deployment script variables (#238)

* manage site aliases

* build assets

* fix tests

.env.example

@@ -12,5 +12,5 @@ MAIL_PORT=
 MAIL_USERNAME=null
 MAIL_PASSWORD=null
 MAIL_ENCRYPTION=null
-MAIL_FROM_ADDRESS=null
+MAIL_FROM_ADDRESS="noreply@${APP_NAME}"
 MAIL_FROM_NAME="${APP_NAME}"

.env.prod

@@ -12,5 +12,5 @@ MAIL_PORT=
 MAIL_USERNAME=null
 MAIL_PASSWORD=null
 MAIL_ENCRYPTION=null
-MAIL_FROM_ADDRESS=null
+MAIL_FROM_ADDRESS="noreply@${APP_NAME}"
 MAIL_FROM_NAME="${APP_NAME}"

.env.sail

@@ -13,5 +13,5 @@ MAIL_PORT=
 MAIL_USERNAME=null
 MAIL_PASSWORD=null
 MAIL_ENCRYPTION=null
-MAIL_FROM_ADDRESS=null
+MAIL_FROM_ADDRESS="noreply@${APP_NAME}"
 MAIL_FROM_NAME="${APP_NAME}"

.github/ISSUE_TEMPLATE/feature_request.md

@@ -9,4 +9,4 @@
 
 To request a feature or suggest an idea please add it to the feedback boards
 
-https://features.vitodeploy.com/
+https://vitodeploy.featurebase.app/

.github/workflows/docker-1x.yml

@@ -0,0 +1,35 @@
+name: Build and push Docker image
+
+on:
+  push:
+    branches:
+      - 1.x
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v2
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKER_USERNAME }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Build and push Docker image
+        run: |
+          docker buildx build . \
+            -f docker/Dockerfile \
+            -t vitodeploy/vito:1.x \
+            --build-arg="RELEASE=0" \
+            --platform linux/amd64,linux/arm64 \
+            --no-cache \
+            --push

.github/workflows/docker-release.yml

@@ -0,0 +1,35 @@
+name: Build and push Docker image
+
+on:
+  release:
+    types: [created]
+
+jobs:
+  build-and-push:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v2
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKER_USERNAME }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Build and push Docker image
+        run: |
+          docker buildx build . \
+            -f docker/Dockerfile \
+            -t vitodeploy/vito:${{ github.event.release.tag_name }} \
+            -t vitodeploy/vito:latest \
+            --build-arg="RELEASE=0" \
+            --platform linux/amd64,linux/arm64 \
+            --no-cache \
+            --push

.gitignore

@@ -7,6 +7,8 @@
 /storage/test-key
 /storage/test-key.pub
 /vendor
+/storage/database.sqlite
+/storage/database-test.sqlite
 .env
 .env.backup
 .env.production

CONTRIBUTING.md

@@ -1,23 +1,5 @@
 # Contributing
-Thank you for your interest in contributing! There are a couple of contribution guidelines that make it easier to apply the incoming suggestions.
 
-If you want to contribute please start with the issues. Issues labeled with "Bug" are the higher priorities.
+Please read the contribution guide on the website
 
-## Issues
-1. Issues are the best place to propose a new feature.
-2. If you are adding a feature that there is no issue for yet, please first open an issue and label it as "feature" and lets discuss it before you implement it.
-3. Search the issues before proposing a feature to see if it is already under discussion. Referencing existing issues is a good way to increase the priority of your own.
-4. We don't have an issue template yet, but the more detailed your explanation, the more quickly we'll be able to evaluate it.
-5. Search for the issue that you also have. Give it a reaction (and comment, if you have something to add). We note that!
-
-## Pull Requests
-1. Open PRs represent issues that we're actively thinking about merging (at a pace we can manage). If we think a proposal needs more discussion, or that the existing code would require a lot of back-and-forth to merge, we might close it and suggest you make an issue.
-2. All PRs should be made against the `main` branch. This can be changed in the future.
-3. If you are making changes to the front-end layer, Please build the assets via `npm run build` and push it with the other changes.
-4. Write tests for your code. Tests can be Unit or Feature.
-5. Code refactors will be closed. For the architectural refactors open an issue first.
-6. Use `./vendor/bin/pint` to style your code before opening a PR otherwise the actions will fail.
-7. Typo fixes in documentation are welcome, but if it's at all debatable we might just close it.
-
-## Misc
-1. If you think we closed something incorrectly, feel free to (politely) tell us why! We're human and make mistakes.
+https://vitodeploy.com/introduction/contribution-guide.html

README.md

@@ -1,6 +1,6 @@
 
 <p align="center">
-    <img alt="srcshot 2024-02-23 at 16 26 21@2x" src="https://github.com/vitodeploy/vito/assets/61919774/9b3ae8fe-996a-4e10-b42e-74097f8e5512" alt="VitoDeploy>
+    <img src="https://github.com/vitodeploy/vito/assets/61919774/8060fded-58e3-4d58-b58b-5b717b0718e9" alt="VitoDeploy>
     <p align="center">
         <a href="https://github.com/vitodeploy/vito/actions"><img alt="GitHub Workflow Status" src="https://github.com/vitodeploy/vito/workflows/tests/badge.svg"></a>
     </p>
@@ -36,8 +36,8 @@ ## Useful Links
 - [Install via Docker](https://vitodeploy.com/introduction/installation.html#install-via-docker)
 - [Feedbacks](https://vitodeploy.featurebase.app)
 - [Roadmap](https://vitodeploy.featurebase.app/roadmap)
-- [Video Demo](https://youtu.be/rLRHIyEfON8)
-- [Discord](https://discord.gg/dcUWA5DV)
+- [Video Demo](https://youtu.be/AbmUOBDOc28)
+- [Discord](https://discord.gg/uZeeHZZnm5)
 - [Contribution](/CONTRIBUTING.md)
 - [Security](/SECURITY.md)
 
@@ -50,7 +50,6 @@ ## Credits
 - Alpinejs
 - HTMX
 - Vite
-- Toastr by CodeSeven
 - Prettier
 - Postcss
 - Flowbite

app/Actions/CronJob/DeleteCronJob.php

@@ -2,6 +2,7 @@
 
 namespace App\Actions\CronJob;
 
+use App\Enums\CronjobStatus;
 use App\Models\CronJob;
 use App\Models\Server;
 
@@ -10,7 +11,9 @@ class DeleteCronJob
     public function delete(Server $server, CronJob $cronJob): void
     {
         $user = $cronJob->user;
-        $cronJob->delete();
+        $cronJob->status = CronjobStatus::DELETING;
+        $cronJob->save();
         $server->cron()->update($cronJob->user, CronJob::crontab($server, $user));
+        $cronJob->delete();
     }
 }

app/Actions/CronJob/DisableCronJob.php

@@ -0,0 +1,20 @@
+<?php
+
+namespace App\Actions\CronJob;
+
+use App\Enums\CronjobStatus;
+use App\Models\CronJob;
+use App\Models\Server;
+
+class DisableCronJob
+{
+    public function disable(Server $server, CronJob $cronJob): void
+    {
+        $cronJob->status = CronjobStatus::DISABLING;
+        $cronJob->save();
+
+        $server->cron()->update($cronJob->user, CronJob::crontab($server, $cronJob->user));
+        $cronJob->status = CronjobStatus::DISABLED;
+        $cronJob->save();
+    }
+}

app/Actions/CronJob/EnableCronJob.php

@@ -0,0 +1,20 @@
+<?php
+
+namespace App\Actions\CronJob;
+
+use App\Enums\CronjobStatus;
+use App\Models\CronJob;
+use App\Models\Server;
+
+class EnableCronJob
+{
+    public function enable(Server $server, CronJob $cronJob): void
+    {
+        $cronJob->status = CronjobStatus::ENABLING;
+        $cronJob->save();
+
+        $server->cron()->update($cronJob->user, CronJob::crontab($server, $cronJob->user));
+        $cronJob->status = CronjobStatus::READY;
+        $cronJob->save();
+    }
+}

app/Actions/Database/CreateDatabase.php

@@ -22,7 +22,9 @@ public function create(Server $server, array $input): Database
             'server_id' => $server->id,
             'name' => $input['name'],
         ]);
-        $server->database()->handler()->create($database->name);
+        /** @var \App\SSH\Services\Database\Database */
+        $databaseHandler = $server->database()->handler();
+        $databaseHandler->create($database->name);
         $database->status = DatabaseStatus::READY;
         $database->save();
 

app/Actions/Monitoring/GetMetrics.php

@@ -0,0 +1,150 @@
+<?php
+
+namespace App\Actions\Monitoring;
+
+use App\Models\Server;
+use Carbon\Carbon;
+use Illuminate\Contracts\Database\Query\Expression;
+use Illuminate\Support\Facades\DB;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class GetMetrics
+{
+    public function filter(Server $server, array $input): array
+    {
+        if (isset($input['from']) && isset($input['to']) && $input['from'] === $input['to']) {
+            $input['from'] = Carbon::parse($input['from'])->format('Y-m-d').' 00:00:00';
+            $input['to'] = Carbon::parse($input['to'])->format('Y-m-d').' 23:59:59';
+        }
+
+        $defaultInput = [
+            'period' => '10m',
+        ];
+
+        $input = array_merge($defaultInput, $input);
+
+        $this->validate($input);
+
+        return $this->metrics(
+            server: $server,
+            fromDate: $this->getFromDate($input),
+            toDate: $this->getToDate($input),
+            interval: $this->getInterval($input)
+        );
+    }
+
+    private function metrics(
+        Server $server,
+        Carbon $fromDate,
+        Carbon $toDate,
+        ?Expression $interval = null
+    ): array {
+        $metrics = DB::table('metrics')
+            ->where('server_id', $server->id)
+            ->whereBetween('created_at', [$fromDate->format('Y-m-d H:i:s'), $toDate->format('Y-m-d H:i:s')])
+            ->select(
+                [
+                    DB::raw('created_at as date'),
+                    DB::raw('ROUND(AVG(load), 2) as load'),
+                    DB::raw('ROUND(AVG(memory_total), 2) as memory_total'),
+                    DB::raw('ROUND(AVG(memory_used), 2) as memory_used'),
+                    DB::raw('ROUND(AVG(memory_free), 2) as memory_free'),
+                    DB::raw('ROUND(AVG(disk_total), 2) as disk_total'),
+                    DB::raw('ROUND(AVG(disk_used), 2) as disk_used'),
+                    DB::raw('ROUND(AVG(disk_free), 2) as disk_free'),
+                    $interval,
+                ],
+            )
+            ->groupByRaw('date_interval')
+            ->orderBy('date_interval')
+            ->get()
+            ->map(function ($item) {
+                $item->date = Carbon::parse($item->date)->format('Y-m-d H:i');
+
+                return $item;
+            });
+
+        return [
+            'metrics' => $metrics,
+        ];
+    }
+
+    private function getFromDate(array $input): Carbon
+    {
+        if ($input['period'] === 'custom') {
+            return new Carbon($input['from']);
+        }
+
+        return Carbon::parse('-'.convert_time_format($input['period']));
+    }
+
+    private function getToDate(array $input): Carbon
+    {
+        if ($input['period'] === 'custom') {
+            return new Carbon($input['to']);
+        }
+
+        return Carbon::now();
+    }
+
+    private function getInterval(array $input): Expression
+    {
+        if ($input['period'] === 'custom') {
+            $from = new Carbon($input['from']);
+            $to = new Carbon($input['to']);
+            $periodInHours = $from->diffInHours($to);
+        }
+
+        if (! isset($periodInHours)) {
+            $periodInHours = Carbon::parse(
+                convert_time_format($input['period'])
+            )->diffInHours();
+        }
+
+        if ($periodInHours <= 1) {
+            return DB::raw("strftime('%Y-%m-%d %H:%M:00', created_at) as date_interval");
+        }
+
+        if ($periodInHours <= 24) {
+            return DB::raw("strftime('%Y-%m-%d %H:00:00', created_at) as date_interval");
+        }
+
+        if ($periodInHours > 24) {
+            return DB::raw("strftime('%Y-%m-%d 00:00:00', created_at) as date_interval");
+        }
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'period' => [
+                'required',
+                Rule::in([
+                    '10m',
+                    '30m',
+                    '1h',
+                    '12h',
+                    '1d',
+                    '7d',
+                    'custom',
+                ]),
+            ],
+        ])->validate();
+
+        if ($input['period'] === 'custom') {
+            Validator::make($input, [
+                'from' => [
+                    'required',
+                    'date',
+                    'before:to',
+                ],
+                'to' => [
+                    'required',
+                    'date',
+                    'after:from',
+                ],
+            ])->validate();
+        }
+    }
+}

app/Actions/Monitoring/UpdateMetricSettings.php

@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Actions\Monitoring;
+
+use App\Models\Server;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class UpdateMetricSettings
+{
+    public function update(Server $server, array $input): void
+    {
+        $this->validate($input);
+
+        $service = $server->monitoring();
+
+        $data = $service->handler()->data();
+        $data['data_retention'] = $input['data_retention'];
+        $service->type_data = $data;
+        $service->save();
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'data_retention' => [
+                'required',
+                Rule::in(config('core.metrics_data_retention')),
+            ],
+        ])->validate();
+    }
+}

