mahdihty
/
liwo
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
131 Commits
5 Branches
0 Tags
1.4 MiB
Tree: 54ec6479ac
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '54ec6479ac'
${ noResults }
liwo/app/Http/Controllers/AuthController.php

446 lines
14 KiB
Raw Normal View History

WooooHooooo, Hello again my beloved LARAVEL
4 years ago
add auth and two other method to authcontroller
4 years ago
fix namespaces in models, login bug fix
4 years ago
change auth procedure in AuthController.php
4 years ago
new device login notification feature added to auth
4 years ago
some bug fix and send email when user register or forget password
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
fix namespaces in models, login bug fix
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
new device login notification feature added to auth
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
some bug fix and send email when user register or forget password
4 years ago
change auth procedure in AuthController.php
4 years ago
some bug fix and send email when user register or forget password
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
some bug fix and send email when user register or forget password
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
change auth procedure in AuthController.php
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
add fcm update route
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
add resend api
4 years ago
some change in resend method
4 years ago
add resend api
4 years ago
some change in resend method
4 years ago
add resend api
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
some bug fix
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
some bug fix
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
fix namespaces in models, login bug fix
4 years ago
Fix cache locations
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
new device login notification feature added to auth
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
new device login notification feature added to auth
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
new device login notification feature added to auth
4 years ago
add auth and two other method to authcontroller
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
add auth and two other method to authcontroller
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
add auth and two other method to authcontroller
4 years ago
some change in auth method, add verification link, document auth methods
4 years ago
add auth and two other method to authcontroller
4 years ago
WooooHooooo, Hello again my beloved LARAVEL
4 years ago
  1. <?php
  3. namespace App\Http\Controllers;
  5. use App\Http\Resources\UserResource;
  6. use App\Models\Business;
  7. use App\Models\User;
  8. use App\Notifications\DBNotification;
  9. use App\Notifications\MailNotification;
  10. use Illuminate\Http\JsonResponse;
  11. use Illuminate\Http\Request;
  12. use Illuminate\Support\Facades\Auth;
  13. use Illuminate\Support\Facades\Cache;
  14. use Illuminate\Support\Facades\Hash;
  15. use Illuminate\Support\Facades\Notification;
  16. use Illuminate\Support\Str;
  17. use Illuminate\Validation\Rule;
  18. use Laravel\Socialite\Facades\Socialite;
  19. use Symfony\Component\HttpFoundation\Response;
  21. class AuthController extends Controller
  22. {
  23. /**
  24. * Redirect user to google auth procedure
  25. *
  26. * @return mixed
  27. */
  28. public function redirectToGoogle()
  29. {
  30. return Socialite::driver('google')->stateless()->redirect();
  31. }
  33. /**
  34. * Complete user authenticated when return from google auth
  35. *
  36. * @param Request $request
  37. * @return \Illuminate\Contracts\Foundation\Application|\Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
  38. */
  39. public function handleGoogleCallback(Request $request)
  40. {
  41. try {
  43. $user = Socialite::driver('google')->stateless()->user();
  44. $find_user = User::where('email', $user->email)->first();
  46. if (!$find_user)
  47. {
  49. $find_user = User::create($user->user + [
  50. 'password' => Hash::make(Str::random(8)),
  51. 'username' => $user->email,
  52. 'active' => true,
  53. 'has_password' => false
  54. ]);
  56. }
  58. Auth::setUser($find_user);
  60. $finger_print = $this->createFingerPrint();
  62. return redirect('http://localhost:3000/login?token='.$finger_print->token);
  64. } catch (Exception $e) {
  65. dd($e->getMessage());
  66. }
  67. }
  69. /**
  70. * Check email for guidance user state in the app
  71. *
  72. * @param Request $request
  73. * @return JsonResponse
  74. * @throws \Illuminate\Validation\ValidationException
  75. */
  76. public function emailChecking(Request $request)
  77. {
  78. $this->validate($request, [
  79. 'email' => 'required|email',
  80. ]);
  82. $user = User::where('email', $request->email)->first();
  84. if ($user && $user->has_password) {
  85. // email exists in db
  86. // user before set a password
  87. return response()->json(['message' => 'user.exists'], 200);
  88. }
  90. if ($user && !$user->has_password) {
  91. // email exists in db
  92. // user hasn't password (we set password for user)
  93. $this->sendVerification($request->email, 'google');
  94. return response()->json(['message' => 'google'], 200);
  95. }
  97. if (!$user) {
  98. // user not exists in db
