#82 - Authenticate with discord

app/ChannelEnum.php

@@ -0,0 +1,9 @@
+<?php
+
+namespace App;
+
+class ChannelEnum
+{
+    const Archub = 0;
+    const Staff = 1;
+}

app/Console/Kernel.php

@@ -15,7 +15,6 @@ class Kernel extends ConsoleKernel
     protected $commands = [
         Commands\MigrateOldApps::class,
         Commands\ConvertIdToRevisions::class,
-        Commands\PurgeNonMembers::class,
     ];
 
     /**

app/Discord.php

@@ -0,0 +1,128 @@
+<?php
+
+namespace App;
+
+use App\ChannelEnum;
+use App\RoleEnum;
+use App\Models\Portal\User;
+use App\Models\Missions\Mission;
+use Illuminate\Auth\Access\AuthorizationException;
+
+use Illuminate\Support\Facades\Cache;
+use Illuminate\Support\Facades\Http;
+
+class Discord
+{
+    public static function missionUpdate(string $content, Mission $mission, bool $tagAuthor = false, string $url = null)
+    {
+        if ($tagAuthor && ($mission->user->id != auth()->user()->id)) {
+            $content = "{$content} <@{$mission->user->discord_id}>";
+        }
+
+        if (!is_null($url)) {
+            $content = "{$content}\n{$url}";
+        }
+
+        self::notifyChannel(ChannelEnum::Archub, $content);
+    }
+
+    public static function notifyChannel(string $channel, string $content)
+    {
+        $webhook = self::getWebhookFromChannel($channel);
+        $response = HTTP::post($webhook, [
+            'content' => $content,
+        ]);
+
+        return $response;
+    }
+
+    private static function getWebhookFromChannel(int $channel)
+    {
+        if ($channel == ChannelEnum::Archub) 
+        {
+            return config('services.discord.archub_webhook');
+        }
+        else if ($channel == ChannelEnum::Staff)
+        {
+            return config('services.discord.staff_webhook');
+        }
+        else
+        {
+            throw new Exception("Webhook not found");
+        }
+    }
+
+    private static function getUser(int $discord_id)
+    {
+        return Cache::remember($discord_id, 10, function() use ($discord_id) {
+            $url = "https://discord.com/api/v8/guilds/".config('services.discord.server_id')."/members/{$discord_id}";
+            $response = HTTP::withHeaders([
+                'Authorization' => "Bot ".config('services.discord.token')
+            ])->get($url);
+
+            if ($response->successful()) {
+                return (array)$response->json();
+            }
+
+            throw new AuthorizationException("Error getting user from discord ". $response->status());
+        });
+    }
+
+    public static function getAvatar(int $discord_id)
+    {
+        $avatarHash = ((array)self::getUser($discord_id)["user"])["avatar"];
+        return "https://cdn.discordapp.com/avatars/{$discord_id}/{$avatarHash}.jpg";
+    }
+
+    private static function getRoles(int $discord_id)
+    {
+        return self::getUser($discord_id)["roles"];
+    }
+
+    public static function hasRole(User $user, int $role)
+    {
+        if (!auth()->guest() && is_null(auth()->user()->discord_id)) {
+            throw new AuthorizationException;
+        }
+        $roleId = self::getRoleIdFromRole($role);
+        $roles = self::getRoles($user->discord_id);
+
+        return in_array($roleId, $roles);
+    }
+
+    public static function isMember(int $discord_id)
+    {
+        $roleId = self::getRoleIdFromRole(RoleEnum::Member);
+        $roles = self::getRoles($discord_id);
+
+        return in_array($roleId, $roles);
+    }
+
+    private static function getRoleIdFromRole(int $role)
+    {
+        if ($role == RoleEnum::Member)
+        {
+            return config('services.discord.member_role');
+        }
+        else if ($role == RoleEnum::Tester)
+        {
+            return config('services.discord.tester_role');
+        }
+        else if ($role == RoleEnum::SeniorTester)
+        {
+            return config('services.discord.senior_tester_role');
+        }
+        else if ($role == RoleEnum::Staff) 
+        {
+            return config('services.discord.staff_role');
+        }
+        else if ($role == RoleEnum::Admin)
+        {
+            return config('services.discord.admin_role');
+        }
+        else
+        {
+            throw new Exception("RoleId not found");
+        }
+    }
+}

app/Exceptions/Handler.php

@@ -48,6 +48,9 @@ public function report(Throwable $exception)
      */
     public function render($request, Throwable $exception)
     {
+        if ($exception instanceof \Illuminate\Auth\Access\AuthorizationException && !auth()->guest() && is_null(auth()->user()->discord_id)) {
+            return redirect('/auth/redirect');
+        }
         return parent::render($request, $exception);
     }
 

app/Http/Controllers/Auth/DiscordController.php

@@ -0,0 +1,78 @@
+<?php
+
+namespace App\Http\Controllers\Auth;
+
+use App\Discord;
+use App\RoleEnum;
+use App\Models\Portal\User;
+use App\Http\Controllers\Controller;
+
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Cache;
+use Illuminate\Auth\Events\Registered;
+use Laravel\Socialite\Facades\Socialite;
+
+class DiscordController extends Controller
+{
+    /**
+     * Redirect the user to the Discord login page.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function redirect()
+    {
+        return Socialite::driver('discord')->redirect();
+    }
+
+    /**
+     * Handles the response from Discord.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function callback(Request $request)
+    {
+        $user = Socialite::driver('discord')->user();
+
+        if (!auth()->guest()) {
+            if (is_null(auth()->user()->discord_id)) {
+                auth()->user()->discord_id = $user->id;
+                auth()->user()->save();
+                return redirect('/hub');
+            }
+        }
+
+        if (Discord::isMember($user->id)) {
+            return $this->create($user);
+        }
+
+        return [
+            'error' => 'You are not a member.'
+        ];
+    }
+
+    /**
+     * Creates the user account and redirects with the access token.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function create($data)
+    {
+        $user = User::where('discord_id', $data->id)->first();
+
+        if (is_null($user)) {
+            $user = User::create([
+                'discord_id' => $data->id,
+                'username' => $data->name,
+                'email' => $data->email,
+                'avatar' => $data->avatar,
+            ]);
+        }
+
+        auth()->login($user, true);
+
+        if ($user->can('access-hub')) {
+            return redirect('/hub');
+        }
+        return redirect('/');
+    }
+}