shell bypass 403
<?php
namespace App\Http\Controllers\admin;
use App\Http\Controllers\Controller;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
use Illuminate\Support\Facades\Validator;
use Illuminate\Support\Response;
use Illuminate\Support\Str;
use App\Models\Coupon;
class CouponController extends Controller
{
//
public function __construct()
{
$this->middleware('auth');
$this->middleware('isAdmin');
}
public function index()
{
$data['coupons'] = Coupon::all();
return view('admin/coupons',$data);
}
public function insert(Request $req)
{
$validation = Validator::make($req->all(),[
'couponCode' => 'required|max:100',
'couponPercent' => 'required|max:100',
'couponStartDate' => 'required',
'couponEndDate' => 'required',
],[
'couponCode.required' => 'Coupon Code Is Required',
'couponCode.max' => 'Coupon Code Max Length 100',
'couponPercent.required' => 'Coupon Percent Is Required',
'couponPercent.max' => 'Coupon Percent Max Length 100',
'couponStartDate.required' => 'Coupon Start Date Is Required',
'couponEndDate.required' => 'Coupon End Date Is Required',
]);
if(!$validation->passes())
{
return response()->json(['error'=>$validation->errors()]);
}
else
{
$AddCoupon = new Coupon;
$AddCoupon->coupon_code = $req->couponCode;
$AddCoupon->coupon_percent = $req->couponPercent;
$AddCoupon->coupon_start_date = $req->couponStartDate;
$AddCoupon->coupon_end_date = $req->couponEndDate;
$AddCoupon->coupon_status = $req->couponStatus;
$AddCoupon->save();
return response()->json(['success'=>'Coupon Add Successfully']);
}
}
public function update(Request $req)
{
$validation = Validator::make($req->all(),[
'updtcouponCode' => 'required|max:100',
'updtcouponPercent' => 'required|max:100',
'updtcouponStartDate' => 'required',
'updtcouponEndtDate' => 'required',
],[
'updtcouponCode.required' => 'Coupon Code Is Required',
'updtcouponCode.max' => 'Coupon Code Max Length 100',
'updtcouponPercent.required' => 'Coupon Percent Is Required',
'updtcouponPercent.max' => 'Coupon Percent Max Length 100',
'updtcouponStartDate.required' => 'Coupon Start Date Is Required',
'updtcouponEndtDate.required' => 'Coupon End Date Is Required',
]);
if(!$validation->passes())
{
return response()->json(['error'=>$validation->errors()]);
}
else
{
$id = $req->updtcouponId;
$UpdtCoupon = Coupon::find($id);
$UpdtCoupon->coupon_code = $req->updtcouponCode;
$UpdtCoupon->coupon_percent = $req->updtcouponPercent;
$UpdtCoupon->coupon_start_date = $req->updtcouponStartDate;
$UpdtCoupon->coupon_end_date = $req->updtcouponEndtDate;
$UpdtCoupon->coupon_status = $req->updtcouponStatus;
$UpdtCoupon->save();
return response()->json(['success'=>'Coupon Update Successfully']);
}
}
public function delete(Request $req)
{
$id = $req->id;
$DeleteCoupon = Coupon::find($id);
$DeleteCoupon->delete();
}
}