) { if (empty($fileId)) { return redirect()->route('users.show')->with('error', 'Invalid file request'); } $user = User::find($userId); // the license is valid if (isset($user->id)) { $this->authorize('view', $user); if ($log = Actionlog::whereNotNull('filename')->where('item_id', $user->id)->find($fileId)) { $file = 'private_uploads/users/'.$log->filename; if (request('inline') == 'true') { $headers = [ 'Content-Disposition' => 'inline', ]; // This is NOT allowed as inline - force it to be displayed as text if (StorageHelper::allowSafeInline($file) === false) { array_push($headers, ['Content-Type' => 'text/plain']); } return Storage::download($file, $log->filename, $headers); } return Storage::download($file); } return redirect()->route('users.index')->with('error', trans('admin/users/message.log_record_not_found')); } // Redirect to the user management page if the user doesn't exist return redirect()->route('users.index')->with('error', trans('admin/users/message.user_not_found', ['id' => $userId])); } }