feat(terminal-access): implement terminal access control for servers and containers, including UI updates and backend logic

2025-05-29 14:09:05 +02:00
parent e9deaca8cd
commit 46b4cfac68
11 changed files with 149 additions and 25 deletions
--- a/app/Livewire/Server/Advanced.php
+++ b/app/Livewire/Server/Advanced.php
@@ -4,9 +4,12 @@ namespace App\Livewire\Server;

 use App\Helpers\SslHelper;
 use App\Jobs\RegenerateSslCertJob;
+use App\Models\InstanceSettings;
 use App\Models\Server;
 use App\Models\SslCertificate;
 use Carbon\Carbon;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Hash;
 use Livewire\Attributes\Validate;
 use Livewire\Component;

@@ -36,6 +39,9 @@ class Advanced extends Component
    #[Validate(['integer', 'min:1'])]
    public int $dynamicTimeout = 1;

+    #[Validate(['boolean'])]
+    public bool $isTerminalEnabled = false;
+
    public function mount(string $server_uuid)
    {
        try {
@@ -63,6 +69,37 @@ class Advanced extends Component
        $this->showCertificate = ! $this->showCertificate;
    }

+    public function toggleTerminal($password)
+    {
+        try {
+            // Check if user is admin or owner
+            if (! auth()->user()->isAdmin()) {
+                throw new \Exception('Only team administrators and owners can modify terminal access.');
+            }
+
+            // Verify password unless two-step confirmation is disabled
+            if (! data_get(InstanceSettings::get(), 'disable_two_step_confirmation')) {
+                if (! Hash::check($password, Auth::user()->password)) {
+                    $this->addError('password', 'The provided password is incorrect.');
+
+                    return;
+                }
+            }
+
+            // Toggle the terminal setting
+            $this->server->settings->is_terminal_enabled = ! $this->server->settings->is_terminal_enabled;
+            $this->server->settings->save();
+
+            // Update the local property
+            $this->isTerminalEnabled = $this->server->settings->is_terminal_enabled;
+
+            $status = $this->isTerminalEnabled ? 'enabled' : 'disabled';
+            $this->dispatch('success', "Terminal access has been {$status}.");
+        } catch (\Throwable $e) {
+            return handleError($e, $this);
+        }
+    }
+
    public function saveCaCertificate()
    {
        try {
@@ -149,6 +186,7 @@ class Advanced extends Component
            $this->dynamicTimeout = $this->server->settings->dynamic_timeout;
            $this->serverDiskUsageNotificationThreshold = $this->server->settings->server_disk_usage_notification_threshold;
            $this->serverDiskUsageCheckFrequency = $this->server->settings->server_disk_usage_check_frequency;
+            $this->isTerminalEnabled = $this->server->settings->is_terminal_enabled;
        }
    }