2FAuth/app/Services/SettingService.php

<?php

namespace App\Services;

use App\Exceptions\DbEncryptionException;
use App\Models\Option;
use Exception;
use Illuminate\Support\Arr;
use Illuminate\Support\Collection;
use Illuminate\Support\Facades\App;
use Illuminate\Support\Facades\Crypt;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Log;
use Throwable;

class SettingService
{
    /**
     * All user settings
     *
     * @var Collection<string, mixed>
     */
    private Collection $settings;

    /**
     * Constructor
     */
    public function __construct()
    {
        self::build();
    }

    /**
     * Get a setting
     *
     * @param  string  $setting A single setting name
     * @return mixed string|int|boolean|null
     */
    public function get($setting)
    {
        return $this->settings->get($setting);
    }

    /**
     * Get all settings
     *
     * @return Collection<string, mixed> the Settings collection
     */
    public function all() : Collection
    {
        return $this->settings;
    }

    /**
     * Set a setting
     *
     * @param  string|array  $setting A single setting name or an associative array of name:value settings
     * @param  string|int|bool|null  $value The value for single setting
     */
    public function set($setting, $value = null) : void
    {
        $settings = is_array($setting) ? $setting : [$setting => $value];

        foreach ($settings as $setting => $value) {
            if ($setting === 'useEncryption') {
                $this->setEncryptionTo($value);
            }

            $settings[$setting] = $this->replaceBoolean($value);
        }

        foreach ($settings as $setting => $value) {
            Option::updateOrCreate(['key' => $setting], ['value' => $value]);
            Log::info(sprintf('Setting %s is now %s', var_export($setting, true), var_export($this->restoreType($value), true)));
        }

        self::build();
    }

    /**
     * Delete a setting
     *
     * @param  string  $name The setting name
     */
    public function delete(string $name) : void
    {
        Option::where('key', $name)->delete();
        Log::info(sprintf('Setting %s deleted', var_export($name, true)));
    }

    /**
     * Determine if the given setting has been customized by the user
     *
     * @param  string  $key
     * @return bool
     */
    public function isUserDefined($key) : bool
    {
        return DB::table('options')->where('key', $key)->exists();
    }

    /**
     * Set the settings collection
     *
     * @return void
     */
    private function build()
    {
        // Get a collection of user saved options
        $userOptions = DB::table('options')->pluck('value', 'key');
        $userOptions->transform(function ($item, $key) {
            return $this->restoreType($item);
        });

        // Merge 2fauth/app config values as fallback values
        $settings = collect(config('2fauth.options'))->merge($userOptions); /** @phpstan-ignore-line */
        if (! Arr::has($settings, 'lang')) {
            $settings['lang'] = 'browser';
        }

        $this->settings = $settings;
    }

    /**
     * Replaces boolean by a patterned string as appstrack/laravel-options package does not support var type
     *
     * @param  mixed  $value
     * @return string
     */
    private function replaceBoolean(mixed $value)
    {
        return is_bool($value) ? '{{' . $value . '}}' : $value;
    }

    /**
     * Replaces patterned string that represent booleans with real booleans
     *
     * @param  mixed  $value
     * @return mixed
     */
    private function restoreType(mixed $value)
    {
        $value = is_numeric($value) ? (int) $value : $value;

        if ($value === '{{}}') {
            return false;
        } elseif ($value === '{{1}}') {
            return true;
        } else {
            return $value;
        }
    }

    /**
     * Enable or Disable encryption of 2FAccounts sensible data
     *
     * @return void
     *
     * @throws DbEncryptionException Something failed, everything have been rolled back
     */
    private function setEncryptionTo(bool $state) : void
    {
        // We don't want the records to be encrypted/decrypted multiple successive times
        $isInUse = $this->get('useEncryption');

        if ($isInUse === ! $state) {
            if ($this->updateRecords($state)) {
                if ($state) {
                    Log::notice('Sensible data are now encrypted');
                } else {
                    Log::notice('Sensible data are now decrypted');
                }
            } else {
                Log::warning('Some data cannot be encrypted/decrypted, the useEncryption setting remain unchanged');
                throw new DbEncryptionException($state === true ? __('errors.error_during_encryption') : __('errors.error_during_decryption'));
            }
        }
    }

    /**
     * Encrypt/Decrypt accounts in database
     *
     * @param  bool  $encrypted Whether the record should be encrypted or not
     * @return bool Whether the operation completed successfully
     */
    private function updateRecords(bool $encrypted) : bool
    {
        $success      = true;
        $twofaccounts = DB::table('twofaccounts')->get();