app/Actions/PHP/ChangeDefaultCli.php

@@ -4,6 +4,7 @@
 
 use App\Enums\ServiceStatus;
 use App\Models\Server;
+use App\SSH\Services\PHP\PHP;
 use Illuminate\Validation\ValidationException;
 
 class ChangeDefaultCli
@@ -12,7 +13,9 @@ public function change(Server $server, array $input): void
     {
         $this->validate($server, $input);
         $service = $server->php($input['version']);
-        $service->handler()->setDefaultCli();
+        /** @var PHP $handler */
+        $handler = $service->handler();
+        $handler->setDefaultCli();
         $server->defaultService('php')->update(['is_default' => 0]);
         $service->update(['is_default' => 1]);
         $service->update(['status' => ServiceStatus::READY]);

app/Actions/PHP/GetPHPIni.php

@@ -3,6 +3,7 @@
 namespace App\Actions\PHP;
 
 use App\Models\Server;
+use App\SSH\Services\PHP\PHP;
 use Illuminate\Validation\ValidationException;
 
 class GetPHPIni
@@ -14,7 +15,10 @@ public function getIni(Server $server, array $input): string
         $php = $server->php($input['version']);
 
         try {
-            return $php->handler()->getPHPIni();
+            /** @var PHP $handler */
+            $handler = $php->handler();
+
+            return $handler->getPHPIni();
         } catch (\Throwable $e) {
             throw ValidationException::withMessages(
                 ['ini' => $e->getMessage()]

app/Actions/PHP/InstallPHPExtension.php

@@ -4,6 +4,7 @@
 
 use App\Models\Server;
 use App\Models\Service;
+use App\SSH\Services\PHP\PHP;
 use Illuminate\Support\Facades\Validator;
 use Illuminate\Validation\Rule;
 use Illuminate\Validation\ValidationException;
@@ -23,7 +24,9 @@ public function install(Server $server, array $input): Service
         $service->save();
 
         dispatch(function () use ($service, $input) {
-            $service->handler()->installExtension($input['extension']);
+            /** @var PHP $handler */
+            $handler = $service->handler();
+            $handler->installExtension($input['extension']);
         })->catch(function () use ($service, $input) {
             $service->refresh();
             $typeData = $service->type_data;

app/Actions/Projects/CreateProject.php

@@ -10,26 +10,31 @@ class CreateProject
 {
     public function create(User $user, array $input): Project
     {
-        $this->validate($user, $input);
+        if (isset($input['name'])) {
+            $input['name'] = strtolower($input['name']);
+        }
+
+        $this->validate($input);
 
         $project = new Project([
-            'user_id' => $user->id,
             'name' => $input['name'],
         ]);
 
         $project->save();
 
+        $project->users()->attach($user);
+
         return $project;
     }
 
-    private function validate(User $user, array $input): void
+    private function validate(array $input): void
     {
         Validator::make($input, [
             'name' => [
                 'required',
                 'string',
                 'max:255',
-                'unique:projects,name,NULL,id,user_id,'.$user->id,
+                'unique:projects,name',
             ],
         ])->validate();
     }

app/Actions/Projects/DeleteProject.php

@@ -17,12 +17,16 @@ public function delete(User $user, Project $project): void
         }
 
         if ($user->current_project_id == $project->id) {
-            /** @var Project $randomProject */
-            $randomProject = $user->projects()->where('id', '!=', $project->id)->first();
-            $user->current_project_id = $randomProject->id;
-            $user->save();
+            throw ValidationException::withMessages([
+                'project' => __('Cannot delete your current project.'),
+            ]);
         }
 
+        /** @var Project $randomProject */
+        $randomProject = $user->projects()->where('project_id', '!=', $project->id)->first();
+        $user->current_project_id = $randomProject->id;
+        $user->save();
+
         $project->delete();
     }
 }

app/Actions/Projects/UpdateProject.php

@@ -10,6 +10,10 @@ class UpdateProject
 {
     public function update(Project $project, array $input): Project
     {
+        if (isset($input['name'])) {
+            $input['name'] = strtolower($input['name']);
+        }
+
         $this->validate($project, $input);
 
         $project->name = $input['name'];

app/Actions/SSL/CreateSSL.php

@@ -6,6 +6,7 @@
 use App\Enums\SslType;
 use App\Models\Site;
 use App\Models\Ssl;
+use App\SSH\Services\Webserver\Webserver;
 use Illuminate\Support\Facades\Validator;
 use Illuminate\Validation\Rule;
 use Illuminate\Validation\ValidationException;
@@ -27,16 +28,23 @@ public function create(Site $site, array $input): void
             'expires_at' => $input['type'] === SslType::LETSENCRYPT ? now()->addMonths(3) : $input['expires_at'],
             'status' => SslStatus::CREATING,
         ]);
+        $ssl->domains = [$site->domain];
+        if (isset($input['aliases']) && $input['aliases']) {
+            $ssl->domains = array_merge($ssl->domains, $site->aliases);
+        }
         $ssl->save();
 
         dispatch(function () use ($site, $ssl) {
-            $site->server->webserver()->handler()->setupSSL($ssl);
+            /** @var Webserver $webserver */
+            $webserver = $site->server->webserver()->handler();
+            $webserver->setupSSL($ssl);
             $ssl->status = SslStatus::CREATED;
             $ssl->save();
             $site->type()->edit();
         })->catch(function () use ($ssl) {
-            $ssl->delete();
-        });
+            $ssl->status = SslStatus::FAILED;
+            $ssl->save();
+        })->onConnection('ssh');
     }
 
     /**

app/Actions/Script/CreateScript.php

@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Actions\Script;
+
+use App\Models\Script;
+use App\Models\User;
+use Illuminate\Support\Facades\Validator;
+
+class CreateScript
+{
+    public function create(User $user, array $input): Script
+    {
+        $this->validate($input);
+
+        $script = new Script([
+            'user_id' => $user->id,
+            'name' => $input['name'],
+            'content' => $input['content'],
+        ]);
+        $script->save();
+
+        return $script;
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'name' => ['required', 'string', 'max:255'],
+            'content' => ['required', 'string'],
+        ])->validate();
+    }
+}

app/Actions/Script/EditScript.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Actions\Script;
+
+use App\Models\Script;
+use Illuminate\Support\Facades\Validator;
+
+class EditScript
+{
+    public function edit(Script $script, array $input): Script
+    {
+        $this->validate($input);
+
+        $script->name = $input['name'];
+        $script->content = $input['content'];
+        $script->save();
+
+        return $script;
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'name' => ['required', 'string', 'max:255'],
+            'content' => ['required', 'string'],
+        ])->validate();
+    }
+}

app/Actions/Script/ExecuteScript.php

@@ -0,0 +1,62 @@
+<?php
+
+namespace App\Actions\Script;
+
+use App\Enums\ScriptExecutionStatus;
+use App\Models\Script;
+use App\Models\ScriptExecution;
+use App\Models\Server;
+use App\Models\ServerLog;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class ExecuteScript
+{
+    public function execute(Script $script, Server $server, array $input): ScriptExecution
+    {
+        $this->validate($server, $input);
+
+        $execution = new ScriptExecution([
+            'script_id' => $script->id,
+            'user' => $input['user'],
+            'variables' => $input['variables'] ?? [],
+            'status' => ScriptExecutionStatus::EXECUTING,
+        ]);
+        $execution->save();
+
+        dispatch(function () use ($execution, $server, $script) {
+            $content = $execution->getContent();
+            $log = ServerLog::make($server, 'script-'.$script->id.'-'.strtotime('now'));
+            $log->save();
+            $execution->server_log_id = $log->id;
+            $execution->save();
+            $server->os()->runScript('~/', $content, $log, $execution->user);
+            $execution->status = ScriptExecutionStatus::COMPLETED;
+            $execution->save();
+        })->catch(function () use ($execution) {
+            $execution->status = ScriptExecutionStatus::FAILED;
+            $execution->save();
+        })->onConnection('ssh');
+
+        return $execution;
+    }
+
+    private function validate(Server $server, array $input): void
+    {
+        Validator::make($input, [
+            'user' => [
+                'required',
+                Rule::in([
+                    'root',
+                    $server->ssh_user,
+                ]),
+            ],
+            'variables' => 'array',
+            'variables.*' => [
+                'required',
+                'string',
+                'max:255',
+            ],
+        ])->validate();
+    }
+}

app/Actions/Server/CheckConnection.php

@@ -2,6 +2,7 @@
 
 namespace App\Actions\Server;
 
+use App\Enums\ServerStatus;
 use App\Facades\Notifier;
 use App\Models\Server;
 use App\Notifications\ServerDisconnected;
@@ -15,12 +16,12 @@ public function check(Server $server): Server
         try {
             $server->ssh()->connect();
             $server->refresh();
-            if ($status == 'disconnected') {
-                $server->status = 'ready';
+            if (in_array($status, [ServerStatus::DISCONNECTED, ServerStatus::UPDATING])) {
+                $server->status = ServerStatus::READY;
                 $server->save();
             }
         } catch (Throwable) {
-            $server->status = 'disconnected';
+            $server->status = ServerStatus::DISCONNECTED;
             $server->save();
             Notifier::send($server, new ServerDisconnected($server));
         }

app/Actions/Server/CreateServerLog.php

@@ -0,0 +1,35 @@
+<?php
+
+namespace App\Actions\Server;
+
+use App\Models\Server;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\ValidationException;
+
+class CreateServerLog
+{
+    /**
+     * @throws ValidationException
+     */
+    public function create(Server $server, array $input): void
+    {
+        $this->validate($input);
+
+        $server->logs()->create([
+            'is_remote' => true,
+            'name' => $input['path'],
+            'type' => 'remote',
+            'disk' => 'ssh',
+        ]);
+    }
+
+    /**
+     * @throws ValidationException
+     */
+    protected function validate(array $input): void
+    {
+        Validator::make($input, [
+            'path' => 'required',
+        ])->validate();
+    }
+}

app/Actions/Server/Update.php

@@ -0,0 +1,25 @@
+<?php
+
+namespace App\Actions\Server;
+
+use App\Enums\ServerStatus;
+use App\Facades\Notifier;
+use App\Models\Server;
+use App\Notifications\ServerUpdateFailed;
+
+class Update
+{
+    public function update(Server $server): void
+    {
+        $server->status = ServerStatus::UPDATING;
+        $server->save();
+        dispatch(function () use ($server) {
+            $server->os()->upgrade();
+            $server->checkConnection();
+            $server->checkForUpdates();
+        })->catch(function () use ($server) {
+            Notifier::send($server, new ServerUpdateFailed($server));
+            $server->checkConnection();
+        })->onConnection('ssh');
+    }
+}

app/Actions/Service/Install.php

@@ -0,0 +1,57 @@
+<?php
+
+namespace App\Actions\Service;
+
+use App\Enums\ServiceStatus;
+use App\Models\Server;
+use App\Models\Service;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class Install
+{
+    public function install(Server $server, array $input): Service
+    {
+        $this->validate($server, $input);
+
+        $service = new Service([
+            'server_id' => $server->id,
+            'name' => $input['name'],
+            'type' => $input['type'],
+            'version' => $input['version'],
+            'status' => ServiceStatus::INSTALLING,
+        ]);
+
+        Validator::make($input, $service->handler()->creationRules($input))->validate();
+
+        $service->type_data = $service->handler()->creationData($input);
+
+        $service->save();
+
+        dispatch(function () use ($service) {
+            $service->handler()->install();
+            $service->status = ServiceStatus::READY;
+            $service->save();
+        })->catch(function () use ($service) {
+            $service->status = ServiceStatus::INSTALLATION_FAILED;
+            $service->save();
+        })->onConnection('ssh');
+
+        return $service;
+    }
+
+    private function validate(Server $server, array $input): void
+    {
+        Validator::make($input, [
+            'type' => [
+                'required',
+                Rule::in(config('core.service_types')),
+            ],
+            'name' => [
+                'required',
+                Rule::in(array_keys(config('core.service_types'))),
+            ],
+            'version' => 'required',
+        ])->validate();
+    }
+}

app/Actions/Service/Uninstall.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Actions\Service;
+
+use App\Enums\ServiceStatus;
+use App\Models\Service;
+use Illuminate\Support\Facades\Validator;
+
+class Uninstall
+{
+    public function uninstall(Service $service): void
+    {
+        Validator::make([
+            'service' => $service->id,
+        ], $service->handler()->deletionRules())->validate();
+
+        $service->status = ServiceStatus::UNINSTALLING;
+        $service->save();
+
+        dispatch(function () use ($service) {
+            $service->handler()->uninstall();
+            $service->delete();
+        })->catch(function () use ($service) {
+            $service->status = ServiceStatus::FAILED;
+            $service->save();
+        })->onConnection('ssh');
+    }
+}

app/Actions/Site/CreateSite.php

@@ -3,6 +3,8 @@
 namespace App\Actions\Site;
 
 use App\Enums\SiteStatus;
+use App\Exceptions\RepositoryNotFound;
+use App\Exceptions\RepositoryPermissionDenied;
 use App\Exceptions\SourceControlIsNotConnected;
 use App\Facades\Notifier;
 use App\Models\Server;
@@ -20,7 +22,6 @@ class CreateSite
 {
     /**
      * @throws SourceControlIsNotConnected
-     * @throws ValidationException
      */
     public function create(Server $server, array $input): Site
     {
@@ -32,7 +33,7 @@ public function create(Server $server, array $input): Site
                 'server_id' => $server->id,
                 'type' => $input['type'],
                 'domain' => $input['domain'],
-                'aliases' => isset($input['alias']) ? [$input['alias']] : [],
+                'aliases' => $input['aliases'] ?? [],
                 'path' => '/home/'.$server->getSshUser().'/'.$input['domain'],
                 'status' => SiteStatus::INSTALLING,
             ]);
@@ -47,7 +48,15 @@ public function create(Server $server, array $input): Site
                 }
             } catch (SourceControlIsNotConnected) {
                 throw ValidationException::withMessages([
-                    'source_control' => __('Source control is not connected'),
+                    'source_control' => 'Source control is not connected',
+                ]);
+            } catch (RepositoryPermissionDenied) {
+                throw ValidationException::withMessages([
+                    'repository' => 'You do not have permission to access this repository',
+                ]);
+            } catch (RepositoryNotFound) {
+                throw ValidationException::withMessages([
+                    'repository' => 'Repository not found',
                 ]);
             }
 
