154 lines
3.9 KiB
PHP
154 lines
3.9 KiB
PHP
<?php namespace App\Http\Controllers\System;
|
|
/**
|
|
* @copyright (c) 2025 Notsoweb Software (https://notsoweb.com) - All Rights Reserved
|
|
*/
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Requests\Auth\LoginRequest;
|
|
use App\Http\Requests\User\ForgotRequest;
|
|
use App\Http\Requests\User\ResetPasswordRequest;
|
|
use App\Models\ResetPassword;
|
|
use App\Models\User;
|
|
use App\Notifications\ForgotPasswordNotification;
|
|
use Illuminate\Support\Facades\Log;
|
|
use Notsoweb\ApiResponse\Enums\ApiResponse;
|
|
use Ramsey\Uuid\Uuid;
|
|
|
|
/**
|
|
* Controlador de sesiones
|
|
*
|
|
* @author Moisés Cortés C <moises.cortes@notsoweb.com>
|
|
*
|
|
* @version 1.0.0
|
|
*/
|
|
class LoginController extends Controller
|
|
{
|
|
/**
|
|
* Iniciar sesión
|
|
*/
|
|
public function login(LoginRequest $request)
|
|
{
|
|
$user = User::where('username', $request->get('username'))->first();
|
|
|
|
if (!$user || !$user->validateForPassportPasswordGrant($request->get('password'))) {
|
|
return ApiResponse::UNPROCESSABLE_CONTENT->response([
|
|
'username' => ['Credenciales inválidas']
|
|
]);
|
|
}
|
|
|
|
return ApiResponse::OK->onSuccess([
|
|
'user' => $user,
|
|
'token' => $user
|
|
->createToken('golscore')
|
|
->accessToken,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Cerrar sesión
|
|
*/
|
|
public function logout()
|
|
{
|
|
return ApiResponse::OK->response([
|
|
'is_revoked' => auth()->user()->token()->revoke()
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Contraseña olvidada
|
|
* Nota: Sin email, el reset se maneja por token directo
|
|
*/
|
|
public function forgotPassword(ForgotRequest $request)
|
|
{
|
|
$data = $request->validated();
|
|
|
|
$user = User::where('username', $data['username'])->first();
|
|
|
|
if (!$user) {
|
|
return ApiResponse::NOT_FOUND->response([
|
|
'username' => ['Usuario no encontrado']
|
|
]);
|
|
}
|
|
|
|
try {
|
|
$token = $this->generateToken($user);
|
|
|
|
// Sin email, retornar el token directamente (para uso administrativo)
|
|
return ApiResponse::OK->response([
|
|
'is_generated' => true,
|
|
'token' => $token,
|
|
'message' => 'Token generado. Válido por 15 minutos.',
|
|
]);
|
|
} catch (\Throwable $th) {
|
|
Log::channel('mail')->info("Username: {$data['username']}");
|
|
Log::channel('mail')->error($th->getMessage());
|
|
|
|
return ApiResponse::INTERNAL_ERROR->response([
|
|
'is_generated' => false,
|
|
]);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Resetear contraseña
|
|
*/
|
|
public function resetPassword(ResetPasswordRequest $request)
|
|
{
|
|
$data = $request->validated();
|
|
|
|
$model = ResetPassword::with('user')->where('token', $data['token'])->first();
|
|
|
|
if(!$model){
|
|
return ApiResponse::UNPROCESSABLE_CONTENT->response([
|
|
'token' => [__('auth.token.not_exists')]
|
|
]);
|
|
}
|
|
|
|
$expires = $model->created_at->addMinutes(15);
|
|
|
|
if($expires < now()){
|
|
$this->deleteToken($data['token']);
|
|
|
|
return ApiResponse::UNPROCESSABLE_CONTENT->response([
|
|
'token' => [__('auth.token.expired')]
|
|
]);
|
|
}
|
|
|
|
$model->user->update([
|
|
'password' => bcrypt($data['password']),
|
|
]);
|
|
|
|
$this->deleteToken($data['token']);
|
|
|
|
return ApiResponse::OK->response([
|
|
'is_updated' => true
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Generar token
|
|
*/
|
|
private function generateToken($user)
|
|
{
|
|
if($user->resetPasswords()->exists()){
|
|
$user->resetPasswords()->delete();
|
|
}
|
|
|
|
$token = Uuid::uuid4()->toString();
|
|
|
|
$user->resetPasswords()->create([
|
|
'token' => $token,
|
|
]);
|
|
|
|
return $token;
|
|
}
|
|
|
|
/**
|
|
* Eliminar tokens
|
|
*/
|
|
private function deleteToken($token)
|
|
{
|
|
ResetPassword::where('token', $token)->delete();
|
|
}
|
|
}
|