2FAuth/app/Http/Controllers/Auth/SocialiteController.php

78 lines
2.5 KiB
PHP
Raw Normal View History

2023-11-20 23:25:36 +01:00
<?php
namespace App\Http\Controllers\Auth;
use App\Facades\Settings;
use App\Http\Controllers\Controller;
use App\Models\User;
use Illuminate\Http\Request;
use Illuminate\Support\Carbon;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Str;
use Laravel\Socialite\Facades\Socialite;
class SocialiteController extends Controller
{
/**
* Redirect to the provider's authentication url
*
* @return \Symfony\Component\HttpFoundation\RedirectResponse|\Illuminate\Http\RedirectResponse
*/
public function redirect(Request $request, string $driver)
2023-11-20 23:25:36 +01:00
{
if (! config('services.' . $driver . '.client_id') || ! config('services.' . $driver . '.client_secret')) {
return redirect('/error?err=sso_bad_provider_setup');
}
return Settings::get('enableSso')
? Socialite::driver($driver)->redirect()
: redirect('/error?err=sso_disabled');
2023-11-20 23:25:36 +01:00
}
/**
* Register (if needed) the user and authenticate him
*
* @return \Illuminate\Routing\Redirector|\Illuminate\Http\RedirectResponse
*/
public function callback(Request $request, string $driver)
2023-11-20 23:25:36 +01:00
{
try {
$socialiteUser = Socialite::driver($driver)->user();
} catch (\Exception $e) {
return redirect('/error?err=sso_failed');
}
2023-11-20 23:25:36 +01:00
$uniqueName = $socialiteUser->getId() . '@' . $driver;
$socialiteEmail = $socialiteUser->getEmail() ?? $uniqueName;
$socialiteName = ($socialiteUser->getNickname() ?? $socialiteUser->getName()) . ' (' . $uniqueName . ')';
/** @var User|null $user */
2023-11-20 23:25:36 +01:00
$user = User::firstOrNew([
'oauth_id' => $socialiteUser->getId(),
'oauth_provider' => $driver,
2023-11-20 23:25:36 +01:00
]);
if (! $user->exists) {
if (User::where('email', $socialiteEmail)->exists()) {
return redirect('/error?err=sso_email_already_used');
}
else if (User::count() === 0) {
$user->is_admin = true;
}
else if (Settings::get('disableRegistration')) {
return redirect('/error?err=sso_no_register');
}
$user->password = bcrypt(Str::random());
2023-11-20 23:25:36 +01:00
}
$user->email = $socialiteEmail;
$user->name = $socialiteName;
2023-11-20 23:25:36 +01:00
$user->last_seen_at = Carbon::now()->format('Y-m-d H:i:s');
$user->save();
Auth::guard()->login($user);
2023-11-20 23:25:36 +01:00
return redirect('/accounts');
2023-11-20 23:25:36 +01:00
}
}