@@ -106,7 +115,7 @@ private function validateInputs(Server $server, array $input): void
                     return $query->where('server_id', $server->id);
                 }),
             ],
-            'alias' => [
+            'aliases.*' => [
                 new DomainRule(),
             ],
         ];

app/Actions/Site/Deploy.php

@@ -6,6 +6,7 @@
 use App\Exceptions\DeploymentScriptIsEmptyException;
 use App\Exceptions\SourceControlIsNotConnected;
 use App\Models\Deployment;
+use App\Models\ServerLog;
 use App\Models\Site;
 
 class Deploy
@@ -29,7 +30,7 @@ public function run(Site $site): Deployment
             'deployment_script_id' => $site->deploymentScript->id,
             'status' => DeploymentStatus::DEPLOYING,
         ]);
-        $lastCommit = $site->sourceControl()->provider()->getLastCommit($site->repository, $site->branch);
+        $lastCommit = $site->sourceControl()?->provider()?->getLastCommit($site->repository, $site->branch);
         if ($lastCommit) {
             $deployment->commit_id = $lastCommit['commit_id'];
             $deployment->commit_data = $lastCommit['commit_data'];
@@ -37,10 +38,20 @@ public function run(Site $site): Deployment
         $deployment->save();
 
         dispatch(function () use ($site, $deployment) {
-            $log = $site->server->os()->runScript($site->path, $site->deploymentScript->content, $site->id);
-            $deployment->status = DeploymentStatus::FINISHED;
+            /** @var ServerLog $log */
+            $log = ServerLog::make($site->server, 'deploy-'.strtotime('now'))
+                ->forSite($site);
+            $log->save();
             $deployment->log_id = $log->id;
             $deployment->save();
+            $site->server->os()->runScript(
+                path: $site->path,
+                script: $site->deploymentScript->content,
+                serverLog: $log,
+                variables: $site->environmentVariables($deployment)
+            );
+            $deployment->status = DeploymentStatus::FINISHED;
+            $deployment->save();
         })->catch(function () use ($deployment) {
             $deployment->status = DeploymentStatus::FAILED;
             $deployment->save();

app/Actions/Site/UpdateAliases.php

@@ -0,0 +1,33 @@
+<?php
+
+namespace App\Actions\Site;
+
+use App\Models\Site;
+use App\SSH\Services\Webserver\Webserver;
+use App\ValidationRules\DomainRule;
+use Illuminate\Support\Facades\Validator;
+
+class UpdateAliases
+{
+    public function update(Site $site, array $input): void
+    {
+        $this->validate($input);
+
+        $site->aliases = $input['aliases'] ?? [];
+
+        /** @var Webserver $webserver */
+        $webserver = $site->server->webserver()->handler();
+        $webserver->updateVHost($site, ! $site->hasSSL());
+
+        $site->save();
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'aliases.*' => [
+                new DomainRule(),
+            ],
+        ])->validate();
+    }
+}

app/Actions/Site/UpdateSourceControl.php

@@ -0,0 +1,49 @@
+<?php
+
+namespace App\Actions\Site;
+
+use App\Exceptions\RepositoryNotFound;
+use App\Exceptions\RepositoryPermissionDenied;
+use App\Exceptions\SourceControlIsNotConnected;
+use App\Models\Site;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+use Illuminate\Validation\ValidationException;
+
+class UpdateSourceControl
+{
+    public function update(Site $site, array $input): void
+    {
+        $this->validate($input);
+
+        $site->source_control_id = $input['source_control'];
+        try {
+            if ($site->sourceControl()) {
+                $site->sourceControl()->getRepo($site->repository);
+            }
+        } catch (SourceControlIsNotConnected) {
+            throw ValidationException::withMessages([
+                'source_control' => 'Source control is not connected',
+            ]);
+        } catch (RepositoryPermissionDenied) {
+            throw ValidationException::withMessages([
+                'repository' => 'You do not have permission to access this repository',
+            ]);
+        } catch (RepositoryNotFound) {
+            throw ValidationException::withMessages([
+                'repository' => 'Repository not found',
+            ]);
+        }
+        $site->save();
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'source_control' => [
+                'required',
+                Rule::exists('source_controls', 'id'),
+            ],
+        ])->validate();
+    }
+}

app/Actions/SourceControl/ConnectSourceControl.php

@@ -3,6 +3,7 @@
 namespace App\Actions\SourceControl;
 
 use App\Models\SourceControl;
+use App\Models\User;
 use Illuminate\Support\Arr;
 use Illuminate\Support\Facades\Validator;
 use Illuminate\Validation\Rule;
@@ -10,7 +11,7 @@
 
 class ConnectSourceControl
 {
-    public function connect(array $input): void
+    public function connect(User $user, array $input): void
     {
         $this->validate($input);
 
@@ -18,6 +19,7 @@ public function connect(array $input): void
             'provider' => $input['provider'],
             'profile' => $input['name'],
             'url' => Arr::has($input, 'url') ? $input['url'] : null,
+            'project_id' => isset($input['global']) && $input['global'] ? null : $user->current_project_id,
         ]);
 
         $this->validateProvider($sourceControl, $input);

app/Actions/SourceControl/EditSourceControl.php

@@ -0,0 +1,54 @@
+<?php
+
+namespace App\Actions\SourceControl;
+
+use App\Models\SourceControl;
+use App\Models\User;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\ValidationException;
+
+class EditSourceControl
+{
+    public function edit(SourceControl $sourceControl, User $user, array $input): void
+    {
+        $this->validate($input);
+
+        $sourceControl->profile = $input['name'];
+        $sourceControl->url = isset($input['url']) ? $input['url'] : null;
+        $sourceControl->project_id = isset($input['global']) && $input['global'] ? null : $user->current_project_id;
+
+        $this->validateProvider($sourceControl, $input);
+
+        $sourceControl->provider_data = $sourceControl->provider()->createData($input);
+
+        if (! $sourceControl->provider()->connect()) {
+            throw ValidationException::withMessages([
+                'token' => __('Cannot connect to :provider or invalid token!', ['provider' => $sourceControl->provider]
+                ),
+            ]);
+        }
+
+        $sourceControl->save();
+    }
+
+    /**
+     * @throws ValidationException
+     */
+    private function validate(array $input): void
+    {
+        $rules = [
+            'name' => [
+                'required',
+            ],
+        ];
+        Validator::make($input, $rules)->validate();
+    }
+
+    /**
+     * @throws ValidationException
+     */
+    private function validateProvider(SourceControl $sourceControl, array $input): void
+    {
+        Validator::make($input, $sourceControl->provider()->createRules($input))->validate();
+    }
+}

app/Actions/User/CreateUser.php

@@ -0,0 +1,40 @@
+<?php
+
+namespace App\Actions\User;
+
+use App\Enums\UserRole;
+use App\Models\User;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class CreateUser
+{
+    public function create(array $input): User
+    {
+        $this->validate($input);
+
+        /** @var User $user */
+        $user = User::query()->create([
+            'name' => $input['name'],
+            'email' => $input['email'],
+            'role' => $input['role'],
+            'password' => bcrypt($input['password']),
+            'timezone' => 'UTC',
+        ]);
+
+        return $user;
+    }
+
+    private function validate(array $input): void
+    {
+        Validator::make($input, [
+            'name' => 'required|string|max:255',
+            'email' => 'required|email|unique:users,email',
+            'password' => 'required|string|min:8',
+            'role' => [
+                'required',
+                Rule::in([UserRole::ADMIN, UserRole::USER]),
+            ],
+        ])->validate();
+    }
+}

app/Actions/User/UpdateUser.php

@@ -0,0 +1,48 @@
+<?php
+
+namespace App\Actions\User;
+
+use App\Enums\UserRole;
+use App\Models\User;
+use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Rule;
+
+class UpdateUser
+{
+    public function update(User $user, array $input): void
+    {
+        $this->validate($user, $input);
+
+        $user->name = $input['name'];
+        $user->email = $input['email'];
+        $user->timezone = $input['timezone'];
+        $user->role = $input['role'];
+
+        if (isset($input['password']) && $input['password'] !== null) {
+            $user->password = bcrypt($input['password']);
+        }
+
+        $user->save();
+    }
+
+    private function validate(User $user, array $input): void
+    {
+        Validator::make($input, [
+            'name' => ['required', 'string', 'max:255'],
+            'email' => ['required', 'email', 'max:255', Rule::unique('users')->ignore($user->id)],
+            'timezone' => [
+                'required',
+                Rule::in(timezone_identifiers_list()),
+            ],
+            'role' => [
+                'required',
+                Rule::in([UserRole::ADMIN, UserRole::USER]),
+                function ($attribute, $value, $fail) use ($user) {
+                    if ($user->is(auth()->user()) && $value !== $user->role) {
+                        $fail('You cannot change your own role');
+                    }
+                },
+            ],
+        ])->validate();
+    }
+}

app/Console/Commands/CreateUserCommand.php

@@ -7,7 +7,7 @@
 
 class CreateUserCommand extends Command
 {
-    protected $signature = 'user:create {name} {email} {password}';
+    protected $signature = 'user:create {name} {email} {password} {--role=admin}';
 
     protected $description = 'Create a new user';
 
@@ -25,6 +25,7 @@ public function handle(): void
             'name' => $this->argument('name'),
             'email' => $this->argument('email'),
             'password' => bcrypt($this->argument('password')),
+            'role' => $this->option('role'),
         ]);
 
         $this->info('User created!');

app/Console/Commands/DeleteOlderMetricsCommand.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Console\Commands;
+
+use App\Models\Service;
+use Illuminate\Console\Command;
+
+class DeleteOlderMetricsCommand extends Command
+{
+    protected $signature = 'metrics:delete-older-metrics';
+
+    protected $description = 'Delete older metrics from database';
+
+    public function handle()
+    {
+        Service::query()->where('type', 'monitoring')->chunk(100, function ($services) {
+            $services->each(function ($service) {
+                $this->info("Deleting older metrics for service {$service->server->name}");
+                $service
+                    ->server
+                    ->metrics()
+                    ->where('created_at', '<', now()->subDays($service->handler()->data()['data_retention']))
+                    ->delete();
+                $this->info('Metrics deleted');
+            });
+        });
+    }
+}

app/Console/Commands/GetMetricsCommand.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Console\Commands;
+
+use App\Models\Server;
+use Illuminate\Console\Command;
+use Illuminate\Database\Eloquent\Builder;
+
+class GetMetricsCommand extends Command
+{
+    protected $signature = 'metrics:get';
+
+    protected $description = 'Get server metrics';
+
+    public function handle(): void
+    {
+        $checkedMetrics = 0;
+        Server::query()->whereHas('services', function (Builder $query) {
+            $query->where('type', 'monitoring')
+                ->where('name', 'remote-monitor');
+        })->chunk(10, function ($servers) use (&$checkedMetrics) {
+            /** @var Server $server */
+            foreach ($servers as $server) {
+                $info = $server->os()->resourceInfo();
+                $server->metrics()->create(array_merge($info, ['server_id' => $server->id]));
+                $checkedMetrics++;
+            }
+        });
+        $this->info("Checked $checkedMetrics metrics");
+    }
+}

app/Console/Kernel.php

@@ -16,6 +16,8 @@ protected function schedule(Schedule $schedule): void
         $schedule->command('backups:run "0 0 * * *"')->daily();
         $schedule->command('backups:run "0 0 * * 0"')->weekly();
         $schedule->command('backups:run "0 0 1 * *"')->monthly();
+        $schedule->command('metrics:delete-older-metrics')->daily();
+        $schedule->command('metrics:get')->everyMinute();
     }
 
