Merge pull request #881 from OpenSID/rilis-v2601.0.0

Rilis v2601.0.0

Author: habibie11

.env.example

@@ -102,3 +102,8 @@ OTP_RESEND_DECAY_SECONDS=30
 # Telegram Bot Configuration
 TELEGRAM_BOT_TOKEN=your_telegram_bot_token_here
 TELEGRAM_BOT_NAME=@your_bot_username_here
+
+# Global Rate Limiter Configuration
+RATE_LIMITER_ENABLED=false
+RATE_LIMITER_MAX_ATTEMPTS=60
+RATE_LIMITER_DECAY_MINUTES=1

app/Helpers/general.php

@@ -32,7 +32,7 @@
      */
     function openkab_versi()
     {
-        return 'v2512.0.1';
+        return 'v2601.0.0';
     }
 }
 

app/Http/Controllers/Master/ArtikelKabupatenController.php

@@ -0,0 +1,49 @@
+<?php
+
+namespace App\Http\Controllers\Master;
+
+use App\Http\Controllers\Controller;
+use Illuminate\View\View;
+
+class ArtikelKabupatenController extends Controller
+{
+    protected $permission = 'master-data-artikel';
+
+    /**
+     * Display a listing of the resource.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function index()
+    {
+        $listPermission = $this->generateListPermission();
+        $clearCache = request('clear_cache', false);
+        if ($clearCache) {
+            (new \App\Services\ArtikelService)->clearCache('artikel', ['filter[id]' => $clearCache]);
+        }
+
+        return view('master.artikel.index')->with($listPermission);
+    }
+
+    /**
+     * Show the form for creating a new resource.
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function create(): View
+    {
+        return view('master.artikel.create');
+    }
+
+    /**
+     * Show the form for editing the specified resource.
+     *
+     * @param int $id
+     *
+     * @return \Illuminate\Http\Response
+     */
+    public function edit($id): View
+    {
+        return view('master.artikel.edit', compact('id'));
+    }
+}

app/Http/Controllers/Master/ArtikelUploadController.php

@@ -0,0 +1,51 @@
+<?php
+
+namespace App\Http\Controllers\Master;
+
+use App\Http\Controllers\AppBaseController;
+use App\Traits\UploadedFile;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Storage;
+
+class ArtikelUploadController extends AppBaseController
+{
+    use UploadedFile;
+
+    public function __construct()
+    {
+        $this->pathFolder = 'uploads/artikel';
+    }
+
+    /**
+     * Upload gambar artikel
+     */
+    public function uploadGambar(Request $request)
+    {
+        try {
+            $request->validate([
+                'file' => 'required|image|mimes:jpg,jpeg,png,gif|max:2048',
+            ]);
+
+            if ($request->file('file')) {
+                $path = $this->uploadFile($request, 'file');
+                $url = Storage::url($path);
+
+                return response()->json([
+                    'success' => true,
+                    'url' => $url,
+                    'path' => $path,
+                ], 200);
+            }
+
+            return response()->json([
+                'success' => false,
+                'message' => 'File tidak ditemukan',
+            ], 400);
+        } catch (\Exception $e) {
+            return response()->json([
+                'success' => false,
+                'message' => 'Upload gagal: ' . $e->getMessage(),
+            ], 500);
+        }
+    }
+}

app/Http/Controllers/StatistikController.php

@@ -44,6 +44,7 @@ public function bantuan()
             'detailLink' => url('penduduk'),
             'judul' => 'Bantuan',
             'default_kategori' => 'penduduk',
+            'filter_tahun' => true
         ]);
     }
 

app/Http/Kernel.php

@@ -21,6 +21,7 @@ class Kernel extends HttpKernel
         \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
         Middleware\TrimStrings::class,
         \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
+        Middleware\GlobalRateLimiter::class,
     ];
 
