1
0
mirror of https://github.com/invoiceninja/invoiceninja.git synced 2024-11-16 16:13:20 +01:00
invoiceninja/app/Http/Controllers/Contact/LoginController.php

145 lines
4.2 KiB
PHP
Raw Normal View History

2019-07-08 02:08:57 +02:00
<?php
/**
* Invoice Ninja (https://invoiceninja.com).
2019-07-08 02:08:57 +02:00
*
* @link https://github.com/invoiceninja/invoiceninja source repository
*
2023-01-28 23:21:40 +01:00
* @copyright Copyright (c) 2023. Invoice Ninja LLC (https://invoiceninja.com)
2019-07-08 02:08:57 +02:00
*
2021-06-16 08:58:16 +02:00
* @license https://www.elastic.co/licensing/elastic-license
2019-07-08 02:08:57 +02:00
*/
namespace App\Http\Controllers\Contact;
use App\Http\Controllers\BaseController;
use App\Http\Controllers\Controller;
use App\Libraries\OAuth\OAuth;
use App\Models\ClientContact;
use App\Models\User;
use App\Transformers\ClientContactLoginTransformer;
2019-07-08 02:08:57 +02:00
use App\Utils\Traits\UserSessionAttributes;
use Illuminate\Foundation\Auth\AuthenticatesUsers;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use Laravel\Socialite\Facades\Socialite;
class LoginController extends BaseController
{
/*
|--------------------------------------------------------------------------
| Login Controller
|--------------------------------------------------------------------------
|
| This controller handles authenticating users for the application and
| redirecting them to your home screen. The controller uses a trait
| to conveniently provide its functionality to your applications.
|
*/
use AuthenticatesUsers;
use UserSessionAttributes;
protected $entity_type = ClientContact::class;
protected $entity_transformer = ClientContactLoginTransformer::class;
2019-07-08 02:08:57 +02:00
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
parent::__construct();
}
/**
* Login via API.
2019-07-08 02:08:57 +02:00
*
2020-10-28 11:10:49 +01:00
* @param Request $request The request
2019-07-08 02:08:57 +02:00
*
2023-07-26 04:59:36 +02:00
* @return \Illuminate\Http\JsonResponse
2020-10-28 11:10:49 +01:00
* @throws \Illuminate\Validation\ValidationException
2019-07-08 02:08:57 +02:00
*/
public function apiLogin(Request $request)
{
Auth::shouldUse('contact');
$this->validateLogin($request);
if ($this->hasTooManyLoginAttempts($request)) {
$this->fireLockoutEvent($request);
return response()->json(['message' => 'Too many login attempts, you are being throttled']);
}
if ($this->attemptLogin($request)) {
2019-07-08 02:08:57 +02:00
return $this->itemResponse($this->guard()->user());
} else {
2019-07-08 02:08:57 +02:00
$this->incrementLoginAttempts($request);
return response()->json(['message' => ctrans('texts.invalid_credentials')]);
}
}
/**
* Redirect the user to the provider authentication page.
2019-07-08 02:08:57 +02:00
*
2020-10-28 11:10:49 +01:00
* @param string $provider
2019-07-08 02:08:57 +02:00
* @return void
*/
public function redirectToProvider(string $provider)
2019-07-08 02:08:57 +02:00
{
//'https://www.googleapis.com/auth/gmail.send','email','profile','openid'
2021-05-24 11:39:21 +02:00
$scopes = [];
if ($provider == 'google') {
$scopes = ['https://www.googleapis.com/auth/gmail.send', 'email', 'profile', 'openid'];
2021-05-24 11:39:21 +02:00
}
if (request()->has('code')) {
2019-07-08 02:08:57 +02:00
return $this->handleProviderCallback($provider);
} else {
2021-05-24 11:39:21 +02:00
return Socialite::driver($provider)->scopes($scopes)->redirect();
}
2019-07-08 02:08:57 +02:00
}
public function redirectToProviderAndCreate(string $provider)
{
$redirect_url = config('services.'.$provider.'.redirect').'/create';
2019-07-08 02:08:57 +02:00
if (request()->has('code')) {
2019-07-08 02:08:57 +02:00
return $this->handleProviderCallbackAndCreate($provider);
} else {
2019-07-08 02:08:57 +02:00
return Socialite::driver($provider)->redirectUrl($redirect_url)->redirect();
}
2019-07-08 02:08:57 +02:00
}
/**
* A client side authentication has taken place.
2019-07-08 02:08:57 +02:00
* We now digest the token and confirm authentication with
* the authentication server, the correct user object
* is returned to us here and we send back the correct
* user object payload - or error.
*
* This can be extended to a create route also - need to pass a ?create query parameter and
2019-07-08 02:08:57 +02:00
* then process the signup
*
2019-07-08 02:08:57 +02:00
* return User $user
*/
public function oauthApiLogin()
{
$user = false;
$oauth = new OAuth();
$user = $oauth->getProvider(request()->input('provider'))->getTokenResponse(request()->input('token'));
if ($user) {
2019-07-08 02:08:57 +02:00
return $this->itemResponse($user);
} else {
2019-07-08 02:08:57 +02:00
return $this->errorResponse(['message' => 'Invalid credentials'], 401);
}
2019-07-08 02:08:57 +02:00
}
}