Merge branch '2.1' of github.com:krayin/laravel-crm into issue#2256

Author: suraj-webkul

README.md

@@ -110,6 +110,12 @@ php artisan serve
 email:admin@example.com
 password:admin123
 ```
+### Krayin CRM Multi Tenant SaaS
+
+[Krayin CRM Multi Tenant SaaS](https://krayincrm.com/extensions/krayin-crm-multi-tenant-saas-extension/) Krayin Multitenant SaaS is a Laravel-based CRM solution that allows multiple businesses (tenants) to use a single application instance while keeping their data isolated and secure.
+
+![enter image description here](https://raw.githubusercontent.com/krayin/temp-media/master/krayin-saas.png)
+
 ### WhatsApp CRM Integration
 
 [Krayin CRM WhatsApp](https://krayincrm.com/extensions/krayin-crm-whatsapp-extension/) Extension enables the store administrator to generate leads via their WhatsApp number.

database/migrations/2025_07_01_133612_alter_lead_pipelines_table.php

@@ -0,0 +1,30 @@
+<?php
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Schema;
+
+return new class extends Migration
+{
+    /**
+     * Run the migrations.
+     */
+    public function up(): void
+    {
+        Schema::table('lead_pipelines', function (Blueprint $table) {
+            $table->string('name')->unique()->change();
+        });
+    }
+
+    /**
+     * Reverse the migrations.
+     */
+    public function down(): void
+    {
+        Schema::table('lead_pipelines', function (Blueprint $table) {
+            $table->dropUnique(['name']);
+
+            $table->string('name')->change();
+        });
+    }
+};

packages/Webkul/Admin/src/Http/Controllers/Lead/LeadController.php

@@ -153,24 +153,28 @@ public function create(): View
     /**
      * Store a newly created resource in storage.
      */
-    public function store(LeadForm $request): RedirectResponse
+    public function store(LeadForm $request): RedirectResponse|JsonResponse
     {
         Event::dispatch('lead.create.before');
 
-        $data = $request->all();
+        $data = request()->all();
 
         $data['status'] = 1;
 
-        if (isset($data['lead_pipeline_stage_id'])) {
+        if (! empty($data['lead_pipeline_stage_id'])) {
             $stage = $this->stageRepository->findOrFail($data['lead_pipeline_stage_id']);
 
             $data['lead_pipeline_id'] = $stage->lead_pipeline_id;
         } else {
-            $pipeline = $this->pipelineRepository->getDefaultPipeline();
+            if (empty($data['lead_pipeline_id'])) {
+                $pipeline = $this->pipelineRepository->getDefaultPipeline();
 
-            $stage = $pipeline->stages()->first();
+                $data['lead_pipeline_id'] = $pipeline->id;
+            } else {
+                $pipeline = $this->pipelineRepository->findOrFail($data['lead_pipeline_id']);
+            }
 
-            $data['lead_pipeline_id'] = $pipeline->id;
+            $stage = $pipeline->stages()->first();
 
             $data['lead_pipeline_stage_id'] = $stage->id;
         }
@@ -181,11 +185,22 @@ public function store(LeadForm $request): RedirectResponse
 
         $lead = $this->leadRepository->create($data);
 
+        if (request()->ajax()) {
+            return response()->json([
+                'message' => trans('admin::app.leads.create-success'),
+                'data'    => new LeadResource($lead),
+            ]);
+        }
+
         Event::dispatch('lead.create.after', $lead);
 
         session()->flash('success', trans('admin::app.leads.create-success'));
 
-        return redirect()->route('admin.leads.index', $data['lead_pipeline_id']);
+        if (! empty($data['lead_pipeline_id'])) {
+            $params['pipeline_id'] = $data['lead_pipeline_id'];
+        }
+
+        return redirect()->route('admin.leads.index', $params ?? []);
     }
 
     /**

packages/Webkul/Admin/src/Http/Controllers/Products/ProductController.php

@@ -153,7 +153,9 @@ public function search(): JsonResource
     {
         $products = $this->productRepository
             ->pushCriteria(app(RequestCriteria::class))
-            ->all();
+            ->orderBy('created_at', 'desc')
+            ->take(5)
+            ->get();
 
         return ProductResource::collection($products);
     }

packages/Webkul/Admin/src/Http/Controllers/Settings/PipelineController.php

@@ -79,9 +79,24 @@ public function update(PipelineForm $request, int $id): RedirectResponse
     {
         $request->validated();
 
