hasTooManyLoginAttempts($request)) { $this->fireLockoutEvent($request); return $this->sendLockoutResponse($request); } if ($this->attemptLogin($request)) { return $this->sendLoginResponse($request); } // If the login attempt was unsuccessful we will increment the number of attempts // to login and redirect the user back to the login form. Of course, when this // user surpasses their maximum number of attempts they will get locked out. $this->incrementLoginAttempts($request); return $this->sendFailedLoginResponse($request); } /** * log out current user * @param Request $request * @return \Illuminate\Http\JsonResponse */ public function logout(Request $request) { Auth::logout(); return response()->json(['message' => 'signed out'], Response::HTTP_OK); } /** * Send the response after the user was authenticated. * * @param \Illuminate\Http\Request $request * @return \Illuminate\Http\JsonResponse */ protected function sendLoginResponse(Request $request) { $this->clearLoginAttempts($request); $success['name'] = $this->guard()->user()->name; $this->authenticated($request, $this->guard()->user()); return response()->json([ 'message' => 'authenticated', 'name' => $success['name'] ], Response::HTTP_OK); } /** * Get the failed login response instance. * * @param \Illuminate\Http\Request $request * @return \Illuminate\Http\JsonResponse */ protected function sendFailedLoginResponse(Request $request) { return response()->json(['message' => 'unauthorised'], Response::HTTP_UNAUTHORIZED); } /** * Redirect the user after determining they are locked out. * * @param \Illuminate\Http\Request $request * @return \Illuminate\Http\JsonResponse */ protected function sendLockoutResponse(Request $request) { $seconds = $this->limiter()->availableIn( $this->throttleKey($request) ); return response()->json(['message' => Lang::get('auth.throttle', ['seconds' => $seconds])], Response::HTTP_TOO_MANY_REQUESTS); } /** * Get the needed authorization credentials from the request. * * @param \Illuminate\Http\Request $request * @return array */ protected function credentials(Request $request) { $credentials = [ $this->username() => strtolower($request->input($this->username())), 'password' => $request->get('password'), ]; return $credentials; } /** * The user has been authenticated. * * @param \Illuminate\Http\Request $request * @param mixed $user * @return mixed */ protected function authenticated(Request $request, $user) { $user->last_seen_at = Carbon::now()->format('Y-m-d H:i:s'); $user->save(); } }