  99. $this->sendVerification($request->email, 'register');
  100. return response()->json(['message' => 'register'], 200);
  101. }
  103. // if (Cache::has($request->email)) {
  104. // // email exists in cache
  105. // $this->sendVerification($request->email, Cache::get($request->email)['type']);
  106. // return response()->json(['message' => 'Send email for validation'], 200);
  107. // }
  108. //
  109. // if (!$user && !Cache::has($request->email)) {
  110. // // user not exists in db and cache
  111. // $this->sendVerification($request->email, 'register');
  112. // return response()->json(['message' => 'Send email for validation'], 200);
  113. // }
  114. }
  116. /**
  117. * Login existing user and notify him/her when login from new device
  118. *
  119. * @param Request $request
  120. * @return array|JsonResponse
  121. * @throws \Illuminate\Validation\ValidationException
  122. */
  123. public function login(Request $request)
  124. {
  125. // todo: Logging in from a new device will result in sending a notification
  126. $this->validate($request, [
  127. 'email' => 'required|email|exists:users,email',
  128. 'password' => 'required|string|min:6'
  129. ]);
  131. $user = User::where('email', $request->email)->first();
  132. if ($user && Hash::check($request->password, $user->password)) {
  133. Auth::setUser($user);
  135. // for new device login
  136. $this->loginNotif($this->firstOrNot());
  138. return [
  139. 'auth' => $this->createFingerPrint(),
  140. 'businesses' => Auth::user()->businesses->keyBy('id')->map(fn($b, $bid) => Business::info($bid))
  141. ];
  142. }
  144. return new JsonResponse([
  145. 'message' => trans('auth.failed'),
  146. 'status' => Response::HTTP_NOT_FOUND,
  147. ], Response::HTTP_NOT_FOUND);
  148. }
  150. /**
  151. * Verify link When user click on verification link that before send for user
  152. * In this case user before login with google and now haven't password
  153. *
  154. * @param Request $request
  155. * @return array
  156. * @throws \Illuminate\Validation\ValidationException
  157. */
  158. public function verification(Request $request)
  159. {
  160. $this->validate($request, [
  161. 'email' => 'required|email',
  162. 'signature' => 'required|string',
  163. ]);
  165. $this->checkValidation($request->email, 'google', $request->signature);
  167. Auth::setUser(User::where('email', $request->email)->first());
  169. return [
  170. 'auth' => $this->createFingerPrint(),
  171. 'businesses' => Auth::user()->businesses->keyBy('id')->map(fn($b, $bid) => Business::info($bid))
  172. ];
  174. }
  176. /**
  177. * Send verification email for user
  178. * Used by method in this class
  179. *
  180. * @param $email
  181. * @param $type
  182. */
  183. public function sendVerification($email, $type)
  184. {
  185. $signature = Str::random(30);
  187. Cache::put($email, ['type' => $type, 'signature' => $signature], 3600);
  189. Notification::route('mail', $email)->notify( new MailNotification([
  190. 'greeting' => __('notification.auth.verification.greeting'),
  191. 'subject' => __('notification.auth.verification.subject'),
  192. 'body' => __('notification.auth.verification.new_body'),
  193. 'link' => __('notification.auth.verification.link', [
  194. 'email' => $email,
  195. 'type' => $type,
  196. 'signature' => $signature
  197. ])
  198. ]));
  199. }
  201. /**
  202. * This function used by some method in this class for check validation of signature
  203. *
  204. * @param $email
  205. * @param $type
  206. * @param $signature
  207. * @return JsonResponse
  208. */
  209. public function checkValidation($email, $type, $signature)
  210. {
  211. if (!Cache::has($email) || Cache::get($email)['type'] !== $type || Cache::get($email)['signature'] != $signature)
  212. {
  213. abort(403, 'Validation failed');
  214. }
  215. Cache::forget($email);
  216. }
  218. /**
  219. * User request for forget password if before exists we send email for user
  220. *
  221. * @param Request $request
  222. * @return JsonResponse
  223. * @throws \Illuminate\Validation\ValidationException
  224. */
  225. public function forgetPassword(Request $request)
  226. {
  227. $this->validate($request, [
  228. 'email' => 'required|email|exists:users,email'
  229. ]);
  231. $this->sendVerification($request->email, 'forget');
  233. return response()->json(['message' => 'Send email for validation'], 200);
  234. }
  236. /**
  237. * If user verified in this step we update user password
  238. *
  239. * @param Request $request
  240. * @return JsonResponse
  241. * @throws \Illuminate\Validation\ValidationException
  242. */
  243. public function updatePassword(Request $request)
  244. {
  245. $this->validate($request, [
  246. 'email' => 'required|email',
  247. 'password' => 'required|string|min:8|confirmed',
  248. 'signature' => 'required|string'
  249. ]);
  251. $this->checkValidation($request->email, 'forget', $request->signature);
  253. $user = User::where('email', $request->email)->first();
  255. $user->update([
  256. 'password' => Hash::make($request->password),
  257. 'has_password' => true
  258. ]);
  260. // Auth::setUser($user);
  261. //
  262. // $this->createFingerPrint();
  264. return response()->json(['message' => 'Update successfully you must be login.'], 200);
  265. }
  267. /**
  268. * If user verified we register user and login user