     /**

app/Enums/CronjobStatus.php

@@ -9,4 +9,10 @@ final class CronjobStatus
     const READY = 'ready';
 
     const DELETING = 'deleting';
+
+    const ENABLING = 'enabling';
+
+    const DISABLING = 'disabling';
+
+    const DISABLED = 'disabled';
 }

app/Enums/Database.php

@@ -10,7 +10,9 @@ final class Database
 
     const MYSQL80 = 'mysql80';
 
-    const MARIADB = 'mariadb';
+    const MARIADB103 = 'mariadb103';
+
+    const MARIADB104 = 'mariadb104';
 
     const POSTGRESQL12 = 'postgresql12';
 

app/Enums/OperatingSystem.php

@@ -9,4 +9,6 @@ final class OperatingSystem
     const UBUNTU20 = 'ubuntu_20';
 
     const UBUNTU22 = 'ubuntu_22';
+
+    const UBUNTU24 = 'ubuntu_24';
 }

app/Enums/ScriptExecutionStatus.php

@@ -0,0 +1,12 @@
+<?php
+
+namespace App\Enums;
+
+final class ScriptExecutionStatus
+{
+    const EXECUTING = 'executing';
+
+    const COMPLETED = 'completed';
+
+    const FAILED = 'failed';
+}

app/Enums/ServerStatus.php

@@ -11,4 +11,6 @@ final class ServerStatus
     const INSTALLATION_FAILED = 'installation_failed';
 
     const DISCONNECTED = 'disconnected';
+
+    const UPDATING = 'updating';
 }

app/Enums/SiteType.php

@@ -11,4 +11,6 @@ final class SiteType
     const LARAVEL = 'laravel';
 
     const WORDPRESS = 'wordpress';
+
+    const PHPMYADMIN = 'phpmyadmin';
 }

app/Enums/StorageProvider.php

@@ -7,4 +7,6 @@ final class StorageProvider
     const DROPBOX = 'dropbox';
 
     const FTP = 'ftp';
+
+    const LOCAL = 'local';
 }

app/Enums/UserRole.php

@@ -0,0 +1,10 @@
+<?php
+
+namespace App\Enums;
+
+final class UserRole
+{
+    const USER = 'user';
+
+    const ADMIN = 'admin';
+}

app/Exceptions/SSHAuthenticationError.php

@@ -2,9 +2,7 @@
 
 namespace App\Exceptions;
 
-use Exception;
-
-class SSHAuthenticationError extends Exception
+class SSHAuthenticationError extends SSHError
 {
     //
 }

app/Exceptions/SSLCreationException.php

@@ -2,9 +2,7 @@
 
 namespace App\Exceptions;
 
-use Exception;
-
-class SSLCreationException extends Exception
+class SSLCreationException extends SSHError
 {
     //
 }

app/Facades/SSH.php

@@ -3,6 +3,7 @@
 namespace App\Facades;
 
 use App\Models\Server;
+use App\Models\ServerLog;
 use App\Support\Testing\SSHFake;
 use Illuminate\Support\Facades\Facade as FacadeAlias;
 
@@ -10,9 +11,9 @@
  * Class SSH
  *
  * @method static init(Server $server, string $asUser = null)
- * @method static setLog(string $logType, int $siteId = null)
+ * @method static setLog(?ServerLog $log)
  * @method static connect()
- * @method static string exec(string $command, string $log = '', int $siteId = null)
+ * @method static string exec(string $command, string $log = '', int $siteId = null, ?bool $stream = false)
  * @method static string assertExecuted(array|string $commands)
  * @method static string assertExecutedContains(string $command)
  * @method static disconnect()

app/Helpers/SSH.php

@@ -50,14 +50,9 @@ public function init(Server $server, ?string $asUser = null): self
         return $this;
     }
 
-    public function setLog(string $logType, $siteId = null): self
+    public function setLog(ServerLog $log): self
     {
-        $this->log = $this->server->logs()->create([
-            'site_id' => $siteId,
-            'name' => $this->server->id.'-'.strtotime('now').'-'.$logType.'.log',
-            'type' => $logType,
-            'disk' => config('core.logs_disk'),
-        ]);
+        $this->log = $log;
 
         return $this;
     }
@@ -96,12 +91,14 @@ public function connect(bool $sftp = false): void
      * @throws SSHCommandError
      * @throws SSHConnectionError
      */
-    public function exec(string|array $commands, string $log = '', ?int $siteId = null): string
+    public function exec(string $command, string $log = '', ?int $siteId = null, ?bool $stream = false): string
     {
-        if ($log) {
-            $this->setLog($log, $siteId);
-        } else {
-            $this->log = null;
+        if (! $this->log && $log) {
+            $this->log = ServerLog::make($this->server, $log);
+            if ($siteId) {
+                $this->log->forSite($siteId);
+            }
+            $this->log->save();
         }
 
         try {
@@ -112,18 +109,34 @@ public function exec(string|array $commands, string $log = '', ?int $siteId = nu
             throw new SSHConnectionError($e->getMessage());
         }
 
-        if (! is_array($commands)) {
-            $commands = [$commands];
-        }
-
         try {
-            $result = '';
-            foreach ($commands as $command) {
-                $result .= $this->executeCommand($command);
+            if ($this->asUser) {
+                $command = 'sudo su - '.$this->asUser.' -c '.'"'.addslashes($command).'"';
             }
 
-            return $result;
+            $this->connection->setTimeout(0);
+            if ($stream) {
+                $this->connection->exec($command, function ($output) {
+                    $this->log?->write($output);
+                    echo $output;
+                    ob_flush();
+                    flush();
+                });
+
+                return '';
+            } else {
+                $output = $this->connection->exec($command);
+
+                $this->log?->write($output);
+
+                if ($this->connection->getExitStatus() !== 0 || Str::contains($output, 'VITO_SSH_ERROR')) {
+                    throw new SSHCommandError('SSH command failed with an error', $this->connection->getExitStatus());
+                }
+
+                return $output;
+            }
         } catch (Throwable $e) {
+            throw $e;
             throw new SSHCommandError($e->getMessage());
         }
     }
@@ -141,28 +154,6 @@ public function upload(string $local, string $remote): void
         $this->connection->put($remote, $local, SFTP::SOURCE_LOCAL_FILE);
     }
 
-    /**
-     * @throws Exception
-     */
-    protected function executeCommand(string $command): string
-    {
-        if ($this->asUser) {
-            $command = 'sudo su - '.$this->asUser.' -c '.'"'.addslashes($command).'"';
-        }
-
-        $this->connection->setTimeout(0);
-
-        $output = $this->connection->exec($command);
-
-        $this->log?->write($output);
-
-        if (Str::contains($output, 'VITO_SSH_ERROR')) {
-            throw new Exception('SSH command failed with an error');
-        }
-
-        return $output;
-    }
-
     /**
      * @throws Exception
      */

app/Http/Controllers/API/AgentController.php

@@ -0,0 +1,36 @@
+<?php
+
+namespace App\Http\Controllers\API;
+
+use App\Http\Controllers\Controller;
+use App\Models\Server;
+use App\Models\Service;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Http\Request;
+
+class AgentController extends Controller
+{
+    public function __invoke(Request $request, Server $server, int $id): JsonResponse
+    {
+        $validated = $this->validate($request, [
+            'load' => 'required|numeric',
+            'memory_total' => 'required|numeric',
+            'memory_used' => 'required|numeric',
+            'memory_free' => 'required|numeric',
+            'disk_total' => 'required|numeric',
+            'disk_used' => 'required|numeric',
+            'disk_free' => 'required|numeric',
+        ]);
+
+        /** @var Service $service */
+        $service = $server->services()->findOrFail($id);
+
+        if ($request->header('secret') !== $service->handler()->data()['secret']) {
+            return response()->json(['error' => 'Unauthorized'], 401);
+        }
+
+        $server->metrics()->create(array_merge($validated, ['server_id' => $server->id]));
+
+        return response()->json();
+    }
+}

app/Http/Controllers/API/GitHookController.php

@@ -1,10 +1,11 @@
 <?php
 
-namespace App\Http\Controllers;
+namespace App\Http\Controllers\API;
 
 use App\Actions\Site\Deploy;
 use App\Exceptions\SourceControlIsNotConnected;
 use App\Facades\Notifier;
+use App\Http\Controllers\Controller;
 use App\Models\GitHook;
 use App\Models\ServerLog;
 use App\Notifications\SourceControlDisconnected;

app/Http/Controllers/API/HealthController.php

@@ -0,0 +1,16 @@
+<?php
+
+namespace App\Http\Controllers\API;
+
+use App\Http\Controllers\Controller;
+
+class HealthController extends Controller
+{
+    public function __invoke()
+    {
+        return response()->json([
+            'success' => true,
+            'version' => vito_version(),
+        ]);
+    }
+}

app/Http/Controllers/ApplicationController.php

@@ -7,6 +7,8 @@
 use App\Actions\Site\UpdateDeploymentScript;
 use App\Actions\Site\UpdateEnv;
 use App\Exceptions\DeploymentScriptIsEmptyException;
+use App\Exceptions\RepositoryNotFound;
+use App\Exceptions\RepositoryPermissionDenied;
 use App\Exceptions\SourceControlIsNotConnected;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
@@ -20,16 +22,20 @@ class ApplicationController extends Controller
 {
     public function deploy(Server $server, Site $site): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         try {
             app(Deploy::class)->run($site);
 
             Toast::success('Deployment started!');
-        } catch (SourceControlIsNotConnected $e) {
-            Toast::error($e->getMessage());
-
-            return htmx()->redirect(route('source-controls'));
+        } catch (SourceControlIsNotConnected) {
+            Toast::error('Source control is not connected. Check site\'s settings.');
         } catch (DeploymentScriptIsEmptyException) {
             Toast::error('Deployment script is empty!');
+        } catch (RepositoryPermissionDenied) {
+            Toast::error('You do not have permission to access this repository!');
+        } catch (RepositoryNotFound) {
+            Toast::error('Repository not found!');
         }
 
         return htmx()->back();
@@ -37,11 +43,15 @@ public function deploy(Server $server, Site $site): HtmxResponse
 
     public function showDeploymentLog(Server $server, Site $site, Deployment $deployment): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         return back()->with('content', $deployment->log?->getContent());
     }
 
     public function updateDeploymentScript(Server $server, Site $site, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(UpdateDeploymentScript::class)->update($site, $request->input());
 
         Toast::success('Deployment script updated!');
@@ -51,6 +61,8 @@ public function updateDeploymentScript(Server $server, Site $site, Request $requ
 
     public function updateBranch(Server $server, Site $site, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(UpdateBranch::class)->update($site, $request->input());
 
         Toast::success('Branch updated!');
@@ -60,11 +72,15 @@ public function updateBranch(Server $server, Site $site, Request $request): Redi
 
     public function getEnv(Server $server, Site $site): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         return back()->with('env', $site->getEnv());
     }
 
     public function updateEnv(Server $server, Site $site, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(UpdateEnv::class)->update($site, $request->input());
 
         Toast::success('Env updated!');
@@ -74,6 +90,8 @@ public function updateEnv(Server $server, Site $site, Request $request): Redirec
 
     public function enableAutoDeployment(Server $server, Site $site): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         if (! $site->isAutoDeployment()) {
             try {
                 $site->enableAutoDeployment();
@@ -83,6 +101,12 @@ public function enableAutoDeployment(Server $server, Site $site): HtmxResponse
                 Toast::success('Auto deployment has been enabled.');
             } catch (SourceControlIsNotConnected) {
                 Toast::error('Source control is not connected. Check site\'s settings.');
+            } catch (DeploymentScriptIsEmptyException) {
+                Toast::error('Deployment script is empty!');
+            } catch (RepositoryPermissionDenied) {
+                Toast::error('You do not have permission to access this repository!');
+            } catch (RepositoryNotFound) {
+                Toast::error('Repository not found!');
             }
         }
 
