34 |
42 |
43 |
35 |
37 |
38 |
39 |
41 |
44 |
46 |
20 |
23 |
24 |
25 |
28 |
29 |
--------------------------------------------------------------------------------
/tests/Feature/CreateApiTokenTest.php:
--------------------------------------------------------------------------------
1 | markTestSkipped('API support is not enabled.');
18 |
19 | return;
20 | }
21 |
22 | $this->actingAs($user = User::factory()->withPersonalTeam()->create());
23 |
24 | $response = $this->post('/user/api-tokens', [
25 | 'name' => 'Test Token',
26 | 'permissions' => [
27 | 'read',
28 | 'update',
29 | ],
30 | ]);
31 |
32 | $this->assertCount(1, $user->fresh()->tokens);
33 | $this->assertEquals('Test Token', $user->fresh()->tokens->first()->name);
34 | $this->assertTrue($user->fresh()->tokens->first()->can('read'));
35 | $this->assertFalse($user->fresh()->tokens->first()->can('delete'));
36 | }
37 | }
38 |
--------------------------------------------------------------------------------
/phpunit.xml:
--------------------------------------------------------------------------------
1 |
2 |
12 |
13 |
14 |
20 |
21 |
38 |
39 |
--------------------------------------------------------------------------------
/app/Providers/FortifyServiceProvider.php:
--------------------------------------------------------------------------------
1 | email;
37 |
38 | return Limit::perMinute(5)->by($email.$request->ip());
39 | });
40 |
41 | RateLimiter::for('two-factor', function (Request $request) {
42 | return Limit::perMinute(5)->by($request->session()->get('login.id'));
43 | });
44 | }
45 | }
46 |
--------------------------------------------------------------------------------
/database/migrations/2014_10_12_200000_add_two_factor_columns_to_users_table.php:
--------------------------------------------------------------------------------
1 | text('two_factor_secret')
17 | ->after('password')
18 | ->nullable();
19 |
20 | $table->text('two_factor_recovery_codes')
21 | ->after('two_factor_secret')
22 | ->nullable();
23 |
24 | if (Fortify::confirmsTwoFactorAuthentication()) {
25 | $table->timestamp('two_factor_confirmed_at')
26 | ->after('two_factor_recovery_codes')
27 | ->nullable();
28 | }
29 | });
30 | }
31 |
32 | /**
33 | * Reverse the migrations.
34 | */
35 | public function down(): void
36 | {
37 | Schema::table('users', function (Blueprint $table) {
38 | $table->dropColumn(array_merge([
39 | 'two_factor_secret',
40 | 'two_factor_recovery_codes',
41 | ], Fortify::confirmsTwoFactorAuthentication() ? [
42 | 'two_factor_confirmed_at',
43 | ] : []));
44 | });
45 | }
46 | };
47 |
--------------------------------------------------------------------------------
/resources/js/Pages/Teams/Show.vue:
--------------------------------------------------------------------------------
1 |
14 |
15 |
16 |
22 |
36 |
37 | 19 | Team Settings 20 |
21 | 22 | 23 |
24 |
41 |
25 |
40 |
10 |
61 |
62 |
--------------------------------------------------------------------------------
/resources/js/Components/ConfirmationModal.vue:
--------------------------------------------------------------------------------
1 |
25 |
26 |
27 |
11 |
12 |
13 | FREE
14 |
15 |
16 | 28 requests per month.
17 |
18 |
19 |
20 | Get started for free with 28 free monthly requests.
21 |
22 |
23 |
25 |
26 |
27 |
28 | $10 per month
29 |
30 |
31 | Unlimited web requests and basic tier API access.
32 |
33 |
34 |
35 | 0r1kul costs $10 a month for unlimited monthly use and
36 |
37 | access to the API.
38 |
39 |
40 |
41 |
43 |
44 |
45 |
46 | $99 per month + $0.05 per 1K tokens
47 |
48 |
49 | Unlimited web requests with unlimited tier API access. Access to team management
50 | and automations.
51 |
52 |
53 |
54 | Get the full power of 0r1kul with unlimited API access, the ability to manage teams,
55 | and automations with the ability to use webhooks.
56 |
57 |
58 |
60 |
34 |
52 |
53 |
35 |
51 |
36 |
39 |
40 |
41 |
42 |
43 |
45 |
46 |
50 |
43 |
45 |
46 |
47 |
49 |
54 |
56 |
32 | Forgot your password? No problem. Just let us know your email address and we will email you a password reset link that will allow you to choose a new one.