        $twofaccounts->each(function ($item, $key) use (&$success, $encrypted) {
            try {
                $item->legacy_uri = $encrypted ? Crypt::encryptString($item->legacy_uri) : Crypt::decryptString($item->legacy_uri);
                $item->account    = $encrypted ? Crypt::encryptString($item->account) : Crypt::decryptString($item->account);
                $item->secret     = $encrypted ? Crypt::encryptString($item->secret) : Crypt::decryptString($item->secret);
            } catch (Exception $ex) {
                $success = false;
                // Exit the each iteration
                return false;
            }
        });

        if ($success) {
            // The whole collection has now its sensible data encrypted/decrypted
            // We update the db using a transaction that can rollback everything if an error occured
            DB::beginTransaction();

            try {
                $twofaccounts->each(function ($item, $key) {
                    DB::table('twofaccounts')
                        ->where('id', $item->id)
                        ->update([
                            'legacy_uri' => $item->legacy_uri,
                            'account'    => $item->account,
                            'secret'     => $item->secret,
                        ]);
                });

                DB::commit();

                return true;
            }
            // @codeCoverageIgnoreStart
            catch (Throwable $ex) {
                DB::rollBack();

                return false;
            }
            // @codeCoverageIgnoreEnd
        } else {
            return false;
        }
    }
}
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`<?php`

			`namespace App\Services;`

Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`use App\Exceptions\DbEncryptionException;`
Upgrade to Laravel 8 2021-12-02 13:15:53 +01:00			`use App\Models\Option;`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`use Exception;`
Add support of the Accept_language header for UI localization 2021-12-03 22:50:28 +01:00			`use Illuminate\Support\Arr;`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`use Illuminate\Support\Collection;`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`use Illuminate\Support\Facades\App;`
			`use Illuminate\Support\Facades\Crypt;`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`use Illuminate\Support\Facades\DB;`
Add logs 2021-10-15 23:46:21 +02:00			`use Illuminate\Support\Facades\Log;`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`use Throwable;`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`class SettingService`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`{`
Add support of the Accept_language header for UI localization 2021-12-03 22:50:28 +01:00			`/**`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`* All user settings`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
Complete phpDocs type-hints 2022-11-21 11:16:43 +01:00			`* @var Collection<string, mixed>`
Add support of the Accept_language header for UI localization 2021-12-03 22:50:28 +01:00			`*/`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`private Collection $settings;`

			`/**`
			`* Constructor`
			`*/`
			`public function __construct()`
Add support of the Accept_language header for UI localization 2021-12-03 22:50:28 +01:00			`{`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`self::build();`
Add support of the Accept_language header for UI localization 2021-12-03 22:50:28 +01:00			`}`

Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`/**`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`* Get a setting`
			`*`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`* @param string $setting A single setting name`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`* @return mixed string\|int\|boolean\|null`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`public function get($setting)`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`{`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`return $this->settings->get($setting);`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`}`

			`/**`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`* Get all settings`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
Complete phpDocs type-hints 2022-11-21 11:16:43 +01:00			`* @return Collection<string, mixed> the Settings collection`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
			`public function all() : Collection`
			`{`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`return $this->settings;`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`}`

			`/**`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`* Set a setting`
			`*`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`* @param string\|array $setting A single setting name or an associative array of name:value settings`
			`* @param string\|int\|bool\|null $value The value for single setting`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
			`public function set($setting, $value = null) : void`
			`{`
			`$settings = is_array($setting) ? $setting : [$setting => $value];`

			`foreach ($settings as $setting => $value) {`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`if ($setting === 'useEncryption') {`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`$this->setEncryptionTo($value);`
			`}`

Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`$settings[$setting] = $this->replaceBoolean($value);`
			`}`

Add logs 2021-10-15 23:46:21 +02:00			`foreach ($settings as $setting => $value) {`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`Option::updateOrCreate(['key' => $setting], ['value' => $value]);`
Add logs 2021-10-15 23:46:21 +02:00			`Log::info(sprintf('Setting %s is now %s', var_export($setting, true), var_export($this->restoreType($value), true)));`
			`}`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00
			`self::build();`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`}`

			`/**`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`* Delete a setting`
			`*`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`* @param string $name The setting name`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
			`public function delete(string $name) : void`
			`{`
Drop appstract/laravel-options package 2021-12-01 13:47:20 +01:00			`Option::where('key', $name)->delete();`
Add logs 2021-10-15 23:46:21 +02:00			`Log::info(sprintf('Setting %s deleted', var_export($name, true)));`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`}`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00
			`/**`
			`* Determine if the given setting has been customized by the user`
			`*`
			`* @param string $key`
			`* @return bool`
			`*/`
			`public function isUserDefined($key) : bool`
			`{`
			`return DB::table('options')->where('key', $key)->exists();`
			`}`

