extern/2FAuth
1
0
Fork 0
mirror of https://github.com/Bubka/2FAuth.git synced 2025-08-09 13:55:01 +02:00
Code Issues Packages Projects Releases Wiki Activity

Refactor Auth controllers : thicker, with Form requests & API resource

Browse Source
This commit is contained in:
Bubka
2021-10-01 13:40:37 +02:00
parent 1a51cf967a
commit a5514ba06b
14 changed files with 270 additions and 109 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
app/Http/Controllers/Auth/LoginController.php
View File

@ -31,7 +31,7 @@ class LoginController extends Controller
/**
* Handle a login request to the application.
*
* @param \Illuminate\Http\Request $request
* @param \App\Http\Requests\CaseInsensitiveLogin $request
* @return \Illuminate\Http\JsonResponse
*
* @throws \Illuminate\Validation\ValidationException
@ -61,6 +61,21 @@ class LoginController extends Controller
return $this->sendFailedLoginResponse($request);
}
/**
* log out current user
* @param Request $request
* @return \Illuminate\Http\JsonResponse
*/
public function logout(Request $request)
{
$accessToken = Auth::user()->token();
$accessToken->revoke();
return response()->json(['message' => 'signed out'], Response::HTTP_OK);
}
/**
* Send the response after the user was authenticated.
*
@ -83,6 +98,7 @@ class LoginController extends Controller
], Response::HTTP_OK);
}
/**
* Get the failed login response instance.
*
@ -93,6 +109,7 @@ class LoginController extends Controller
{
return response()->json(['message' => 'unauthorised'], Response::HTTP_UNAUTHORIZED);
}
/**
* Redirect the user after determining they are locked out.
@ -109,6 +126,7 @@ class LoginController extends Controller
return response()->json(['message' => Lang::get('auth.throttle', ['seconds' => $seconds])], Response::HTTP_TOO_MANY_REQUESTS);
}
/**
* Get the needed authorization credentials from the request.
*

19
app/Http/Controllers/Settings/PasswordController.php → app/Http/Controllers/Auth/PasswordController.php
View File

@ -1,8 +1,8 @@
<?php
namespace App\Http\Controllers\Settings;
namespace App\Http\Controllers\Auth;
use Illuminate\Http\Request;
use App\Http\Requests\UserPatchPwdRequest;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
@ -13,23 +13,20 @@ class PasswordController extends Controller
/**
* Update the user's password.
*
* @param \Illuminate\Http\Request $request
* @param \App\Http\Requests\UserPatchPwdRequest $request
* @return \Illuminate\Http\Response
*/
public function update(Request $request)
public function update(UserPatchPwdRequest $request)
{
$this->validate($request, [
'currentPassword' => 'required',
'password' => 'required|confirmed|min:8',
]);
$validated = $request->validated();
if (!Hash::check( $request->currentPassword, Auth::user()->password) ) {
if (!Hash::check( $validated['currentPassword'], Auth::user()->password) ) {
return response()->json(['message' => __('errors.wrong_current_password')], 400);
}
if (!config('app.options.isDemoApp') ) {
if (!config('2fauth.config.isDemoApp') ) {
$request->user()->update([
'password' => bcrypt($request->password),
'password' => bcrypt($validated['password']),
]);
}

34
app/Http/Controllers/Auth/RegisterController.php
View File

@ -3,6 +3,7 @@
namespace App\Http\Controllers\Auth;
use App\User;
use App\Http\Requests\UserStoreRequest;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\DB;
use App\Http\Controllers\Controller;
@ -10,6 +11,7 @@ use Illuminate\Support\Facades\Hash;
use Illuminate\Auth\Events\Registered;
use Illuminate\Support\Facades\Validator;
use Illuminate\Foundation\Auth\RegistersUsers;
use Illuminate\Validation\ValidationException;
class RegisterController extends Controller
{
@ -25,44 +27,24 @@ class RegisterController extends Controller
*/
use RegistersUsers;
/**
* check if a user exists
* @param Request $request [description]
* @return json
*/
public function checkUser()
{
$user = DB::table('users')->first();
return response()->json(['username' => isset($user->name) ? $user->name : null], 200);
}
/**
* Handle a registration request for the application.
*
* @param \Illuminate\Http\Request $request
* @param \App\Http\Requests\UserStoreRequest $request
* @return \Illuminate\Http\JsonResponse
*/
public function register(Request $request)
public function register(UserStoreRequest $request)
{
// check if a user already exists
if( DB::table('users')->count() > 0 ) {
// return response()->json(['message' => __('errors.already_one_user_registered')], 400);
throw \Illuminate\Validation\ValidationException::withMessages(['taken' => __('errors.already_one_user_registered')]);
}
$this->validator($request->all())->validate();
event(new Registered($user = $this->create($request->all())));
//$this->guard()->login($user);
$validated = $request->validated();
event(new Registered($user = $this->create($validated)));
return response()->json([
'message' => 'account created',
'token' => $user->createToken('MyApp')->accessToken,
'token' => $user->createToken('2FAuth')->accessToken,
'name' => $user->name,
]);
], 201);
}