@@ -91,6 +115,8 @@ public function enableAutoDeployment(Server $server, Site $site): HtmxResponse
 
     public function disableAutoDeployment(Server $server, Site $site): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         if ($site->isAutoDeployment()) {
             try {
                 $site->disableAutoDeployment();

app/Http/Controllers/ConsoleController.php

@@ -0,0 +1,47 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use App\Models\Server;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\Request;
+use Illuminate\Validation\Rule;
+
+class ConsoleController extends Controller
+{
+    public function index(Server $server): View
+    {
+        $this->authorize('manage', $server);
+
+        return view('console.index', [
+            'server' => $server,
+        ]);
+    }
+
+    public function run(Server $server, Request $request)
+    {
+        $this->authorize('manage', $server);
+
+        $this->validate($request, [
+            'user' => [
+                'required',
+                Rule::in(['root', $server->ssh_user]),
+            ],
+            'command' => 'required|string',
+        ]);
+
+        return response()->stream(
+            function () use ($server, $request) {
+                $ssh = $server->ssh($request->user);
+                $log = 'console-'.time();
+                $ssh->exec(command: $request->command, log: $log, stream: true);
+            },
+            200,
+            [
+                'Cache-Control' => 'no-cache',
+                'X-Accel-Buffering' => 'no',
+                'Content-Type' => 'text/event-stream',
+            ]
+        );
+    }
+}

app/Http/Controllers/CronjobController.php

@@ -4,6 +4,8 @@
 
 use App\Actions\CronJob\CreateCronJob;
 use App\Actions\CronJob\DeleteCronJob;
+use App\Actions\CronJob\DisableCronJob;
+use App\Actions\CronJob\EnableCronJob;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
 use App\Models\CronJob;
@@ -16,6 +18,8 @@ class CronjobController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('cronjobs.index', [
             'server' => $server,
             'cronjobs' => $server->cronJobs,
@@ -24,6 +28,8 @@ public function index(Server $server): View
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(CreateCronJob::class)->create($server, $request->input());
 
         Toast::success('Cronjob created successfully.');
@@ -33,10 +39,34 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, CronJob $cronJob): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteCronJob::class)->delete($server, $cronJob);
 
         Toast::success('Cronjob deleted successfully.');
 
         return back();
     }
+
+    public function enable(Server $server, CronJob $cronJob): RedirectResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(EnableCronJob::class)->enable($server, $cronJob);
+
+        Toast::success('Cronjob enabled successfully.');
+
+        return back();
+    }
+
+    public function disable(Server $server, CronJob $cronJob): RedirectResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(DisableCronJob::class)->disable($server, $cronJob);
+
+        Toast::success('Cronjob disabled successfully.');
+
+        return back();
+    }
 }

app/Http/Controllers/DatabaseBackupController.php

@@ -18,6 +18,8 @@ class DatabaseBackupController extends Controller
 {
     public function show(Server $server, Backup $backup): View
     {
+        $this->authorize('manage', $server);
+
         return view('databases.backups', [
             'server' => $server,
             'databases' => $server->databases,
@@ -28,6 +30,8 @@ public function show(Server $server, Backup $backup): View
 
     public function run(Server $server, Backup $backup): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(RunBackup::class)->run($backup);
 
         Toast::success('Backup is running.');
@@ -37,6 +41,8 @@ public function run(Server $server, Backup $backup): RedirectResponse
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(CreateBackup::class)->create('database', $server, $request->input());
 
         Toast::success('Backup created successfully.');
@@ -46,6 +52,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, Backup $backup): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $backup->delete();
 
         Toast::success('Backup deleted successfully.');
@@ -55,6 +63,8 @@ public function destroy(Server $server, Backup $backup): RedirectResponse
 
     public function restore(Server $server, Backup $backup, BackupFile $backupFile, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(RestoreBackup::class)->restore($backupFile, $request->input());
 
         Toast::success('Backup restored successfully.');
@@ -64,8 +74,17 @@ public function restore(Server $server, Backup $backup, BackupFile $backupFile,
 
     public function destroyFile(Server $server, Backup $backup, BackupFile $backupFile): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $backupFile->delete();
 
+        $backupFile
+            ->backup
+            ->storage
+            ->provider()
+            ->ssh($server)
+            ->delete($backupFile->storagePath());
+
         Toast::success('Backup file deleted successfully.');
 
         return back();

app/Http/Controllers/DatabaseController.php

@@ -17,6 +17,8 @@ class DatabaseController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('databases.index', [
             'server' => $server,
             'databases' => $server->databases,
@@ -27,6 +29,8 @@ public function index(Server $server): View
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         $database = app(CreateDatabase::class)->create($server, $request->input());
 
         if ($request->input('user')) {
@@ -40,6 +44,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, Database $database): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteDatabase::class)->delete($server, $database);
 
         Toast::success('Database deleted successfully.');

app/Http/Controllers/DatabaseUserController.php

@@ -16,6 +16,8 @@ class DatabaseUserController extends Controller
 {
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         $database = app(CreateDatabaseUser::class)->create($server, $request->input());
 
         if ($request->input('user')) {
@@ -29,6 +31,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, DatabaseUser $databaseUser): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteDatabaseUser::class)->delete($server, $databaseUser);
 
         Toast::success('User deleted successfully.');
@@ -38,6 +42,8 @@ public function destroy(Server $server, DatabaseUser $databaseUser): RedirectRes
 
     public function password(Server $server, DatabaseUser $databaseUser): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         return back()->with([
             'password' => $databaseUser->password,
         ]);
@@ -45,6 +51,8 @@ public function password(Server $server, DatabaseUser $databaseUser): RedirectRe
 
     public function link(Server $server, DatabaseUser $databaseUser, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(LinkUser::class)->link($databaseUser, $request->input());
 
         Toast::success('Database linked successfully.');

app/Http/Controllers/FirewallController.php

@@ -16,6 +16,8 @@ class FirewallController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('firewall.index', [
             'server' => $server,
             'rules' => $server->firewallRules,
@@ -24,6 +26,8 @@ public function index(Server $server): View
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(CreateRule::class)->create($server, $request->input());
 
         Toast::success('Firewall rule created!');
@@ -33,6 +37,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, FirewallRule $firewallRule): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteRule::class)->delete($server, $firewallRule);
 
         Toast::success('Firewall rule deleted!');

app/Http/Controllers/MetricController.php

@@ -0,0 +1,50 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use App\Actions\Monitoring\GetMetrics;
+use App\Actions\Monitoring\UpdateMetricSettings;
+use App\Facades\Toast;
+use App\Helpers\HtmxResponse;
+use App\Models\Server;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
+
+class MetricController extends Controller
+{
+    public function index(Server $server, Request $request): View|RedirectResponse
+    {
+        $this->authorize('manage', $server);
+
+        $this->checkIfMonitoringServiceInstalled($server);
+
+        return view('metrics.index', [
+            'server' => $server,
+            'data' => app(GetMetrics::class)->filter($server, $request->input()),
+            'lastMetric' => $server->metrics()->latest()->first(),
+        ]);
+    }
+
+    public function settings(Server $server, Request $request): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        $this->checkIfMonitoringServiceInstalled($server);
+
+        app(UpdateMetricSettings::class)->update($server, $request->input());
+
+        Toast::success('Metric settings updated successfully');
+
+        return htmx()->back();
+    }
+
+    private function checkIfMonitoringServiceInstalled(Server $server): void
+    {
+        $this->authorize('manage', $server);
+
+        if (! $server->monitoring()) {
+            abort(404, 'Monitoring service is not installed on this server');
+        }
+    }
+}

app/Http/Controllers/PHPController.php

@@ -20,6 +20,8 @@ class PHPController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('php.index', [
             'server' => $server,
             'phps' => $server->services()->where('type', 'php')->get(),
@@ -29,6 +31,8 @@ public function index(Server $server): View
 
     public function install(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         try {
             app(InstallNewPHP::class)->install($server, $request->input());
 
@@ -42,6 +46,8 @@ public function install(Server $server, Request $request): HtmxResponse
 
     public function installExtension(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(InstallPHPExtension::class)->install($server, $request->input());
 
         Toast::success('PHP extension is being installed! Check the logs');
@@ -51,6 +57,8 @@ public function installExtension(Server $server, Request $request): HtmxResponse
 
     public function defaultCli(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(ChangeDefaultCli::class)->change($server, $request->input());
 
         Toast::success('Default PHP CLI is being changed!');
@@ -60,6 +68,8 @@ public function defaultCli(Server $server, Request $request): HtmxResponse
 
     public function getIni(Server $server, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $ini = app(GetPHPIni::class)->getIni($server, $request->input());
 
         return back()->with('ini', $ini);
@@ -67,15 +77,21 @@ public function getIni(Server $server, Request $request): RedirectResponse
 
     public function updateIni(Server $server, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(UpdatePHPIni::class)->update($server, $request->input());
 
         Toast::success('PHP ini updated!');
 
-        return back();
+        return back()->with([
+            'ini' => $request->input('ini'),
+        ]);
     }
 
     public function uninstall(Server $server, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(UninstallPHP::class)->uninstall($server, $request->input());
 
         Toast::success('PHP is being uninstalled!');

app/Http/Controllers/ProfileController.php

@@ -1,11 +1,10 @@
 <?php
 
-namespace App\Http\Controllers\Settings;
+namespace App\Http\Controllers;
 
 use App\Actions\User\UpdateUserPassword;
 use App\Actions\User\UpdateUserProfileInformation;
 use App\Facades\Toast;
-use App\Http\Controllers\Controller;
 use Illuminate\Contracts\View\View;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
@@ -14,7 +13,7 @@ class ProfileController extends Controller
 {
     public function index(): View
     {
-        return view('settings.profile.index');
+        return view('profile.index');
     }
 
     public function info(Request $request): RedirectResponse

app/Http/Controllers/QueueController.php

@@ -19,6 +19,8 @@ class QueueController extends Controller
 {
     public function index(Server $server, Site $site): View
     {
+        $this->authorize('manage', $server);
+
         return view('queues.index', [
             'server' => $server,
             'site' => $site,
@@ -28,6 +30,8 @@ public function index(Server $server, Site $site): View
 
     public function store(Server $server, Site $site, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(CreateQueue::class)->create($site, $request->input());
 
         Toast::success('Queue is being created.');
@@ -37,6 +41,8 @@ public function store(Server $server, Site $site, Request $request): HtmxRespons
 
     public function action(Server $server, Site $site, Queue $queue, string $action): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(ManageQueue::class)->{$action}($queue);
 
         Toast::success('Queue is about to '.$action);
@@ -46,6 +52,8 @@ public function action(Server $server, Site $site, Queue $queue, string $action)
 
     public function destroy(Server $server, Site $site, Queue $queue): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteQueue::class)->delete($queue);
 
         Toast::success('Queue is being deleted.');
@@ -55,6 +63,8 @@ public function destroy(Server $server, Site $site, Queue $queue): RedirectRespo
 
     public function logs(Server $server, Site $site, Queue $queue): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         return back()->with('content', app(GetQueueLogs::class)->getLogs($queue));
     }
 }

app/Http/Controllers/SSHKeyController.php

@@ -17,6 +17,8 @@ class SSHKeyController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('server-ssh-keys.index', [
             'server' => $server,
             'keys' => $server->sshKeys,
@@ -25,6 +27,8 @@ public function index(Server $server): View
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         /** @var \App\Models\SshKey $key */
         $key = app(CreateSshKey::class)->create(
             $request->user(),
@@ -38,6 +42,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function destroy(Server $server, SshKey $sshKey): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteKeyFromServer::class)->delete($server, $sshKey);
 
         Toast::success('SSH Key has been deleted.');
@@ -47,6 +53,8 @@ public function destroy(Server $server, SshKey $sshKey): RedirectResponse
 
     public function deploy(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeployKeyToServer::class)->deploy(
             $request->user(),
             $server,

app/Http/Controllers/SSLController.php

@@ -17,6 +17,8 @@ class SSLController extends Controller
 {
     public function index(Server $server, Site $site): View
     {
+        $this->authorize('manage', $server);
+
         return view('ssls.index', [
             'server' => $server,
             'site' => $site,
@@ -26,6 +28,8 @@ public function index(Server $server, Site $site): View
 
     public function store(Server $server, Site $site, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(CreateSSL::class)->create($site, $request->input());
 
         Toast::success('SSL certificate is being created.');
@@ -35,6 +39,8 @@ public function store(Server $server, Site $site, Request $request): HtmxRespons
 
     public function destroy(Server $server, Site $site, Ssl $ssl): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteSSL::class)->delete($ssl);
 
