UPDATE: Acceso a PULSE

2024-12-30 15:49:28 -06:00 · 2024-12-30 15:49:28 -06:00 · ea9115064c
commit ea9115064c
parent fc1e5728a7
5 changed files with 78 additions and 5 deletions
--- a/app/Http/Controllers/Developer/AuthController.php
+++ b/app/Http/Controllers/Developer/AuthController.php
@ -0,0 +1,57 @@
+<?php namespace App\Http\Controllers\Developer;
+/**
+ * @copyright (c) 2024 Notsoweb Software (https://notsoweb.com) - All Rights Reserved
+ */
+
+use App\Http\Controllers\Controller;
+use App\Http\Requests\Auth\LoginRequest;
+use App\Models\User;
+use Illuminate\Support\Facades\Auth;
+use Notsoweb\ApiResponse\Enums\ApiResponse;
+
+/**
+ * Inicio de sesión en backend
+ * 
+ * @author Moisés Cortés C. <moises.cortes@notsoweb.com>
+ * 
+ * @version 1.0.0
+ */
+class AuthController extends Controller
+{
+    /**
+     * Iniciar sesión
+     */
+    public function login(LoginRequest $request)
+    {
+        $user = User::where('email', $request->get('email'))->first();
+
+        if (!$user || !$user->validateForPassportPasswordGrant($request->get('password'))) {
+            return ApiResponse::UNPROCESSABLE_CONTENT->response([
+                'email' => ['Usuario no valido']
+            ]);
+        }
+
+
+        if (Auth::guard('web')->check()) {
+            return ApiResponse::OK->response([
+                "status" => 'logged'
+            ]);
+        } else {
+            return ApiResponse::UNPROCESSABLE_CONTENT->response([
+                "status" => Auth::guard('web')->login($user, true)
+            ]);
+        }
+    }
+
+    /**
+     * Cerrar sesión
+     */
+    public function logout()
+    {
+        Auth::guard('web')->logout();
+
+        return ApiResponse::OK->response([
+            "status" => 'logged out'
+        ]);
+    }
+}
--- a/app/Providers/AppServiceProvider.php
+++ b/app/Providers/AppServiceProvider.php
@ -40,7 +40,11 @@ public function boot(): void

        // Acceso a Pulse
        Gate::define('viewPulse', function (User $user) {
-            return $user->hasRole('developer');
+            try {
+                return $user->hasPermissionTo('pulse', 'api');
+            } catch (\Throwable $th) {
+                return false;
+            }
        });
    }
 }
--- a/config/pulse.php
+++ b/config/pulse.php
@ -118,6 +118,7 @@

    'middleware' => [
        'web',
+        'auth:web',
        Authorize::class,
    ],

--- a/database/seeders/RoleSeeder.php
+++ b/database/seeders/RoleSeeder.php
@ -50,6 +50,12 @@ public function run(): void
            $roleDestroy
        ] = $this->onCRUD('roles', $roles, 'api');

+        $pulse = PermissionType::create([
+            'name' => 'Sistema'
+        ]);
+
+        $systemPulse = $this->onPermission('pulse', 'Monitoreo de Pulse', $pulse, 'api');
+
        // Desarrollador
        Role::create([
            'name' => 'developer',
@ -57,8 +63,6 @@ public function run(): void
            'guard_name' => 'api'
        ])->givePermissionTo(Permission::all());

-        
-
        // Administrador
        Role::create([
            'name' => 'admin',
@ -74,7 +78,8 @@ public function run(): void
            $roleIndex,
            $roleCreate,
            $roleEdit,
-            $roleDestroy
+            $roleDestroy,
+            $systemPulse
        );
    }
 }
--- a/routes/web.php
+++ b/routes/web.php
@ -1,8 +1,14 @@
 <?php

+use App\Http\Controllers\Developer\AuthController;
 use App\Http\Controllers\ServerController;
 use Illuminate\Support\Facades\Route;

 Route::get('/', [ServerController::class, 'status']);
 Route::get('/version', [ServerController::class, 'version']);
-Route::get('/login', [ServerController::class, 'loginRequired'])->name('login');
+Route::get('/login', [ServerController::class, 'loginRequired'])->name('login');
+
+Route::prefix('developer')->middleware('web')->group(function () {
+    Route::get('/login', [AuthController::class, 'login']);
+    Route::get('/logout', [AuthController::class, 'logout']);
+});