Add redirects module

Redirects/app/Actions/CreateRedirectAction.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace Modules\Redirects\Actions;
+
+use Illuminate\Http\Request;
+use Lorisleiva\Actions\Concerns\AsAction;
+use Modules\Redirects\Models\Redirect;
+
+class CreateRedirectAction
+{
+    use AsAction;
+
+    public function handle($data)
+    {
+        return Redirect::create($data);
+    }
+
+    public function asJob($data)
+    {
+        $this->handle($data);
+    }
+
+    public function asListener($data)
+    {
+        $this->handle($data);
+    }
+
+}

Redirects/app/Actions/DeleteRedirectAction.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace Modules\Redirects\Actions;
+
+use Illuminate\Http\Request;
+use Lorisleiva\Actions\Concerns\AsAction;
+use Modules\Redirects\Models\Redirect;
+
+class DeleteRedirectAction
+{
+    use AsAction;
+
+    public function handle($redirect)
+    {
+        return $redirect->delete();
+    }
+
+    public function asJob($redirect)
+    {
+        $this->handle($redirect);
+    }
+
+    public function asListener($redirect)
+    {
+        $this->handle($redirect);
+    }
+
+}

Redirects/app/Actions/UpdateRedirectAction.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace Modules\Redirects\Actions;
+
+use Illuminate\Http\Request;
+use Lorisleiva\Actions\Concerns\AsAction;
+use Modules\Redirects\Models\Redirect;
+
+class UpdateRedirectAction
+{
+    use AsAction;
+
+    public function handle($redirect, $data)
+    {
+        return $redirect->update($data);
+    }
+
+    public function asJob($redirect, $data)
+    {
+        $this->handle($redirect, $data);
+    }
+
+    public function asListener($redirect, $data)
+    {
+        $this->handle($redirect, $data);
+    }
+
+}

Redirects/app/Http/Controllers/RedirectsController.php

@@ -0,0 +1,151 @@
+<?php
+
+namespace Modules\Redirects\Http\Controllers;
+
+use Dedoc\Scramble\Attributes\Group;
+use Dedoc\Scramble\Attributes\PathParameter;
+use Dedoc\Scramble\Attributes\QueryParameter;
+use Illuminate\Http\Request;
+use Modules\Redirects\Actions\CreateRedirectAction;
+use Modules\Redirects\Actions\UpdateRedirectAction;
+use Modules\Redirects\Actions\DeleteRedirectAction;
+use Modules\Redirects\Models\Redirect;
+
+#[Group('Redirects')]
+class RedirectsController
+{
+    #[QueryParameter('per_page', description: 'Number of redirects per page', type: 'integer', default: 20, example: 10)]
+    #[QueryParameter('active', description: 'Filter by active status', type: 'boolean', example: true)]
+    public function getRedirects(Request $request)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects') || !$request->attributes->get('api_key')->can('admin.redirects')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $query = Redirect::query()->orderBy('created_at', 'desc');
+
+        if ($request->has('active')) {
+            $query->where('active', $request->boolean('active'));
+        }
+
+        $redirects = $query->paginate($request->query('per_page', 20));
+
+        return response()->json([
+            'message' => 'Redirects retrieved successfully',
+            'redirects' => $redirects,
+        ]);
+    }
+
+    #[PathParameter('redirectId', description: 'ID of the redirect to view', type: 'integer')]
+    public function getRedirect(Request $request, $redirectId)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects') || !$request->attributes->get('api_key')->can('admin.redirects')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $redirect = Redirect::findOrFail($redirectId);
+
+        return response()->json([
+            'message' => 'Redirect retrieved successfully',
+            'redirect' => $redirect,
+        ]);
+    }
+
+    public function createRedirect(Request $request)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects.create') || !$request->attributes->get('api_key')->can('admin.redirects.create')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $request->validate([
+            'from' => 'required|url|unique:redirects,from',
+            'to' => 'required|url',
+            'status_code' => 'required|in:301,302,303,307,308',
+            'active' => 'nullable|boolean',
+            'include_query_string' => 'nullable|boolean',
+            'internal' => 'nullable|boolean',
+        ]);
+
+        $data = $request->all();
+        $data['created_by'] = $user->id;
+
+        $redirect = CreateRedirectAction::run($data);
+
+        return response()->json([
+            'message' => 'Redirect created successfully',
+            'redirect' => $redirect,
+        ]);
+    }
+
+    #[PathParameter('redirectId', description: 'ID of the redirect to update', type: 'integer')]
+    public function updateRedirect(Request $request, $redirectId)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects.update') || !$request->attributes->get('api_key')->can('admin.redirects.update')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $request->validate([
+            'from' => 'required|url|unique:redirects,from,' . $redirectId,
+            'to' => 'required|url',
+            'status_code' => 'required|in:301,302,303,307,308',
+            'active' => 'nullable|boolean',
+            'include_query_string' => 'nullable|boolean',
+            'internal' => 'nullable|boolean',
+        ]);
+
+        $redirect = Redirect::findOrFail($redirectId);
+
+        UpdateRedirectAction::run($redirect, $request->all());
+
+        return response()->json([
+            'message' => 'Redirect updated successfully',
+            'redirect' => $redirect->fresh(),
+        ]);
+    }
+
+    #[PathParameter('redirectId', description: 'ID of the redirect to delete', type: 'integer')]
+    public function deleteRedirect(Request $request, $redirectId)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects.delete') || !$request->attributes->get('api_key')->can('admin.redirects.delete')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $redirect = Redirect::findOrFail($redirectId);
+
+        DeleteRedirectAction::run($redirect);
+
+        return response()->json([
+            'message' => 'Redirect deleted successfully',
+        ]);
+    }
+
+    #[PathParameter('redirectId', description: 'ID of the redirect to get stats for', type: 'integer')]
+    public function getRedirectStats(Request $request, $redirectId)
+    {
+        $user = $request->attributes->get('api_key')->user;
+
+        if (!$user->can('admin.redirects') || !$request->attributes->get('api_key')->can('admin.redirects')) {
+            return response()->json(['error' => 'Unauthorized'], 403);
+        }
+
+        $redirect = Redirect::findOrFail($redirectId);
+
+        return response()->json([
+            'message' => 'Redirect stats retrieved successfully',
+            'stats' => [
+                'hits' => $redirect->hits,
+                'last_accessed_at' => $redirect->last_accessed_at,
+            ],
+        ]);
+    }
+}