         Toast::success('SSL certificate has been deleted.');

app/Http/Controllers/ScriptController.php

@@ -0,0 +1,111 @@
+<?php
+
+namespace App\Http\Controllers;
+
+use App\Actions\Script\CreateScript;
+use App\Actions\Script\EditScript;
+use App\Actions\Script\ExecuteScript;
+use App\Facades\Toast;
+use App\Helpers\HtmxResponse;
+use App\Models\Script;
+use App\Models\ScriptExecution;
+use App\Models\Server;
+use App\Models\User;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
+
+class ScriptController extends Controller
+{
+    public function index(Request $request): View
+    {
+        $this->authorize('viewAny', Script::class);
+
+        /** @var User $user */
+        $user = auth()->user();
+
+        $data = [
+            'scripts' => $user->scripts,
+        ];
+
+        if ($request->has('edit')) {
+            $data['editScript'] = $user->scripts()->findOrFail($request->input('edit'));
+        }
+
+        if ($request->has('execute')) {
+            $data['executeScript'] = $user->scripts()->findOrFail($request->input('execute'));
+        }
+
+        return view('scripts.index', $data);
+    }
+
+    public function show(Script $script): View
+    {
+        $this->authorize('view', $script);
+
+        return view('scripts.show', [
+            'script' => $script,
+            'executions' => $script->executions()->latest()->paginate(20),
+        ]);
+    }
+
+    public function store(Request $request): HtmxResponse
+    {
+        $this->authorize('create', Script::class);
+
+        /** @var User $user */
+        $user = auth()->user();
+
+        app(CreateScript::class)->create($user, $request->input());
+
+        Toast::success('Script created.');
+
+        return htmx()->redirect(route('scripts.index'));
+    }
+
+    public function edit(Request $request, Script $script): HtmxResponse
+    {
+        $this->authorize('update', $script);
+
+        app(EditScript::class)->edit($script, $request->input());
+
+        Toast::success('Script updated.');
+
+        return htmx()->redirect(route('scripts.index'));
+    }
+
+    public function execute(Script $script, Request $request): HtmxResponse
+    {
+        $this->validate($request, [
+            'server' => 'required|exists:servers,id',
+        ]);
+
+        $server = Server::findOrFail($request->input('server'));
+
+        $this->authorize('execute', [$script, $server]);
+
+        app(ExecuteScript::class)->execute($script, $server, $request->input());
+
+        Toast::success('Executing the script...');
+
+        return htmx()->redirect(route('scripts.show', $script));
+    }
+
+    public function delete(Script $script): RedirectResponse
+    {
+        $this->authorize('delete', $script);
+
+        $script->delete();
+
+        Toast::success('Script deleted.');
+
+        return redirect()->route('scripts.index');
+    }
+
+    public function log(Script $script, ScriptExecution $execution): RedirectResponse
+    {
+        $this->authorize('view', $script);
+
+        return back()->with('content', $execution->serverLog?->getContent());
+    }
+}

app/Http/Controllers/SearchController.php

@@ -4,6 +4,7 @@
 
 use App\Models\Server;
 use App\Models\Site;
+use Illuminate\Database\Eloquent\Builder;
 use Illuminate\Http\JsonResponse;
 use Illuminate\Http\Request;
 
@@ -23,10 +24,22 @@ public function search(Request $request): JsonResponse
                 $query->where('name', 'like', '%'.$request->input('q').'%')
                     ->orWhere('ip', 'like', '%'.$request->input('q').'%');
             })
+            ->whereHas('project', function (Builder $projectQuery) {
+                $projectQuery->whereHas('users', function (Builder $userQuery) {
+                    $userQuery->where('user_id', auth()->user()->id);
+                });
+            })
             ->get();
 
         $sites = Site::query()
             ->where('domain', 'like', '%'.$request->input('q').'%')
+            ->whereHas('server', function (Builder $serverQuery) {
+                $serverQuery->whereHas('project', function (Builder $projectQuery) {
+                    $projectQuery->whereHas('users', function (Builder $userQuery) {
+                        $userQuery->where('user_id', auth()->user()->id);
+                    });
+                });
+            })
             ->get();
 
         $result = [];

app/Http/Controllers/ServerController.php

@@ -19,6 +19,9 @@ public function index(): View
     {
         /** @var User $user */
         $user = auth()->user();
+
+        $this->authorize('viewAny', [Server::class, $user->currentProject]);
+
         $servers = $user->currentProject->servers()->orderByDesc('created_at')->get();
 
         return view('servers.index', compact('servers'));
@@ -26,6 +29,11 @@ public function index(): View
 
     public function create(Request $request): View
     {
+        /** @var User $user */
+        $user = auth()->user();
+
+        $this->authorize('create', [Server::class, $user->currentProject]);
+
         $provider = $request->query('provider', old('provider', \App\Enums\ServerProvider::CUSTOM));
         $serverProviders = ServerProvider::query()->where('provider', $provider)->get();
 
@@ -40,8 +48,13 @@ public function create(Request $request): View
      */
     public function store(Request $request): HtmxResponse
     {
+        /** @var User $user */
+        $user = auth()->user();
+
+        $this->authorize('create', [Server::class, $user->currentProject]);
+
         $server = app(CreateServer::class)->create(
-            $request->user(),
+            $user,
             $request->input()
         );
 
@@ -52,14 +65,17 @@ public function store(Request $request): HtmxResponse
 
     public function show(Server $server): View
     {
+        $this->authorize('view', $server);
+
         return view('servers.show', [
             'server' => $server,
-            'logs' => $server->logs()->latest()->limit(10)->get(),
         ]);
     }
 
     public function delete(Server $server): RedirectResponse
     {
+        $this->authorize('delete', $server);
+
         $server->delete();
 
         Toast::success('Server deleted successfully.');

app/Http/Controllers/ServerLogController.php

@@ -2,22 +2,30 @@
 
 namespace App\Http\Controllers;
 
+use App\Actions\Server\CreateServerLog;
+use App\Facades\Toast;
 use App\Models\Server;
 use App\Models\ServerLog;
 use Illuminate\Contracts\View\View;
 use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
 
 class ServerLogController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('server-logs.index', [
             'server' => $server,
+            'pageTitle' => __('Vito Logs'),
         ]);
     }
 
     public function show(Server $server, ServerLog $serverLog): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         if ($server->id != $serverLog->server_id) {
             abort(404);
         }
@@ -26,4 +34,37 @@ public function show(Server $server, ServerLog $serverLog): RedirectResponse
             'content' => $serverLog->getContent(),
         ]);
     }
+
+    public function remote(Server $server): View
+    {
+        $this->authorize('manage', $server);
+
+        return view('server-logs.remote-logs', [
+            'server' => $server,
+            'remote' => true,
+            'pageTitle' => __('Remote Logs'),
+        ]);
+    }
+
+    public function store(Server $server, Request $request): \App\Helpers\HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(CreateServerLog::class)->create($server, $request->input());
+
+        Toast::success('Log added successfully.');
+
+        return htmx()->redirect(route('servers.logs.remote', ['server' => $server]));
+    }
+
+    public function destroy(Server $server, ServerLog $serverLog): RedirectResponse
+    {
+        $this->authorize('manage', $server);
+
+        $serverLog->delete();
+
+        Toast::success('Remote log deleted successfully.');
+
+        return redirect()->route('servers.logs.remote', ['server' => $server]);
+    }
 }

app/Http/Controllers/ServerSettingController.php

@@ -4,6 +4,7 @@
 
 use App\Actions\Server\EditServer;
 use App\Actions\Server\RebootServer;
+use App\Actions\Server\Update;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
 use App\Models\Server;
@@ -15,11 +16,15 @@ class ServerSettingController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('server-settings.index', compact('server'));
     }
 
     public function checkConnection(Server $server): RedirectResponse|HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         $oldStatus = $server->status;
 
         $server = $server->checkConnection();
@@ -41,6 +46,8 @@ public function checkConnection(Server $server): RedirectResponse|HtmxResponse
 
     public function reboot(Server $server): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         app(RebootServer::class)->reboot($server);
 
         Toast::info('Server is rebooting.');
@@ -50,10 +57,32 @@ public function reboot(Server $server): HtmxResponse
 
     public function edit(Request $request, Server $server): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(EditServer::class)->edit($server, $request->input());
 
         Toast::success('Server updated.');
 
         return back();
     }
+
+    public function checkUpdates(Server $server): RedirectResponse
+    {
+        $this->authorize('manage', $server);
+
+        $server->checkForUpdates();
+
+        return back();
+    }
+
+    public function update(Server $server): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(Update::class)->update($server);
+
+        Toast::info('Updating server. This may take a few minutes.');
+
+        return htmx()->back();
+    }
 }

app/Http/Controllers/ServiceController.php

@@ -2,16 +2,22 @@
 
 namespace App\Http\Controllers;
 
+use App\Actions\Service\Install;
+use App\Actions\Service\Uninstall;
 use App\Facades\Toast;
+use App\Helpers\HtmxResponse;
 use App\Models\Server;
 use App\Models\Service;
 use Illuminate\Contracts\View\View;
 use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
 
 class ServiceController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('services.index', [
             'server' => $server,
             'services' => $server->services,
@@ -20,6 +26,8 @@ public function index(Server $server): View
 
     public function start(Server $server, Service $service): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $service->start();
 
         Toast::success('Service is being started!');
@@ -29,6 +37,8 @@ public function start(Server $server, Service $service): RedirectResponse
 
     public function stop(Server $server, Service $service): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $service->stop();
 
         Toast::success('Service is being stopped!');
@@ -38,6 +48,8 @@ public function stop(Server $server, Service $service): RedirectResponse
 
     public function restart(Server $server, Service $service): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $service->restart();
 
         Toast::success('Service is being restarted!');
@@ -47,6 +59,8 @@ public function restart(Server $server, Service $service): RedirectResponse
 
     public function enable(Server $server, Service $service): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $service->enable();
 
         Toast::success('Service is being enabled!');
@@ -56,10 +70,34 @@ public function enable(Server $server, Service $service): RedirectResponse
 
     public function disable(Server $server, Service $service): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $service->disable();
 
         Toast::success('Service is being disabled!');
 
         return back();
     }
+
+    public function install(Server $server, Request $request): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(Install::class)->install($server, $request->input());
+
+        Toast::success('Service is being installed!');
+
+        return htmx()->back();
+    }
+
+    public function uninstall(Server $server, Service $service): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(Uninstall::class)->uninstall($service);
+
+        Toast::success('Service is being uninstalled!');
+
+        return htmx()->back();
+    }
 }

app/Http/Controllers/Settings/NotificationChannelController.php

@@ -29,7 +29,7 @@ public function add(Request $request): HtmxResponse
 
         Toast::success('Channel added successfully');
 
-        return htmx()->redirect(route('notification-channels'));
+        return htmx()->redirect(route('settings.notification-channels'));
     }
 
     public function delete(int $id): RedirectResponse
@@ -40,6 +40,6 @@ public function delete(int $id): RedirectResponse
 
         Toast::success('Channel deleted successfully');
 
-        return redirect()->route('notification-channels');
+        return redirect()->route('settings.notification-channels');
     }
 }

app/Http/Controllers/Settings/ProjectController.php

@@ -19,40 +19,42 @@ class ProjectController extends Controller
 {
     public function index(): View
     {
+        $this->authorize('viewAny', Project::class);
+
         return view('settings.projects.index', [
-            'projects' => auth()->user()->projects,
+            'projects' => Project::all(),
         ]);
     }
 
     public function create(Request $request): HtmxResponse
     {
+        $this->authorize('create', Project::class);
+
         app(CreateProject::class)->create($request->user(), $request->input());
 
         Toast::success('Project created.');
 
-        return htmx()->redirect(route('projects'));
+        return htmx()->redirect(route('settings.projects'));
     }
 
     public function update(Request $request, Project $project): HtmxResponse
     {
-        /** @var Project $project */
-        $project = $request->user()->projects()->findOrFail($project->id);
+        $this->authorize('update', $project);
 
         app(UpdateProject::class)->update($project, $request->input());
 
         Toast::success('Project updated.');
 
-        return htmx()->redirect(route('projects'));
+        return htmx()->redirect(route('settings.projects'));
     }
 
     public function delete(Project $project): RedirectResponse
     {
+        $this->authorize('delete', $project);
+
         /** @var User $user */
         $user = auth()->user();
 
-        /** @var Project $project */
-        $project = $user->projects()->findOrFail($project->id);
-
         try {
             app(DeleteProject::class)->delete($user, $project);
         } catch (ValidationException $e) {
@@ -74,6 +76,8 @@ public function switch($projectId): RedirectResponse
         /** @var Project $project */
         $project = $user->projects()->findOrFail($projectId);
 
+        $this->authorize('view', $project);
+
         $user->current_project_id = $project->id;
         $user->save();
 

app/Http/Controllers/Settings/SSHKeyController.php

@@ -29,7 +29,7 @@ public function add(Request $request): HtmxResponse
 
         Toast::success('SSH Key added');
 
-        return htmx()->redirect(route('ssh-keys'));
+        return htmx()->redirect(route('settings.ssh-keys'));
     }
 
     public function delete(int $id): RedirectResponse
@@ -40,6 +40,6 @@ public function delete(int $id): RedirectResponse
 
         Toast::success('SSH Key deleted');
 
-        return redirect()->route('ssh-keys');
+        return redirect()->route('settings.ssh-keys');
     }
 }

app/Http/Controllers/Settings/ServerProviderController.php

@@ -30,7 +30,7 @@ public function connect(Request $request): HtmxResponse
 
         Toast::success('Server provider connected.');
 