54
app/Http/Controllers/Auth/UserController.php Normal file
View File

@ -0,0 +1,54 @@
<?php
namespace App\Http\Controllers\Auth;
use App\User;
use App\Http\Requests\UserUpdateRequest;
use App\Http\Resources\UserResource;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
class UserController extends Controller
{
/**
* Get detailed information about a user
*
* @return \App\Http\Resources\UserResource
*/
public function show()
{
$user = User::first();
return $user
? new UserResource($user)
: response()->json(['name' => null], 200);
}
/**
* Update the user's profile information.
*
* @param \App\Http\Requests\UserUpdateRequest $request
* @return \App\Http\Resources\UserResource
*/
public function update(UserUpdateRequest $request)
{
$user = $request->user();
$validated = $request->validated();
if (!Hash::check( $request->password, Auth::user()->password) ) {
return response()->json(['message' => __('errors.wrong_current_password')], 400);
}
if (!config('2fauth.config.isDemoApp') ) {
tap($user)->update([
'name' => $validated['name'],
'email' => $validated['email'],
]);
}
return new UserResource($user);
}
}

53
app/Http/Controllers/Settings/AccountController.php
View File

@ -1,53 +0,0 @@
<?php
namespace App\Http\Controllers\Settings;
use Illuminate\Http\Request;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
class AccountController extends Controller
{
/**
* get detailed information about a user
* @return [type] [description]
*/
public function show()
{
return response()->json(Auth::user()->only('name', 'email'), 200);
}
/**
* Update the user's profile information.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function update(Request $request)
{
$user = $request->user();
$this->validate($request, [
'name' => 'required',
'email' => 'required|email|unique:users,email,'.Auth::id(),
'password' => 'required',
]);
if (!Hash::check( $request->password, Auth::user()->password) ) {
return response()->json(['message' => __('errors.wrong_current_password')], 400);
}
if (!config('app.options.isDemoApp') ) {
tap($user)->update($request->only('name', 'email'));
}
return response()->json([
'message' => __('auth.forms.profile_saved'),
'username' => $request->name
]);
}
}

2
app/Http/Controllers/TwoFAccountController.php
View File

@ -46,7 +46,7 @@ class TwoFAccountController extends Controller
/**
* List all resources
*
* @return \App\Http\Resources\TwoFAccountReadResource
* @return \App\Http\Resources\TwoFAccountCollection
*/
public function index(Request $request)
{

31
app/Http/Requests/UserPatchPwdRequest.php Normal file
View File

@ -0,0 +1,31 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class UserPatchPwdRequest extends FormRequest
{
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
public function authorize()
{
return true;
}
/**
* Get the validation rules that apply to the request.
*
* @return array
*/
public function rules()
{
return [
'currentPassword' => 'required',
'password' => 'required|string|min:8',
];
}
}

32
app/Http/Requests/UserStoreRequest.php Normal file
View File

@ -0,0 +1,32 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class UserStoreRequest extends FormRequest
{
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
public function authorize()
{
return true;
}
/**
* Get the validation rules that apply to the request.
*
* @return array
*/
public function rules()
{
return [
'name' => [new \App\Rules\FirstUser, 'required', 'string', 'max:255'],
'email' => 'required|string|email|max:255',
'password' => 'required|string|min:8|confirmed',
];
}
}

32
app/Http/Requests/UserUpdateRequest.php Normal file
View File

@ -0,0 +1,32 @@
<?php
namespace App\Http\Requests;
use Illuminate\Foundation\Http\FormRequest;
class UserUpdateRequest extends FormRequest
{
/**
* Determine if the user is authorized to make this request.
*
* @return bool
*/
public function authorize()
{
return true;
}
/**
* Get the validation rules that apply to the request.
*
* @return array
*/
public function rules()
{
return [
'name' => 'required|string|max:255',
'email' => 'required|string|email|max:255',
'password' => 'required',
];
}
}

23
app/Http/Resources/UserResource.php Normal file
View File

@ -0,0 +1,23 @@
<?php
namespace App\Http\Resources;
use Illuminate\Http\Resources\Json\JsonResource;
use Illuminate\Support\Facades\Auth;
class UserResource extends JsonResource
{
/**
* Transform the resource into an array.
*
* @param \Illuminate\Http\Request $request
* @return array
*/
public function toArray($request)
{
return [
'name' => $this->name,
'email' => $this->when(Auth::guard('api')->user(), $this->email),
];
}
}

41
app/Rules/FirstUser.php Normal file
View File

@ -0,0 +1,41 @@
<?php
namespace App\Rules;
use Illuminate\Contracts\Validation\Rule;
use Illuminate\Support\Facades\DB;
class FirstUser implements Rule
{
/**
* Create a new rule instance.
*
* @return void
*/
public function __construct()
{
//
}
/**
* Determine if the validation rule passes.
*
* @param string $attribute
* @param mixed $value
* @return bool
*/
public function passes($attribute, $value)
{
return DB::table('users')->count() === 0 ? true : false;
}
/**
* Get the validation error message.
*
* @return string
*/
public function message()
{
return trans('validation.custom.name.firstUser');
}
}