     /**

app/Http/Middleware/GlobalRateLimiter.php

@@ -0,0 +1,171 @@
+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Cache\RateLimiter;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\App;
+use Symfony\Component\HttpFoundation\Response;
+
+class GlobalRateLimiter
+{
+    /**
+     * The rate limiter instance.
+     *
+     * @var \Illuminate\Cache\RateLimiter
+     */
+    protected $limiter;
+
+    /**
+     * Create a new rate limiter middleware instance.
+     *
+     * @param  \Illuminate\Cache\RateLimiter  $limiter
+     * @return void
+     */
+    public function __construct(RateLimiter $limiter)
+    {
+        $this->limiter = $limiter;
+    }
+
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return \Symfony\Component\HttpFoundation\Response
+     */
+    public function handle(Request $request, Closure $next): Response
+    {
+        // Check if global rate limiter is enabled
+        if (!config('rate-limiter.enabled', false)) {
+            return $next($request);
+        }
+
+        // Check if current IP should be excluded
+        if ($this->shouldExcludeIp($request)) {
+            return $next($request);
+        }
+
+        // Check if current path should be excluded
+        if ($this->shouldExcludePath($request)) {
+            return $next($request);
+        }
+
+        // Get configuration from .env or use defaults
+        $maxAttempts = config('rate-limiter.max_attempts', 60);
+        $decayMinutes = config('rate-limiter.decay_minutes', 1);
+
+        // Generate unique key for this request based on IP
+        $key = $this->resolveRequestSignature($request);
+
+        // Check if the request limit has been exceeded
+        if ($this->limiter->tooManyAttempts($key, $maxAttempts)) {
+            return $this->buildResponse($key, $maxAttempts);
+        }
+
+        // Add hit to the limiter
+        $this->limiter->hit($key, $decayMinutes * 60);
+
+        $response = $next($request);
+
+        // Add headers to the response
+        $response->headers->set('X-RateLimit-Limit', $maxAttempts);
+        $response->headers->set('X-RateLimit-Remaining', max(0, $maxAttempts - $this->limiter->attempts($key)));
+        $response->headers->set('X-RateLimit-Reset', $this->limiter->availableIn($key));
+
+        return $response;
+    }
+
+    /**
+     * Resolve request signature.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return string
+     */
+    protected function resolveRequestSignature(Request $request): string
+    {
+        // Use IP address as the signature for global rate limiting
+        return sha1(
+            'global-rate-limit:' . $request->ip()
+        );
+    }
+
+    /**
+     * Create a 'too many attempts' response.
+     *
+     * @param  string  $key
+     * @param  int  $maxAttempts
+     * @return \Symfony\Component\HttpFoundation\Response
+     */
+    protected function buildResponse(string $key, int $maxAttempts): Response
+    {
+        $seconds = $this->limiter->availableIn($key);
+        $request = request();
+
+        if (App::runningInConsole() || $request->expectsJson()) {
+            return response()->json([
+                'message' => 'Too many requests. Please try again later.',
+                'status' => 'error',
+                'code' => 429,
+                'retry_after' => $seconds,
+            ], 429);
+        }
+
+        return response('Too Many Attempts.', 429, [
+            'Retry-After' => $seconds,
+            'X-RateLimit-Limit' => $maxAttempts,
+            'X-RateLimit-Remaining' => 0,
+            'X-RateLimit-Reset' => $seconds,
+        ]);
+    }
+
+    /**
+     * Determine if the request IP should be excluded from rate limiting.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return bool
+     */
+    protected function shouldExcludeIp(Request $request): bool
+    {
+        $excludeIps = config('rate-limiter.exclude_ips', []);
+        
+        return in_array($request->ip(), $excludeIps);
+    }
+
+    /**
+     * Determine if the request path should be excluded from rate limiting.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return bool
+     */
+    protected function shouldExcludePath(Request $request): bool
+    {
+        $excludePaths = config('rate-limiter.exclude_paths', []);
+        $requestPath = $request->path();
+
+        foreach ($excludePaths as $path) {
+            if ($this->pathMatches($path, $requestPath)) {
+                return true;
+            }
+        }
+
+        return false;
+    }
+
+    /**
+     * Check if the path matches the pattern.
+     *
+     * @param  string  $pattern
+     * @param  string  $path
+     * @return bool
+     */
+    protected function pathMatches(string $pattern, string $path): bool
+    {
+        // Convert wildcard pattern to regex
+        $pattern = preg_quote($pattern, '#');
+        $pattern = str_replace('\*', '.*', $pattern);
+        
+        return preg_match("#^{$pattern}$#", $path);
+    }
+}

app/Services/ArtikelService.php

@@ -0,0 +1,48 @@
+<?php
+
+namespace App\Services;
+
+use Illuminate\Support\Facades\Cache;
+
+class ArtikelService extends BaseApiService
+{
+    protected int $cacheTtl = 3600; // TTL dalam detik (1 jam)
+
+    public function artikel(array $filters = [])
+    {
+        $cacheKey = $this->buildCacheKey('artikel', $filters);
+
+        // Ambil dari cache dulu
+        return Cache::remember($cacheKey, $this->cacheTtl, function () use ($filters) {
+            $data = $this->apiRequest('/api/v1/artikel', $filters);
+            if (! $data) {
+                return collect([]);
+            }
+
+            return collect($data)->map(fn ($item) => (object) $item['attributes']);
+        });
+    }
+
+    public function artikelById(int $id)
+    {
+        $cacheKey = "artikel_$id";
+
+        return Cache::remember($cacheKey, $this->cacheTtl, function () use ($id) {
+            $data = $this->apiRequest('/api/v1/artikel/tampil', [
+                'id' => $id,
+            ]);
+
+            if (is_array($data) && isset($data['data'])) {
+                return (object) $data['data'];
+            }
+
+            return null;
+        });
+    }
+
+    public function clearCache(string $prefix = 'artikel', array $filters = [])
+    {
+        $cacheKey = $this->buildCacheKey($prefix, $filters);
+        Cache::forget($cacheKey);
+    }
+}

catatan_rilis.md

@@ -1,11 +1,16 @@
-Di rilis ini, versi 2512.0.1 berisi penambahan dan perbaikan yang diminta pengguna.
+Di rilis ini, versi 2601.0.0 berisi penambahan dan perbaikan yang diminta pengguna.
 
 #### Penambahan Fitur
 
+1. [#872](https://github.com/OpenSID/OpenKab/issues/872) Penambahan modul artikel OpenSID.
 
 #### Perbaikan BUG
 
 1. [#873](https://github.com/OpenSID/OpenKab/issues/873) Perbaikan menu laporan data presisi yang hilang.
+2. [#879](https://github.com/OpenSID/OpenKab/issues/879) Perbaikan filter tahun pada statistik kependudukan.
 
 #### Perubahan Teknis
 
+1. [#869](https://github.com/OpenSID/OpenKab/issues/869) Upgrade versi moment pada chart.js serta perbaikan halaman website presisi untuk kependudukan dan RTM.
+2. [#876](https://github.com/OpenSID/OpenKab/issues/876) Ganti highchart dengan chartjs agar menggunakan satu library saja.
+3. [#868](https://github.com/OpenSID/OpenKab/issues/868) Penerapan rate limiting pada OpenKab untuk membantu mencegah serangan DDOS.