-        return htmx()->redirect(route('server-providers'));
+        return htmx()->redirect(route('settings.server-providers'));
     }
 
     public function delete(ServerProvider $serverProvider): RedirectResponse

app/Http/Controllers/Settings/SourceControlController.php

@@ -4,6 +4,7 @@
 
 use App\Actions\SourceControl\ConnectSourceControl;
 use App\Actions\SourceControl\DeleteSourceControl;
+use App\Actions\SourceControl\EditSourceControl;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
 use App\Http\Controllers\Controller;
@@ -14,22 +15,42 @@
 
 class SourceControlController extends Controller
 {
-    public function index(): View
+    public function index(Request $request): View
     {
-        return view('settings.source-controls.index', [
-            'sourceControls' => SourceControl::query()->orderByDesc('id')->get(),
-        ]);
+        $data = [
+            'sourceControls' => SourceControl::getByCurrentProject(),
+        ];
+
+        if ($request->has('edit')) {
+            $data['editSourceControl'] = SourceControl::find($request->input('edit'));
+        }
+
+        return view('settings.source-controls.index', $data);
     }
 
     public function connect(Request $request): HtmxResponse
     {
         app(ConnectSourceControl::class)->connect(
+            $request->user(),
             $request->input(),
         );
 
         Toast::success('Source control connected.');
 
-        return htmx()->redirect(route('source-controls'));
+        return htmx()->redirect(route('settings.source-controls'));
+    }
+
+    public function update(SourceControl $sourceControl, Request $request): HtmxResponse
+    {
+        app(EditSourceControl::class)->edit(
+            $sourceControl,
+            $request->user(),
+            $request->input(),
+        );
+
+        Toast::success('Source control updated.');
+
+        return htmx()->redirect(route('settings.source-controls'));
     }
 
     public function delete(SourceControl $sourceControl): RedirectResponse
@@ -44,6 +65,6 @@ public function delete(SourceControl $sourceControl): RedirectResponse
 
         Toast::success('Source control deleted.');
 
-        return redirect()->route('source-controls');
+        return redirect()->route('settings.source-controls');
     }
 }

app/Http/Controllers/Settings/StorageProviderController.php

@@ -30,7 +30,7 @@ public function connect(Request $request): HtmxResponse
 
         Toast::success('Storage provider connected.');
 
-        return htmx()->redirect(route('storage-providers'));
+        return htmx()->redirect(route('settings.storage-providers'));
     }
 
     public function delete(StorageProvider $storageProvider): RedirectResponse

app/Http/Controllers/Settings/UserController.php

@@ -0,0 +1,91 @@
+<?php
+
+namespace App\Http\Controllers\Settings;
+
+use App\Actions\User\CreateUser;
+use App\Actions\User\UpdateUser;
+use App\Facades\Toast;
+use App\Helpers\HtmxResponse;
+use App\Http\Controllers\Controller;
+use App\Models\Project;
+use App\Models\User;
+use Illuminate\Contracts\View\View;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
+use Illuminate\Validation\Rule;
+
+class UserController extends Controller
+{
+    public function index(): View
+    {
+        $users = User::query()->paginate(20);
+
+        return view('settings.users.index', compact('users'));
+    }
+
+    public function store(Request $request): HtmxResponse
+    {
+        $user = app(CreateUser::class)->create($request->input());
+
+        return htmx()->redirect(route('settings.users.show', $user));
+    }
+
+    public function show(User $user): View
+    {
+        return view('settings.users.show', [
+            'user' => $user,
+        ]);
+    }
+
+    public function update(User $user, Request $request): RedirectResponse
+    {
+        app(UpdateUser::class)->update($user, $request->input());
+
+        Toast::success('User updated successfully');
+
+        return back();
+    }
+
+    public function updateProjects(User $user, Request $request): HtmxResponse
+    {
+        $this->validate($request, [
+            'projects.*' => [
+                'required',
+                Rule::exists('projects', 'id'),
+            ],
+        ]);
+
+        $user->projects()->sync($request->projects);
+
+        if ($user->currentProject && ! $user->projects->contains($user->currentProject)) {
+            $user->current_project_id = null;
+            $user->save();
+        }
+
+        /** @var Project $firstProject */
+        $firstProject = $user->projects->first();
+        if (! $user->currentProject && $firstProject) {
+            $user->current_project_id = $firstProject->id;
+            $user->save();
+        }
+
+        Toast::success('Projects updated successfully');
+
+        return htmx()->redirect(route('settings.users.show', $user));
+    }
+
+    public function destroy(User $user): RedirectResponse
+    {
+        if ($user->is(request()->user())) {
+            Toast::error('You cannot delete your own account');
+
+            return back();
+        }
+
+        $user->delete();
+
+        Toast::success('User deleted successfully');
+
+        return redirect()->route('settings.users.index');
+    }
+}

app/Http/Controllers/SiteController.php

@@ -4,6 +4,7 @@
 
 use App\Actions\Site\CreateSite;
 use App\Actions\Site\DeleteSite;
+use App\Enums\SiteStatus;
 use App\Enums\SiteType;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
@@ -18,6 +19,8 @@ class SiteController extends Controller
 {
     public function index(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('sites.index', [
             'server' => $server,
             'sites' => $server->sites()->orderByDesc('id')->get(),
@@ -26,6 +29,8 @@ public function index(Server $server): View
 
     public function store(Server $server, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         $site = app(CreateSite::class)->create($server, $request->input());
 
         Toast::success('Site created');
@@ -35,6 +40,8 @@ public function store(Server $server, Request $request): HtmxResponse
 
     public function create(Server $server): View
     {
+        $this->authorize('manage', $server);
+
         return view('sites.create', [
             'server' => $server,
             'type' => old('type', request()->query('type', SiteType::LARAVEL)),
@@ -42,16 +49,46 @@ public function create(Server $server): View
         ]);
     }
 
-    public function show(Server $server, Site $site): View
+    public function show(Server $server, Site $site, Request $request): View|RedirectResponse|HtmxResponse
     {
+        $this->authorize('manage', $server);
+
+        if (in_array($site->status, [SiteStatus::INSTALLING, SiteStatus::INSTALLATION_FAILED])) {
+            if ($request->hasHeader('HX-Request')) {
+                return htmx()->redirect(route('servers.sites.installing', [$server, $site]));
+            }
+
+            return redirect()->route('servers.sites.installing', [$server, $site]);
+        }
+
         return view('sites.show', [
             'server' => $server,
             'site' => $site,
         ]);
     }
 
+    public function installing(Server $server, Site $site, Request $request): View|RedirectResponse|HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        if (! in_array($site->status, [SiteStatus::INSTALLING, SiteStatus::INSTALLATION_FAILED])) {
+            if ($request->hasHeader('HX-Request')) {
+                return htmx()->redirect(route('servers.sites.show', [$server, $site]));
+            }
+
+            return redirect()->route('servers.sites.show', [$server, $site]);
+        }
+
+        return view('sites.installing', [
+            'server' => $server,
+            'site' => $site,
+        ]);
+    }
+
     public function destroy(Server $server, Site $site): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         app(DeleteSite::class)->delete($site);
 
         Toast::success('Site is being deleted');

app/Http/Controllers/SiteLogController.php

@@ -10,9 +10,12 @@ class SiteLogController extends Controller
 {
     public function index(Server $server, Site $site): View
     {
+        $this->authorize('manage', $server);
+
         return view('site-logs.index', [
             'server' => $server,
             'site' => $site,
+            'pageTitle' => __('Vito Logs'),
         ]);
     }
 }

app/Http/Controllers/SiteSettingController.php

@@ -2,10 +2,13 @@
 
 namespace App\Http\Controllers;
 
+use App\Actions\Site\UpdateAliases;
+use App\Actions\Site\UpdateSourceControl;
 use App\Facades\Toast;
 use App\Helpers\HtmxResponse;
 use App\Models\Server;
 use App\Models\Site;
+use App\SSH\Services\Webserver\Webserver;
 use Illuminate\Contracts\View\View;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
@@ -16,6 +19,8 @@ class SiteSettingController extends Controller
 {
     public function index(Server $server, Site $site): View
     {
+        $this->authorize('manage', $server);
+
         return view('site-settings.index', [
             'server' => $server,
             'site' => $site,
@@ -24,17 +29,26 @@ public function index(Server $server, Site $site): View
 
     public function getVhost(Server $server, Site $site): RedirectResponse
     {
-        return back()->with('vhost', $server->webserver()->handler()->getVHost($site));
+        $this->authorize('manage', $server);
+
+        /** @var Webserver $handler */
+        $handler = $server->webserver()->handler();
+
+        return back()->with('vhost', $handler->getVHost($site));
     }
 
     public function updateVhost(Server $server, Site $site, Request $request): RedirectResponse
     {
+        $this->authorize('manage', $server);
+
         $this->validate($request, [
             'vhost' => 'required|string',
         ]);
 
         try {
-            $server->webserver()->handler()->updateVHost($site, false, $request->input('vhost'));
+            /** @var Webserver $handler */
+            $handler = $server->webserver()->handler();
+            $handler->updateVHost($site, false, $request->input('vhost'));
 
             Toast::success('VHost updated successfully!');
         } catch (Throwable $e) {
@@ -46,6 +60,8 @@ public function updateVhost(Server $server, Site $site, Request $request): Redir
 
     public function updatePHPVersion(Server $server, Site $site, Request $request): HtmxResponse
     {
+        $this->authorize('manage', $server);
+
         $this->validate($request, [
             'version' => [
                 'required',
@@ -63,4 +79,26 @@ public function updatePHPVersion(Server $server, Site $site, Request $request):
 
         return htmx()->back();
     }
+
+    public function updateSourceControl(Server $server, Site $site, Request $request): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(UpdateSourceControl::class)->update($site, $request->input());
+
+        Toast::success('Source control updated successfully!');
+
+        return htmx()->back();
+    }
+
+    public function updateAliases(Server $server, Site $site, Request $request): HtmxResponse
+    {
+        $this->authorize('manage', $server);
+
+        app(UpdateAliases::class)->update($site, $request->input());
+
+        Toast::success('Aliases updated successfully!');
+
+        return htmx()->back();
+    }
 }

app/Http/Kernel.php

@@ -68,5 +68,7 @@ class Kernel extends HttpKernel
         'server-is-ready' => ServerIsReadyMiddleware::class,
         'handle-ssh-errors' => HandleSSHErrors::class,
         'select-current-project' => SelectCurrentProject::class,
+        'is-admin' => \App\Http\Middleware\IsAdmin::class,
+        'must-have-current-project' => \App\Http\Middleware\MustHaveCurrentProject::class,
     ];
 }

app/Http/Middleware/HandleSSHErrors.php

@@ -7,23 +7,24 @@
 use App\Facades\Toast;
 use Closure;
 use Illuminate\Http\Request;
+use Illuminate\Http\Response;
 
 class HandleSSHErrors
 {
     public function handle(Request $request, Closure $next)
     {
         $res = $next($request);
-        if ($res->exception) {
-            if ($res->exception instanceof SSHConnectionError || $res->exception instanceof SSHCommandError) {
-                Toast::error($res->exception->getMessage());
+        // if ($res instanceof Response && $res->exception) {
+        //     if ($res->exception instanceof SSHConnectionError || $res->exception instanceof SSHCommandError) {
+        //         Toast::error($res->exception->getMessage());
 
-                if ($request->hasHeader('HX-Request')) {
-                    return htmx()->back();
-                }
+        //         if ($request->hasHeader('HX-Request')) {
+        //             return htmx()->back();
+        //         }
 
-                return back();
-            }
-        }
+        //         return back();
+        //     }
+        // }
 
         return $res;
     }

app/Http/Middleware/IsAdmin.php

@@ -0,0 +1,25 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use App\Enums\UserRole;
+use Closure;
+use Illuminate\Http\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+class IsAdmin
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        if (auth()->user()->role !== UserRole::ADMIN) {
+            abort(403, 'You are not authorized to access this page.');
+        }
+
+        return $next($request);
+    }
+}

app/Http/Middleware/MustHaveCurrentProject.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use App\Facades\Toast;
+use App\Models\User;
+use Closure;
+use Illuminate\Http\Request;
+use Symfony\Component\HttpFoundation\Response;
+
+class MustHaveCurrentProject
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Closure(\Illuminate\Http\Request): (\Symfony\Component\HttpFoundation\Response)  $next
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        /** @var User $user */
+        $user = $request->user();
+
+        if (! $user->currentProject) {
+            Toast::warning('Please select a project to continue');
+
+            return redirect()->route('profile');
+        }
+
+        return $next($request);
+    }
+}

app/Http/Middleware/SelectCurrentProject.php

@@ -22,7 +22,7 @@ public function handle(Request $request, Closure $next): Response
         /** @var User $user */
         $user = $request->user();
 
-        if ($server->project_id != $user->current_project_id) {
+        if ($server->project_id != $user->current_project_id && $user->can('view', $server)) {
             $user->current_project_id = $server->project_id;
             $user->save();
         }

app/Http/Middleware/TrustProxies.php

@@ -12,7 +12,7 @@ class TrustProxies extends Middleware
      *
      * @var array<int, string>|string|null
      */
-    protected $proxies;
+    protected $proxies = '*';
 
     /**
      * The headers that should be used to detect proxies.
@@ -20,7 +20,7 @@ class TrustProxies extends Middleware
      * @var int
      */
     protected $headers =
-        Request::HEADER_X_FORWARDED_FOR |
+    Request::HEADER_X_FORWARDED_FOR |
         Request::HEADER_X_FORWARDED_HOST |
         Request::HEADER_X_FORWARDED_PORT |
         Request::HEADER_X_FORWARDED_PROTO |

app/Models/CronJob.php

@@ -2,6 +2,7 @@
 
 namespace App\Models;
 