-        $request->merge([
-            'is_default' => request()->has('is_default') ? 1 : 0,
-        ]);
+        $isDefault = request()->has('is_default') ? 1 : 0;
+
+        if (! $isDefault) {
+            $defaultCount = $this->pipelineRepository->findWhere(['is_default' => 1])->count();
+
+            $pipeline = $this->pipelineRepository->find($id);
+
+            if (
+                $defaultCount === 1
+                && $pipeline->is_default
+            ) {
+                session()->flash('error', trans('admin::app.settings.pipelines.index.default-required'));
+
+                return redirect()->back();
+            }
+        }
+
+        $request->merge(['is_default' => $isDefault]);
 
         Event::dispatch('settings.pipeline.update.before', $id);
 

packages/Webkul/Admin/src/Http/Controllers/Settings/UserController.php

@@ -4,6 +4,7 @@
 
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\Resources\Json\JsonResource;
+use Illuminate\Support\Arr;
 use Illuminate\Support\Facades\Event;
 use Illuminate\Support\Facades\Mail;
 use Illuminate\View\View;
@@ -58,25 +59,24 @@ public function store(): View|JsonResponse
             'password'         => 'nullable',
             'confirm_password' => 'nullable|required_with:password|same:password',
             'role_id'          => 'required',
+            'status'           => 'boolean|in:0,1',
+            'view_permission'  => 'string|in:global,group,individual',
         ]);
 
         $data = request()->all();
 
-        if (isset($data['password']) && $data['password']) {
+        if (
+            isset($data['password'])
+            && $data['password']
+        ) {
             $data['password'] = bcrypt($data['password']);
         }
 
-        $data['status'] = $data['status'] ? 1 : 0;
-
         Event::dispatch('settings.user.create.before');
 
         $admin = $this->userRepository->create($data);
 
-        $admin->view_permission = $data['view_permission'];
-
-        $admin->save();
-
-        $admin->groups()->sync(request('groups') ?? []);
+        $admin->groups()->sync($data['groups'] ?? []);
 
         try {
             Mail::queue(new UserCreatedNotification($admin));
@@ -111,33 +111,33 @@ public function update(int $id): JsonResponse
     {
         $this->validate(request(), [
             'email'            => 'required|email|unique:users,email,'.$id,
-            'name'             => 'required',
-            'password'         => 'nullable',
+            'name'             => 'required|string',
+            'password'         => 'nullable|string|min:6',
             'confirm_password' => 'nullable|required_with:password|same:password',
-            'role_id'          => 'required',
+            'role_id'          => 'required|integer|exists:roles,id',
+            'status'           => 'nullable|boolean|in:0,1',
+            'view_permission'  => 'required|string|in:global,group,individual',
         ]);
 
         $data = request()->all();
 
-        if (! $data['password']) {
-            unset($data['password'], $data['confirm_password']);
+        if (empty($data['password'])) {
+            $data = Arr::except($data, ['password', 'confirm_password']);
         } else {
             $data['password'] = bcrypt($data['password']);
         }
 
-        if (auth()->guard('user')->user()->id != $id) {
-            $data['status'] = $data['status'] ? 1 : 0;
+        $authUser = auth()->guard('user')->user();
+
+        if ($authUser->id == $id) {
+            $data['status'] = true;
         }
 
         Event::dispatch('settings.user.update.before', $id);
 
         $admin = $this->userRepository->update($data, $id);
 
-        $admin->view_permission = $data['view_permission'];
-
-        $admin->save();
-
-        $admin->groups()->sync(request()->input('groups') ?? []);
+        $admin->groups()->sync($data['groups'] ?? []);
 
         Event::dispatch('settings.user.update.after', $admin);
 

packages/Webkul/Admin/src/Http/Controllers/User/SessionController.php

@@ -2,38 +2,38 @@
 
 namespace Webkul\Admin\Http\Controllers\User;
 
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Support\Collection;
+use Illuminate\View\View;
 use Webkul\Admin\Http\Controllers\Controller;
+use Webkul\Core\Menu\MenuItem;
 
 class SessionController extends Controller
 {
     /**
      * Show the form for creating a new resource.