Redirects/app/Http/Middleware/CheckRedirects.php

@@ -0,0 +1,76 @@
+<?php
+
+namespace Modules\Redirects\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+use Modules\Redirects\Models\Redirect;
+
+class CheckRedirects
+{
+    public function handle(Request $request, Closure $next)
+    {
+        $fullUrl = $request->fullUrl();
+        $path = '/' . ltrim($request->path(), '/');
+        $host = $request->getScheme() . '://' . $request->getHost();
+        $urlWithoutQuery = $host . $path;
+
+        $redirect = Redirect::where('active', true)
+            ->where(function ($q) use ($fullUrl, $path, $host, $urlWithoutQuery) {
+                $q->where('from', $fullUrl)
+                    ->orWhere('from', $urlWithoutQuery)
+                    ->orWhere('from', $host)
+                    ->orWhere('from', $path);
+            })
+            ->orderByRaw("CASE
+                WHEN `from` = ? THEN 1
+                WHEN `from` = ? THEN 2
+                WHEN `from` = ? THEN 3
+                WHEN `from` = ? THEN 4
+                ELSE 5 END", [$fullUrl, $urlWithoutQuery, $host, $path])
+            ->first();
+
+        if ($redirect && $this->hasAccess($redirect, $request)) {
+            $targetUrl = $redirect->to;
+            if ($redirect->include_query_string && $request->getQueryString()) {
+                $separator = parse_url($targetUrl, PHP_URL_QUERY) ? '&' : '?';
+                $targetUrl .= $separator . $request->getQueryString();
+            }
+
+            $redirect->increment('hits');
+            $redirect->update(['last_accessed_at' => now()]);
+
+            return redirect($targetUrl, $redirect->status_code);
+        }
+
+        return $next($request);
+    }
+
+    private function hasAccess(Redirect $redirect, Request $request): bool
+    {
+        if (!$redirect->internal) {
+            return true;
+        }
+
+        if (!auth()->check()) {
+            return false;
+        }
+
+        $user = auth()->user();
+        $access = $redirect->access()->where('can_update', false);
+
+        $hasRoleAccess = $access->whereNotNull('role_id')
+            ->whereIn('role_id', $user->roles->pluck('id'))
+            ->exists();
+
+        $hasPermissionAccess = $access->whereNotNull('permission_id')
+            ->whereIn('permission_id', $user->getAllPermissions()->pluck('id'))
+            ->exists();
+
+        $hasUserAccess = $access->whereNotNull('user_id')
+            ->where('user_id', $user->id)
+            ->exists();
+
+        return $hasRoleAccess || $hasPermissionAccess || $hasUserAccess;
+    }
+}