Changeset View
Changeset View
Standalone View
Standalone View
src/routes/api.php
Show First 20 Lines • Show All 80 Lines • ▼ Show 20 Lines | function () { | ||||
Route::post('auth-attempts/{id}/deny', [API\V4\AuthAttemptsController::class, 'deny']); | Route::post('auth-attempts/{id}/deny', [API\V4\AuthAttemptsController::class, 'deny']); | ||||
Route::get('auth-attempts/{id}/details', [API\V4\AuthAttemptsController::class, 'details']); | Route::get('auth-attempts/{id}/details', [API\V4\AuthAttemptsController::class, 'details']); | ||||
Route::get('auth-attempts', [API\V4\AuthAttemptsController::class, 'index']); | Route::get('auth-attempts', [API\V4\AuthAttemptsController::class, 'index']); | ||||
Route::post('companion/register', [API\V4\CompanionAppsController::class, 'register']); | Route::post('companion/register', [API\V4\CompanionAppsController::class, 'register']); | ||||
} | } | ||||
); | ); | ||||
if (\config('app.with_files')) { | |||||
Route::group( | |||||
[ | |||||
'domain' => \config('app.website_domain'), | |||||
'middleware' => ['auth:api', 'scope:fs,api'], | |||||
'prefix' => 'v4' | |||||
], | |||||
function () { | |||||
Route::apiResource('fs', API\V4\FsController::class); | |||||
Route::get('fs/{itemId}/permissions', [API\V4\FsController::class, 'getPermissions']); | |||||
Route::post('fs/{itemId}/permissions', [API\V4\FsController::class, 'createPermission']); | |||||
Route::put('fs/{itemId}/permissions/{id}', [API\V4\FsController::class, 'updatePermission']); | |||||
Route::delete('fs/{itemId}/permissions/{id}', [API\V4\FsController::class, 'deletePermission']); | |||||
} | |||||
); | |||||
Route::group( | |||||
[ | |||||
'domain' => \config('app.website_domain'), | |||||
'middleware' => [], | |||||
'prefix' => 'v4' | |||||
], | |||||
function () { | |||||
Route::post('fs/uploads/{id}', [API\V4\FsController::class, 'upload']) | |||||
->middleware(['api']); | |||||
Route::get('fs/downloads/{id}', [API\V4\FsController::class, 'download']); | |||||
} | |||||
machniak: Duplicated routes. | |||||
); | |||||
} | |||||
Route::group( | Route::group( | ||||
[ | [ | ||||
'domain' => \config('app.website_domain'), | 'domain' => \config('app.website_domain'), | ||||
'middleware' => ['auth:api', 'scope:api'], | 'middleware' => ['auth:api', 'scope:api'], | ||||
'prefix' => 'v4' | 'prefix' => 'v4' | ||||
], | ], | ||||
function () { | function () { | ||||
Route::apiResource('companions', API\V4\CompanionAppsController::class); | Route::apiResource('companions', API\V4\CompanionAppsController::class); | ||||
// This must not be accessible with the 2fa token, | // This must not be accessible with the 2fa token, | ||||
// to prevent an attacker from pairing a new device with a stolen token. | // to prevent an attacker from pairing a new device with a stolen token. | ||||
Route::get('companions/{id}/pairing', [API\V4\CompanionAppsController::class, 'pairing']); | Route::get('companions/{id}/pairing', [API\V4\CompanionAppsController::class, 'pairing']); | ||||
Route::apiResource('domains', API\V4\DomainsController::class); | Route::apiResource('domains', API\V4\DomainsController::class); | ||||
Route::get('domains/{id}/confirm', [API\V4\DomainsController::class, 'confirm']); | Route::get('domains/{id}/confirm', [API\V4\DomainsController::class, 'confirm']); | ||||
Route::get('domains/{id}/skus', [API\V4\DomainsController::class, 'skus']); | Route::get('domains/{id}/skus', [API\V4\DomainsController::class, 'skus']); | ||||
Route::get('domains/{id}/status', [API\V4\DomainsController::class, 'status']); | Route::get('domains/{id}/status', [API\V4\DomainsController::class, 'status']); | ||||
Route::post('domains/{id}/config', [API\V4\DomainsController::class, 'setConfig']); | Route::post('domains/{id}/config', [API\V4\DomainsController::class, 'setConfig']); | ||||
if (\config('app.with_files')) { | |||||
Route::apiResource('files', API\V4\FilesController::class); | |||||
Route::get('files/{fileId}/permissions', [API\V4\FilesController::class, 'getPermissions']); | |||||
Route::post('files/{fileId}/permissions', [API\V4\FilesController::class, 'createPermission']); | |||||
Route::put('files/{fileId}/permissions/{id}', [API\V4\FilesController::class, 'updatePermission']); | |||||
Route::delete('files/{fileId}/permissions/{id}', [API\V4\FilesController::class, 'deletePermission']); | |||||
Route::post('files/uploads/{id}', [API\V4\FilesController::class, 'upload']) | |||||
->withoutMiddleware(['auth:api', 'scope:api']) | |||||
->middleware(['api']); | |||||
Route::get('files/downloads/{id}', [API\V4\FilesController::class, 'download']) | |||||
->withoutMiddleware(['auth:api', 'scope:api']); | |||||
} | |||||
Route::apiResource('groups', API\V4\GroupsController::class); | Route::apiResource('groups', API\V4\GroupsController::class); | ||||
Route::get('groups/{id}/skus', [API\V4\GroupsController::class, 'skus']); | Route::get('groups/{id}/skus', [API\V4\GroupsController::class, 'skus']); | ||||
Route::get('groups/{id}/status', [API\V4\GroupsController::class, 'status']); | Route::get('groups/{id}/status', [API\V4\GroupsController::class, 'status']); | ||||
Route::post('groups/{id}/config', [API\V4\GroupsController::class, 'setConfig']); | Route::post('groups/{id}/config', [API\V4\GroupsController::class, 'setConfig']); | ||||
Route::apiResource('packages', API\V4\PackagesController::class); | Route::apiResource('packages', API\V4\PackagesController::class); | ||||
Route::apiResource('rooms', API\V4\RoomsController::class); | Route::apiResource('rooms', API\V4\RoomsController::class); | ||||
▲ Show 20 Lines • Show All 172 Lines • Show Last 20 Lines |
Duplicated routes.