Flute-CMS · FlamesONE · May 17, 2026 · May 16, 2026 · May 17, 2026 · chatgpt-codex-connector
@@ -48,7 +48,7 @@ final class App
     /**
      * @var string
      */
-    public const VERSION = '1.0.5';
+    public const VERSION = '1.0.6';
 
     /**
      * Set the base path of the application

@@ -20,6 +20,7 @@
 use Flute\Core\Database\Entities\Server;
 use Flute\Core\Rcon\RconService;
 use Flute\Core\ServerQuery\ServerQueryService;
+use Flute\Core\Services\DatabaseService;
 use Illuminate\Support\Str;
 use PDO;
 use Throwable;
@@ -595,6 +596,7 @@ public function addDbConnection()
             $connection->additional = json_encode($additional);
             $connection->server = $this->server;
             $connection->save();
+            DatabaseService::flushModesCache();
 
             $this->dbConnections = DatabaseConnection::query()->where('server_id', $this->serverId)->fetchAll();
             $this->flashMessage(__('admin-server.messages.connection_add_success'), 'success');
@@ -856,6 +858,7 @@ public function updateDbConnection()
             $connection->dbname = $data['dbname'];
             $connection->additional = json_encode($additional);
             $connection->save();
+            DatabaseService::flushModesCache();
 
             $this->dbConnections = DatabaseConnection::query()->where('server_id', $this->serverId)->fetchAll();
             $this->flashMessage(__('admin-server.messages.connection_update_success'), 'success');

@@ -7,6 +7,7 @@
 use Flute\Admin\Packages\Server\Factories\ModDriverFactory;
 use Flute\Core\Database\Entities\DatabaseConnection;
 use Flute\Core\Database\Entities\Server;
+use Flute\Core\Services\DatabaseService;
 
 class AdminServersService
 {
@@ -294,7 +295,7 @@ public function saveServer(?Server $server, array $data): Server
             $server->setSettings($settings);
         }
 
-        $server->save();
+        $server->save(false);
 
         return $server;
     }
@@ -311,6 +312,7 @@ public function deleteDbConnection(int $connectionId): void
         }
 
         $connection->delete();
+        DatabaseService::flushModesCache();
     }
 
     /**

@@ -731,15 +731,6 @@ public function saveAndLaunch(FluteRequest $request): mixed
      */
     private function guardInstallerAccess(FluteRequest $request): mixed
     {
-        if (!$this->isInstallerRequestAllowed($request)) {
-            logs('installer')->warning('Denied installer access from non-local request.', [
-                'ip' => $request->getClientIp(),
-                'path' => $request->getPathInfo(),
-            ]);
-
-            return response()->error(403, 'Installer access denied');
-        }
-
         if ($request->isMethod('GET') || $request->isMethod('HEAD') || $request->isMethod('OPTIONS')) {
             return null;
         }
@@ -756,46 +747,6 @@ private function guardInstallerAccess(FluteRequest $request): mixed
         return null;
     }
 
-    private function isInstallerRequestAllowed(FluteRequest $request): bool
-    {
-        if ($this->isLocalInstallerRequest($request)) {
-            return true;
-        }
-
-        if (session('installer.setup_authorized') === true) {
-            return true;
-        }
-
-        $expectedToken = (string) ( getenv('FLUTE_INSTALLER_SETUP_TOKEN') ?: config('installer.setup_token', '') );
-        if ($expectedToken === '') {
-            return false;
-        }
-
-        $providedToken = $request->input('setup_token') ?? $request->headers->get('X-Setup-Token');
-
-        if (!is_string($providedToken) || !hash_equals($expectedToken, $providedToken)) {
-            return false;
-        }
-
-        session()->set('installer.setup_authorized', true);
-
-        return true;
-    }
-
-    private function isLocalInstallerRequest(FluteRequest $request): bool
-    {
-        $clientIp = $request->getClientIp();
-        if (!in_array($clientIp, ['127.0.0.1', '::1'], true)) {
-            return false;
-        }
-
-        return (
-            !$request->headers->has('Forwarded')
-            && !$request->headers->has('X-Forwarded-For')
-            && !$request->headers->has('X-Real-IP')
-        );
-    }
-
     protected function renderStep(int $id, array $extraData = [], bool $allowAdvance = true): mixed
     {
         $currentStep = $this->installerConfig->getCurrentStep();

@@ -3,6 +3,10 @@
 
 @php
     $title = __('install.title');
+    $currentStep = $currentStep ?? null;
+    $steps = $steps ?? [];
+    $totalSteps = $totalSteps ?? 0;
+    $stepData = $stepData ?? [];
 @endphp
 
 <head hx-head="append">

@@ -13,6 +13,11 @@ class DatabaseService
 
     private static array $modesCache = [];
 
+    public static function flushModesCache(): void
+    {
+        self::$modesCache = [];
+    }
+
     /**
      * Retrieves server modes based on provided mods.
      *