+use App\Enums\CronjobStatus;
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
 
@@ -41,7 +42,14 @@ public function server(): BelongsTo
     public static function crontab(Server $server, string $user): string
     {
         $data = '';
-        $cronJobs = $server->cronJobs()->where('user', $user)->get();
+        $cronJobs = $server->cronJobs()
+            ->where('user', $user)
+            ->whereIn('status', [
+                CronjobStatus::READY,
+                CronjobStatus::CREATING,
+                CronjobStatus::ENABLING,
+            ])
+            ->get();
         foreach ($cronJobs as $key => $cronJob) {
             $data .= $cronJob->frequency.' '.$cronJob->command;
             if ($key != count($cronJobs) - 1) {

app/Models/Metric.php

@@ -0,0 +1,53 @@
+<?php
+
+namespace App\Models;
+
+use Illuminate\Database\Eloquent\Factories\HasFactory;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Database\Eloquent\Relations\BelongsTo;
+
+/**
+ * @property int $id
+ * @property int $server_id
+ * @property float $load
+ * @property float $memory_total
+ * @property float $memory_used
+ * @property float $memory_free
+ * @property float $disk_total
+ * @property float $disk_used
+ * @property float $disk_free
+ * @property Server $server
+ * @property \Carbon\Carbon $created_at
+ * @property \Carbon\Carbon $updated_at
+ */
+class Metric extends Model
+{
+    use HasFactory;
+
+    protected $fillable = [
+        'server_id',
+        'load',
+        'memory_total',
+        'memory_used',
+        'memory_free',
+        'disk_total',
+        'disk_used',
+        'disk_free',
+    ];
+
+    protected $casts = [
+        'server_id' => 'integer',
+        'load' => 'float',
+        'memory_total' => 'float',
+        'memory_used' => 'float',
+        'memory_free' => 'float',
+        'disk_total' => 'float',
+        'disk_used' => 'float',
+        'disk_free' => 'float',
+    ];
+
+    public function server(): BelongsTo
+    {
+        return $this->belongsTo(Server::class);
+    }
+}

app/Models/Project.php

@@ -7,6 +7,7 @@
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Database\Eloquent\Model;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
+use Illuminate\Database\Eloquent\Relations\BelongsToMany;
 use Illuminate\Database\Eloquent\Relations\HasMany;
 
 /**
@@ -18,6 +19,7 @@
  * @property User $user
  * @property Collection<Server> $servers
  * @property Collection<NotificationChannel> $notificationChannels
+ * @property Collection<SourceControl> $sourceControls
  */
 class Project extends Model
 {
@@ -53,4 +55,14 @@ public function notificationChannels(): HasMany
     {
         return $this->hasMany(NotificationChannel::class);
     }
+
+    public function users(): BelongsToMany
+    {
+        return $this->belongsToMany(User::class, 'user_project')->withTimestamps();
+    }
+
+    public function sourceControls(): HasMany
+    {
+        return $this->hasMany(SourceControl::class);
+    }
 }

app/Models/Script.php

@@ -0,0 +1,66 @@
+<?php
+
+namespace App\Models;
+
+use Carbon\Carbon;
+use Illuminate\Database\Eloquent\Factories\HasFactory;
+use Illuminate\Database\Eloquent\Relations\BelongsTo;
+use Illuminate\Database\Eloquent\Relations\HasMany;
+use Illuminate\Database\Eloquent\Relations\HasOne;
+use Illuminate\Support\Collection;
+
+/**
+ * @property int $id
+ * @property int $user_id
+ * @property string $name
+ * @property string $content
+ * @property Carbon $created_at
+ * @property Carbon $updated_at
+ * @property Collection<ScriptExecution> $executions
+ * @property ?ScriptExecution $lastExecution
+ */
+class Script extends AbstractModel
+{
+    use HasFactory;
+
+    protected $fillable = [
+        'user_id',
+        'name',
+        'content',
+    ];
+
+    public static function boot(): void
+    {
+        parent::boot();
+
+        static::deleting(function (Script $script) {
+            $script->executions()->delete();
+        });
+    }
+
+    public function user(): BelongsTo
+    {
+        return $this->belongsTo(User::class);
+    }
+
+    public function getVariables(): array
+    {
+        $variables = [];
+        preg_match_all('/\${(.*?)}/', $this->content, $matches);
+        foreach ($matches[1] as $match) {
+            $variables[] = $match;
+        }
+
+        return array_unique($variables);
+    }
+
+    public function executions(): HasMany
+    {
+        return $this->hasMany(ScriptExecution::class);
+    }
+
+    public function lastExecution(): HasOne
+    {
+        return $this->hasOne(ScriptExecution::class)->latest();
+    }
+}

app/Models/ScriptExecution.php

@@ -0,0 +1,61 @@
+<?php
+
+namespace App\Models;
+
+use Carbon\Carbon;
+use Illuminate\Database\Eloquent\Factories\HasFactory;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Database\Eloquent\Relations\BelongsTo;
+
+/**
+ * @property int $id
+ * @property int $script_id
+ * @property int $server_log_id
+ * @property string $user
+ * @property array $variables
+ * @property string $status
+ * @property Carbon $created_at
+ * @property Carbon $updated_at
+ * @property Script $script
+ * @property ?ServerLog $serverLog
+ */
+class ScriptExecution extends Model
+{
+    use HasFactory;
+
+    protected $fillable = [
+        'script_id',
+        'server_log_id',
+        'user',
+        'variables',
+        'status',
+    ];
+
+    protected $casts = [
+        'script_id' => 'integer',
+        'server_log_id' => 'integer',
+        'variables' => 'array',
+    ];
+
+    public function script(): BelongsTo
+    {
+        return $this->belongsTo(Script::class);
+    }
+
+    public function getContent(): string
+    {
+        $content = $this->script->content;
+        foreach ($this->variables as $variable => $value) {
+            if (is_string($value) && ! empty($value)) {
+                $content = str_replace('${'.$variable.'}', $value, $content);
+            }
+        }
+
+        return $content;
+    }
+
+    public function serverLog(): BelongsTo
+    {
+        return $this->belongsTo(ServerLog::class);
+    }
+}

app/Models/Server.php

@@ -9,6 +9,7 @@
 use App\SSH\Cron\Cron;
 use App\SSH\OS\OS;
 use App\SSH\Systemd\Systemd;
+use Carbon\Carbon;
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
 use Illuminate\Database\Eloquent\Relations\BelongsToMany;
@@ -55,6 +56,8 @@
  * @property Queue[] $daemons
  * @property SshKey[] $sshKeys
  * @property string $hostname
+ * @property int $updates
+ * @property Carbon $last_update_check
  */
 class Server extends AbstractModel
 {
@@ -82,6 +85,8 @@ class Server extends AbstractModel
         'security_updates',
         'progress',
         'progress_step',
+        'updates',
+        'last_update_check',
     ];
 
     protected $casts = [
@@ -95,6 +100,8 @@ class Server extends AbstractModel
         'available_updates' => 'integer',
         'security_updates' => 'integer',
         'progress' => 'integer',
+        'updates' => 'integer',
+        'last_update_check' => 'datetime',
     ];
 
     protected $hidden = [
@@ -195,6 +202,11 @@ public function daemons(): HasMany
         return $this->queues()->whereNull('site_id');
     }
 
+    public function metrics(): HasMany
+    {
+        return $this->hasMany(Metric::class);
+    }
+
     public function sshKeys(): BelongsToMany
     {
         return $this->belongsToMany(SshKey::class, 'server_ssh_keys')
@@ -325,6 +337,24 @@ public function php(?string $version = null): ?Service
         return $this->service('php', $version);
     }
 
+    public function memoryDatabase(?string $version = null): ?Service
+    {
+        if (! $version) {
+            return $this->defaultService('memory_database');
+        }
+
+        return $this->service('memory_database', $version);
+    }
+
+    public function monitoring(?string $version = null): ?Service
+    {
+        if (! $version) {
+            return $this->defaultService('monitoring');
+        }
+
+        return $this->service('monitoring', $version);
+    }
+
     public function sshKey(): array
     {
         /** @var FilesystemAdapter $storageDisk */
@@ -361,4 +391,11 @@ public function cron(): Cron
     {
         return new Cron($this);
     }
+
+    public function checkForUpdates(): void
+    {
+        $this->updates = $this->os()->availableUpdates();
+        $this->last_update_check = now();
+        $this->save();
+    }
 }

app/Models/ServerLog.php

@@ -16,6 +16,7 @@
  * @property string $disk
  * @property Server $server
  * @property ?Site $site
+ * @property bool $is_remote
  */
 class ServerLog extends AbstractModel
 {
@@ -27,11 +28,13 @@ class ServerLog extends AbstractModel
         'type',
         'name',
         'disk',
+        'is_remote',
     ];
 
     protected $casts = [
         'server_id' => 'integer',
         'site_id' => 'integer',
+        'is_remote' => 'boolean',
     ];
 
     public static function boot(): void
@@ -64,6 +67,17 @@ public function site(): BelongsTo
         return $this->belongsTo(Site::class);
     }
 
+    public static function getRemote($query, bool $active = true, ?Site $site = null)
+    {
+        $query->where('is_remote', $active);
+
+        if ($site) {
+            $query->where('name', 'like', $site->path.'%');
+        }
+
+        return $query;
+    }
+
     public function write($buf): void
     {
         if (Str::contains($buf, 'VITO_SSH_ERROR')) {
@@ -78,6 +92,10 @@ public function write($buf): void
 
     public function getContent(): ?string
     {
+        if ($this->is_remote) {
+            return $this->server->os()->tail($this->name, 150);
+        }
+
         if (Storage::disk($this->disk)->exists($this->name)) {
             return Storage::disk($this->disk)->get($this->name);
         }
@@ -97,4 +115,27 @@ public static function log(Server $server, string $type, string $content, ?Site
         $log->save();
         $log->write($content);
     }
+
+    public static function make(Server $server, string $type): ServerLog
+    {
+        return new static([
+            'server_id' => $server->id,
+            'name' => $server->id.'-'.strtotime('now').'-'.$type.'.log',
+            'type' => $type,
+            'disk' => config('core.logs_disk'),
+        ]);
+    }
+
+    public function forSite(Site|int $site): ServerLog
+    {
+        if ($site instanceof Site) {
+            $site = $site->id;
+        }
+
+        if (is_int($site)) {
+            $this->site_id = $site;
+        }
+
+        return $this;
+    }
 }

app/Models/Service.php

@@ -4,12 +4,7 @@
 
 use App\Actions\Service\Manage;
 use App\Exceptions\ServiceInstallationFailed;
-use App\SSH\Services\Database\Database as DatabaseHandler;
-use App\SSH\Services\Firewall\Firewall as FirewallHandler;
-use App\SSH\Services\PHP\PHP as PHPHandler;
-use App\SSH\Services\ProcessManager\ProcessManager as ProcessManagerHandler;
-use App\SSH\Services\Redis\Redis as RedisHandler;
-use App\SSH\Services\Webserver\Webserver as WebserverHandler;
+use App\SSH\Services\ServiceInterface;
 use Illuminate\Database\Eloquent\Factories\HasFactory;
 use Illuminate\Database\Eloquent\Relations\BelongsTo;
 use Illuminate\Support\Str;
@@ -53,7 +48,9 @@ public static function boot(): void
         parent::boot();
 
         static::creating(function (Service $service) {
-            $service->unit = config('core.service_units')[$service->name][$service->server->os][$service->version];
+            if (array_key_exists($service->name, config('core.service_units'))) {
+                $service->unit = config('core.service_units')[$service->name][$service->server->os][$service->version];
+            }
         });
     }
 
@@ -62,8 +59,8 @@ public function server(): BelongsTo
         return $this->belongsTo(Server::class);
     }
 
-    public function handler(
-    ): PHPHandler|WebserverHandler|DatabaseHandler|FirewallHandler|ProcessManagerHandler|RedisHandler {
+    public function handler(): ServiceInterface
+    {
         $handler = config('core.service_handlers')[$this->name];
 
         return new $handler($this);
@@ -81,26 +78,26 @@ public function validateInstall($result): void
 
     public function start(): void
     {
-        app(Manage::class)->start($this);
+        $this->unit && app(Manage::class)->start($this);
     }
 
     public function stop(): void
     {
-        app(Manage::class)->stop($this);
+        $this->unit && app(Manage::class)->stop($this);
     }
 
     public function restart(): void
     {
-        app(Manage::class)->restart($this);
+        $this->unit && app(Manage::class)->restart($this);
     }
 
     public function enable(): void
     {
-        app(Manage::class)->enable($this);
+        $this->unit && app(Manage::class)->enable($this);
     }
 
     public function disable(): void
     {
-        app(Manage::class)->disable($this);
+        $this->unit && app(Manage::class)->disable($this);
     }
 }