			`/**`
			`* Set the settings collection`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`* @return void`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`*/`
			`private function build()`
			`{`
			`// Get a collection of user saved options`
			`$userOptions = DB::table('options')->pluck('value', 'key');`
			`$userOptions->transform(function ($item, $key) {`
			`return $this->restoreType($item);`
			`});`

			`// Merge 2fauth/app config values as fallback values`
Complete phpDocs type-hints 2022-11-21 11:16:43 +01:00			`$settings = collect(config('2fauth.options'))->merge($userOptions); /** @phpstan-ignore-line */`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`if (! Arr::has($settings, 'lang')) {`
Bind SettingService & GroupService to the Service Container 2022-07-29 18:34:27 +02:00			`$settings['lang'] = 'browser';`
			`}`

			`$this->settings = $settings;`
			`}`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00
			`/**`
			`* Replaces boolean by a patterned string as appstrack/laravel-options package does not support var type`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
			`* @param mixed $value`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`* @return string`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`private function replaceBoolean(mixed $value)`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`{`
			`return is_bool($value) ? '{{' . $value . '}}' : $value;`
			`}`

			`/**`
			`* Replaces patterned string that represent booleans with real booleans`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
			`* @param mixed $value`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`* @return mixed`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`*/`
Fix some issues detected by static analysis 2022-08-26 15:57:18 +02:00			`private function restoreType(mixed $value)`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`{`
Cast Number settings as integer instead of float 2021-10-15 23:47:00 +02:00			`$value = is_numeric($value) ? (int) $value : $value;`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`if ($value === '{{}}') {`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`return false;`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`} elseif ($value === '{{1}}') {`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`return true;`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`} else {`
Refactor Options to a Setting service bound with the service container 2021-09-26 22:06:49 +02:00			`return $value;`
			`}`
			`}`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00
			`/**`
			`* Enable or Disable encryption of 2FAccounts sensible data`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`* @return void`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`* @throws DbEncryptionException Something failed, everything have been rolled back`
			`*/`
			`private function setEncryptionTo(bool $state) : void`
			`{`
			`// We don't want the records to be encrypted/decrypted multiple successive times`
			`$isInUse = $this->get('useEncryption');`

Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`if ($isInUse === ! $state) {`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`if ($this->updateRecords($state)) {`
			`if ($state) {`
			`Log::notice('Sensible data are now encrypted');`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`} else {`
			`Log::notice('Sensible data are now decrypted');`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`}`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`} else {`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`Log::warning('Some data cannot be encrypted/decrypted, the useEncryption setting remain unchanged');`
			`throw new DbEncryptionException($state === true ? __('errors.error_during_encryption') : __('errors.error_during_decryption'));`
			`}`
			`}`
			`}`

			`/**`
			`* Encrypt/Decrypt accounts in database`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`*`
			`* @param bool $encrypted Whether the record should be encrypted or not`
			`* @return bool Whether the operation completed successfully`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`*/`
			`private function updateRecords(bool $encrypted) : bool`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`{`
			`$success = true;`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`$twofaccounts = DB::table('twofaccounts')->get();`

Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`$twofaccounts->each(function ($item, $key) use (&$success, $encrypted) {`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`try {`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`$item->legacy_uri = $encrypted ? Crypt::encryptString($item->legacy_uri) : Crypt::decryptString($item->legacy_uri);`
			`$item->account = $encrypted ? Crypt::encryptString($item->account) : Crypt::decryptString($item->account);`
			`$item->secret = $encrypted ? Crypt::encryptString($item->secret) : Crypt::decryptString($item->secret);`
			`} catch (Exception $ex) {`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`$success = false;`
			`// Exit the each iteration`
			`return false;`
			`}`
			`});`

			`if ($success) {`
			`// The whole collection has now its sensible data encrypted/decrypted`
			`// We update the db using a transaction that can rollback everything if an error occured`
			`DB::beginTransaction();`

			`try {`
			`$twofaccounts->each(function ($item, $key) {`
			`DB::table('twofaccounts')`
			`->where('id', $item->id)`
			`->update([`
			`'legacy_uri' => $item->legacy_uri,`
			`'account' => $item->account,`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`'secret' => $item->secret,`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`]);`
			`});`

			`DB::commit();`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`return true;`
			`}`
			`// @codeCoverageIgnoreStart`
			`catch (Throwable $ex) {`
			`DB::rollBack();`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`return false;`
			`}`
			`// @codeCoverageIgnoreEnd`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`} else {`
			`return false;`
Refactor db encryption feature 2021-11-26 11:21:57 +01:00			`}`
			`}`
Apply Laravel Pint fixes 2022-11-22 15:15:52 +01:00			`}`