  269. *
  270. * @param Request $request
  271. * @return array
  272. * @throws \Illuminate\Validation\ValidationException
  273. */
  274. public function register(Request $request)
  275. {
  276. $this->validate($request, [
  277. 'name' => 'required|string|max:225|min:2',
  278. 'username' => ['required', Rule::unique('users', 'username')],
  279. 'email' => ['required', 'email', Rule::unique('users', 'email')],
  280. 'password' => 'required|string|min:6',
  281. 'signature' => 'required|string'
  282. ]);
  284. $this->checkValidation($request->email, 'register', $request->signature);
  286. $request->merge(['password' => Hash::make($request->password)]);
  288. $user = User::create($request->all()+ [
  289. 'has_password' => true
  290. ]);
  292. Auth::setUser($user);
  294. return [
  295. 'auth' => $this->createFingerPrint(),
  296. 'businesses' => Auth::user()->businesses->keyBy('id')->map(fn($b, $bid) => Business::info($bid))
  297. ];
  298. }
  300. /**
  301. * Resend email for user (only one email per minute)
  302. *
  303. * @param Request $request
  304. * @return JsonResponse
  305. * @throws \Illuminate\Validation\ValidationException
  306. */
  307. public function resendLink(Request $request)
  308. {
  309. $this->validate($request, [
  310. 'email' => 'required|email',
  311. 'type' => 'required|string'
  312. ]);
  314. $user_db = User::where('email', $request->email)->first();
  315. $user_cache = Cache::get($request->email);
  317. if ($user_db || $user_cache) {
  318. $this->sendVerification($request->email, $request->type);
  319. return response()->json(['message' => 'Link resend successfully'], 200);
  320. }
  322. abort(403);
  323. }
  325. /**
  326. * This function just used by front for checking validation of link whit signature
  327. *
  328. * @param $email
  329. * @param $type
  330. * @param $signature
  331. * @return JsonResponse
  332. */
  333. public function linkVerification(Request $request)
  334. {
  335. if (!Cache::has($request->email) || Cache::get($request->email)['type'] !== $request->type || Cache::get($request->email)['signature'] != $request->signature)
  336. {
  337. abort(403, 'Validation failed');
  338. }
  339. return response()->json(['message' => 'Verified successfully. go on'], 200);
  340. }
  342. /**
  343. * Create new token finger print when user login from new device or register
  344. *
  345. * @return mixed
  346. */
  347. public function createFingerPrint()
  348. {
  349. $attributes = [
  350. 'agent' => request()->getAgent(),
  351. 'ip' => request()->getClientIp(),
  352. 'os' => request()->getOS(),
  353. 'latitude' => \request()->getLocation()->getAttribute('lat'),
  354. 'longitude' => \request()->getLocation()->getAttribute('lon'),
  355. ];
  357. $values = [
  358. 'token' => Str::random(60)
  359. ];
  361. return Auth::user()->fingerprints()->firstOrCreate($attributes, $attributes + $values);
  362. }
  364. /**
  365. * Check user login from new device or not
  366. * Used by some methode in this class
  367. *
  368. * @return mixed
  369. */
  370. public function firstOrNot()
  371. {
  372. return Auth::user()->fingerprints()->where([
  373. ['agent', '!=',request()->getAgent()],
  374. ['ip', '!=',request()->getClientIp()],
  375. ['os', '!=',request()->getOS()],
  376. ['latitude', '!=',\request()->getLocation()->getAttribute('lat')],
  377. ['longitude', '!=',\request()->getLocation()->getAttribute('lon')],
  378. ])->exists();
  379. }
  381. /**
  382. * Send notification for user that login from new device
  383. *
  384. * @param $send
  385. */
  386. public function loginNotif($send)
  387. {
  388. if ($send) {
  389. Notification::send(Auth::user(), new MailNotification([
  390. 'greeting' => 'hi',
  391. 'subject' => 'login with another device',
  392. 'body' => 'Warning someone login to your account with new device. check it and dont worry',
  393. ]));
  394. Notification::send(Auth::user(), new DBNotification([
  395. 'body' => 'Warning someone login to your account with new device. check it and dont worry',
  396. ]));
  397. }
  398. }
  400. /**
  401. * Return authenticated user
  402. *
  403. * @return UserResource
  404. */
  405. public function auth()
  406. {
  407. return new UserResource(Auth::user());
  408. }
  410. /**
  411. * Return authenticated user with business info
  412. *
  413. * @return array
  414. */
  415. public function authWithInfo()
  416. {
  417. return [
  418. 'auth' => new UserResource(Auth::user()),
  419. 'businesses' => Auth::user()->businesses->keyBy('id') ->map(fn($b, $bid) => Business::info($bid))
  420. ];
  421. }
  423. /**
  424. * When user accept google fcm push notification, google grant token to user
  425. * This token save in user finger print for push notification
  426. *
  427. * @param Request $request
  428. * @return array
  429. */
  430. public function updateFcmToken(Request $request)
  431. {
  432. Auth::user()->fingerprints()->where(
  433. [
  434. ['agent', request()->getAgent()],
  435. ['ip', request()->getClientIp()],
  436. ['os', request()->getOS()],
  437. ['latitude', \request()->getLocation()->getAttribute('lat')],
  438. ['longitude', \request()->getLocation()->getAttribute('lon')],
  439. ]
  440. )->firstOrFail()->update([
  441. 'fcm_token' => $request->fcm_token
  442. ]);
  443. return $this->authWithInfo();
  444. }
  446. }