80cdce9502
* wip: adminfeatures * wip: admin features * wip: admin features, password reset, deleted forms * fix linting * fix pinting * fix bug * fix bug * remove testing * fixes on deleted forms, removed unused functions * fix pint * admin feature updated * fix linting warning * fix workspace subscription tag * Final touches * Clean console.log * Added admin logs * Fix linting --------- Co-authored-by: Julien Nahum <julien@nahum.net>
47 lines
1.1 KiB
PHP
47 lines
1.1 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Admin;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Models\User;
|
|
|
|
class ImpersonationController extends Controller
|
|
{
|
|
public function __construct()
|
|
{
|
|
$this->middleware('moderator');
|
|
}
|
|
|
|
public function impersonate($userId)
|
|
{
|
|
$user = User::find($userId);
|
|
if (!$user) {
|
|
return $this->error([
|
|
'message' => 'User not found.',
|
|
]);
|
|
} elseif ($user->admin) {
|
|
return $this->error([
|
|
'message' => 'You cannot impersonate an admin.',
|
|
]);
|
|
}
|
|
|
|
AdminController::log('Impersonation started', [
|
|
'from_id' => auth()->id(),
|
|
'from_email' => auth()->user()->email,
|
|
'target_id' => $user->id,
|
|
'target_email' => $user->id,
|
|
]);
|
|
|
|
$token = auth()->claims(
|
|
auth()->user()->admin ? [] : [
|
|
'impersonating' => true,
|
|
'impersonator_id' => auth()->id(),
|
|
]
|
|
)->login($user);
|
|
|
|
return $this->success([
|
|
'token' => $token,
|
|
]);
|
|
}
|
|
}
|