-     *
-     * @return \Illuminate\View\View
      */
-    public function create()
+    public function create(): RedirectResponse|View
     {
         if (auth()->guard('user')->check()) {
             return redirect()->route('admin.dashboard.index');
-        } else {
-            if (strpos(url()->previous(), 'admin') !== false) {
-                $intendedUrl = url()->previous();
-            } else {
-                $intendedUrl = route('admin.dashboard.index');
-            }
+        }
 
-            session()->put('url.intended', $intendedUrl);
+        $previousUrl = url()->previous();
 
-            return view('admin::sessions.login');
-        }
+        $intendedUrl = str_contains($previousUrl, 'admin')
+            ? $previousUrl
+            : route('admin.dashboard.index');
+
+        session()->put('url.intended', $intendedUrl);
+
+        return view('admin::sessions.login');
     }
 
     /**
      * Store a newly created resource in storage.
-     *
-     * @return \Illuminate\Http\Response
      */
-    public function store()
+    public function store(): RedirectResponse
     {
         $this->validate(request(), [
             'email'    => 'required|email',
@@ -54,9 +54,11 @@ public function store()
             return redirect()->route('admin.session.create');
         }
 
-        if (! bouncer()->hasPermission('dashboard')) {
-            $availableNextMenu = menu()->getItems('admin')?->first();
+        $menus = menu()->getItems('admin');
 
+        $availableNextMenu = $menus?->first();
+
+        if (! bouncer()->hasPermission('dashboard')) {
             if (is_null($availableNextMenu)) {
                 session()->flash('error', trans('admin::app.users.not-permission'));
 
@@ -68,18 +70,48 @@ public function store()
             return redirect()->to($availableNextMenu->getUrl());
         }
 
-        return redirect()->intended(route('admin.dashboard.index'));
+        $hasAccessToIntendedUrl = $this->canAccessIntendedUrl($menus, redirect()->getIntendedUrl());
+
+        if ($hasAccessToIntendedUrl) {
+            return redirect()->intended(route('admin.dashboard.index'));
+        }
+
+        return redirect()->to($availableNextMenu->getUrl());
     }
 
     /**
      * Remove the specified resource from storage.
-     *
-     * @return \Illuminate\Http\Response
      */
-    public function destroy()
+    public function destroy(): RedirectResponse
     {
         auth()->guard('user')->logout();
 
         return redirect()->route('admin.session.create');
     }
+
+    /**
+     * Find menu item by URL.
+     */
+    protected function canAccessIntendedUrl(Collection $menus, ?string $url): ?MenuItem
+    {
+        if (is_null($url)) {
+            return null;
+        }
+
+        foreach ($menus as $menu) {
+            if ($menu->getUrl() === $url) {
+                return $menu;
+            }
+
+            if ($menu->haveChildren()) {
+                $found = $this->canAccessIntendedUrl($menu->getChildren(), $url);
+
+                if ($found) {
+                    return $found;
+                }
+            }
+        }
+
+        return null;
+    }
 }

packages/Webkul/Admin/src/Http/Requests/PipelineForm.php

@@ -36,14 +36,14 @@ public function rules()
     {
         if (request('id')) {
             return [
-                'name'          => 'required',
+                'name'          => 'required|unique:lead_pipelines,name,'.request('id'),
                 'stages.*.name' => 'unique_key',
                 'stages.*.code' => 'unique_key',
             ];
         }
 
         return [
-            'name'          => 'required',
+            'name'          => 'required|unique:lead_pipelines,name',
             'rotten_days'   => 'required',
             'stages.*.name' => 'unique_key',
             'stages.*.code' => 'unique_key',