33 |
34 |
35 |
36 | {{ status }}
37 |
38 |
39 |
60 |
37 | This is a secure area of the application. Please confirm your password before continuing.
38 |
39 |
40 |
62 | 20 | Profile 21 |
22 | 23 | 24 |
25 |
56 |
26 |
55 |
27 |
31 |
32 |
33 |
37 |
38 |
39 |
46 |
47 |
33 |
46 |
47 |
36 | ![]()
37 |
38 |
45 |
39 |
44 | {{ $page.props.auth.user.name }}
40 |
41 | {{ $page.props.auth.user.email }}
42 |
43 |
48 |
58 |
59 |
60 |
61 |
51 |
66 |
77 |
78 |
79 |
80 |
--------------------------------------------------------------------------------
/composer.json:
--------------------------------------------------------------------------------
1 | {
2 | "name": "laravel/laravel",
3 | "type": "project",
4 | "description": "The Laravel Framework.",
5 | "keywords": ["framework", "laravel"],
6 | "license": "MIT",
7 | "require": {
8 | "php": "^8.1",
9 | "guzzlehttp/guzzle": "^7.2",
10 | "inertiajs/inertia-laravel": "^0.6.8",
11 | "laravel/cashier": "^14.8",
12 | "laravel/framework": "^10.0",
13 | "laravel/jetstream": "^3.0",
14 | "laravel/sanctum": "^3.2",
15 | "laravel/socialite": "^5.6",
16 | "laravel/tinker": "^2.8",
17 | "mastashake08/laravel-openai-api": "^1.8.3",
18 | "openai-php/laravel": "^0.3.1",
19 | "spatie/laravel-github-webhooks": "^1.2",
20 | "tightenco/ziggy": "^1.0"
21 | },
22 | "require-dev": {
23 | "fakerphp/faker": "^1.9.1",
24 | "laravel/pint": "^1.0",
25 | "laravel/sail": "^1.18",
26 | "mockery/mockery": "^1.4.4",
27 | "nunomaduro/collision": "^7.0",
28 | "phpunit/phpunit": "^10.0",
29 | "spatie/laravel-ignition": "^2.0"
30 | },
31 | "autoload": {
32 | "psr-4": {
33 | "App\\": "app/",
34 | "Database\\Factories\\": "database/factories/",
35 | "Database\\Seeders\\": "database/seeders/"
36 | }
37 | },
38 | "autoload-dev": {
39 | "psr-4": {
40 | "Tests\\": "tests/"
41 | }
42 | },
43 | "scripts": {
44 | "post-autoload-dump": [
45 | "Illuminate\\Foundation\\ComposerScripts::postAutoloadDump",
46 | "@php artisan package:discover --ansi"
47 | ],
48 | "post-update-cmd": [
49 | "@php artisan vendor:publish --tag=laravel-assets --ansi --force"
50 | ],
51 | "post-root-package-install": [
52 | "@php -r \"file_exists('.env') || copy('.env.example', '.env');\""
53 | ],
54 | "post-create-project-cmd": [
55 | "@php artisan key:generate --ansi"
56 | ]
57 | },
58 | "extra": {
59 | "laravel": {
60 | "dont-discover": []
61 | }
62 | },
63 | "config": {
64 | "optimize-autoloader": true,
65 | "preferred-install": "dist",
66 | "sort-packages": true,
67 | "allow-plugins": {
68 | "pestphp/pest-plugin": true,
69 | "php-http/discovery": true
70 | }
71 | },
72 | "minimum-stability": "stable",
73 | "prefer-stable": true
74 | }
75 |
--------------------------------------------------------------------------------
/config/sanctum.php:
--------------------------------------------------------------------------------
1 | explode(',', env('SANCTUM_STATEFUL_DOMAINS', sprintf(
19 | '%s%s',
20 | 'localhost,localhost:3000,127.0.0.1,127.0.0.1:8000,::1',
21 | Sanctum::currentApplicationUrlWithPort()
22 | ))),
23 |
24 | /*
25 | |--------------------------------------------------------------------------
26 | | Sanctum Guards
27 | |--------------------------------------------------------------------------
28 | |
29 | | This array contains the authentication guards that will be checked when
30 | | Sanctum is trying to authenticate a request. If none of these guards
31 | | are able to authenticate the request, Sanctum will use the bearer
32 | | token that's present on an incoming request for authentication.
33 | |
34 | */
35 |
36 | 'guard' => ['web'],
37 |
38 | /*
39 | |--------------------------------------------------------------------------
40 | | Expiration Minutes
41 | |--------------------------------------------------------------------------
42 | |
43 | | This value controls the number of minutes until an issued token will be
44 | | considered expired. If this value is null, personal access tokens do
45 | | not expire. This won't tweak the lifetime of first-party sessions.
46 | |
47 | */
48 |
49 | 'expiration' => null,
50 |
51 | /*
52 | |--------------------------------------------------------------------------
53 | | Sanctum Middleware
54 | |--------------------------------------------------------------------------
55 | |
56 | | When authenticating your first-party SPA with Sanctum you may need to
57 | | customize some of the middleware Sanctum uses while processing the
58 | | request. You may change the middleware listed below as required.
59 | |
60 | */
61 |
62 | 'middleware' => [
63 | 'verify_csrf_token' => App\Http\Middleware\VerifyCsrfToken::class,
64 | 'encrypt_cookies' => App\Http\Middleware\EncryptCookies::class,
65 | ],
66 |
67 | ];
68 |
--------------------------------------------------------------------------------
/tests/Feature/TwoFactorAuthenticationSettingsTest.php:
--------------------------------------------------------------------------------
1 | markTestSkipped('Two factor authentication is not enabled.');
18 |
19 | return;
20 | }
21 |
22 | $this->actingAs($user = User::factory()->create());
23 |
24 | $this->withSession(['auth.password_confirmed_at' => time()]);
25 |
26 | $response = $this->post('/user/two-factor-authentication');
27 |
28 | $this->assertNotNull($user->fresh()->two_factor_secret);
29 | $this->assertCount(8, $user->fresh()->recoveryCodes());
30 | }
31 |
32 | public function test_recovery_codes_can_be_regenerated(): void
33 | {
34 | if (! Features::canManageTwoFactorAuthentication()) {
35 | $this->markTestSkipped('Two factor authentication is not enabled.');
36 |
37 | return;
38 | }
39 |
40 | $this->actingAs($user = User::factory()->create());
41 |
42 | $this->withSession(['auth.password_confirmed_at' => time()]);
43 |
44 | $this->post('/user/two-factor-authentication');
45 | $this->post('/user/two-factor-recovery-codes');
46 |
47 | $user = $user->fresh();
48 |
49 | $this->post('/user/two-factor-recovery-codes');
50 |
51 | $this->assertCount(8, $user->recoveryCodes());
52 | $this->assertCount(8, array_diff($user->recoveryCodes(), $user->fresh()->recoveryCodes()));
53 | }
54 |
55 | public function test_two_factor_authentication_can_be_disabled(): void
56 | {
57 | if (! Features::canManageTwoFactorAuthentication()) {
58 | $this->markTestSkipped('Two factor authentication is not enabled.');
59 |
60 | return;
61 | }
62 |
63 | $this->actingAs($user = User::factory()->create());
64 |
65 | $this->withSession(['auth.password_confirmed_at' => time()]);
66 |
67 | $this->post('/user/two-factor-authentication');
68 |
69 | $this->assertNotNull($user->fresh()->two_factor_secret);
70 |
71 | $this->delete('/user/two-factor-authentication');
72 |
73 | $this->assertNull($user->fresh()->two_factor_secret);
74 | }
75 | }
76 |
--------------------------------------------------------------------------------
/resources/js/Pages/Auth/VerifyEmail.vue:
--------------------------------------------------------------------------------
1 |
20 |
21 |
22 |
23 |
24 |
52 |
54 |
55 |
56 |
57 |
58 |
30 | Before continuing, could you verify your email address by clicking on the link we just emailed to you? If you didn't receive the email, we will gladly send you another.
31 |
32 |
33 |
34 | A new verification link has been sent to the email address you provided in your profile settings.
35 |
36 |
37 |
61 |
39 | Once a team is deleted, all of its resources and data will be permanently deleted. Before deleting this team, please download any data or information regarding this team that you wish to retain.
40 |
41 |
42 |
43 |
44 | Delete Team
45 |
46 |
47 |
48 |
49 |
40 |
53 |
54 |
55 |
43 | ![]()
44 |
45 |
52 |
46 |
51 | {{ team.owner.name }}
47 |
48 | {{ team.owner.email }}
49 |
50 |
56 |
68 |
69 |
70 |
71 |
16 |
52 |
53 |
--------------------------------------------------------------------------------
/resources/js/Pages/Auth/ResetPassword.vue:
--------------------------------------------------------------------------------
1 |
28 |
29 |
30 |
31 |
32 |
17 |
51 |
18 |
50 |
19 |
49 |
20 |
21 |
24 |
25 |
28 |
29 |
30 |
34 |
35 | 31 | {{ message }} 32 |
33 |
36 |
47 |
48 |