kernel update

2024-12-16 14:26:13 +03:00
parent 589cf81e49
commit f5ad07c04a
77 changed files with 2067 additions and 251 deletions
--- a/kernel/modules/secure/controllers/SecureRestController.php
+++ b/kernel/modules/secure/controllers/SecureRestController.php
@ -7,10 +7,15 @@ use Firebase\JWT\Key;
 use JetBrains\PhpStorm\NoReturn;
 use kernel\App;
 use kernel\helpers\Debug;
+use kernel\Mailing;
+use kernel\modules\secure\models\SecretCode;
+use kernel\modules\secure\services\SecureService;
 use kernel\modules\user\models\User;
+use kernel\modules\user\service\UserService;
 use kernel\Request;
 use kernel\RestController;
 use kernel\services\TokenService;
+use PHPMailer\PHPMailer\Exception;
 use Random\RandomException;

 class SecureRestController extends RestController
@ -51,4 +56,75 @@ class SecureRestController extends RestController
        $this->renderApi($res);
    }

-}
+    /**
+     * @throws Exception
+     * @throws RandomException
+     */
+    #[NoReturn] public function actionEmailAuth(): void
+    {
+        $mailing = new Mailing();
+        $request = new Request();
+        $data = $request->post();
+        $model = $this->model->where('email', $data['email'])->first();
+
+        if (!$model) {
+            $password = bin2hex(random_bytes(8));
+
+            UserService::createUserByEmailAndPassword($data['email'], $password);
+            $model = UserService::getByField('email', $data['email']);
+
+            SecureService::createSecretCode($model);
+            $secretCode = SecureService::getByField("user_id", $model->id);
+
+
+            $mailing->send_html("register_by_code.php", ['code' => $secretCode->code, 'password' => $password], [
+                'address' => $data['email'],
+                'subject' => "Код регистрации",
+                "from_name" => $_ENV['APP_NAME']
+            ]);
+        } else {
+            SecureService::updateSecretCode($model);
+            $secretCode = SecureService::getByField("user_id", $model->id);
+
+            $mailing->send_html("login_by_code.php", ['code' => $secretCode->code], [
+                'address' => $data['email'],
+                'subject' => "Код авторизации",
+                "from_name" => $_ENV['APP_NAME']
+            ]);
+        }
+
+        $res = [
+            "status" => "success",
+            "code_expires_at" => $secretCode->code_expires_at,
+        ];
+
+        setcookie('user_email', $data['email'], time()+60*15, '/', $_SERVER['SERVER_NAME'], false);
+        $this->renderApi($res);
+    }
+
+    /**
+     * @throws Exception
+     */
+    #[NoReturn] public function actionCodeCheck(): void
+    {
+        $request = new Request();
+        $code = $request->post("code");
+
+        $model = SecretCode::where("code", $code)->first();
+        if (time() <= strtotime($model->code_expires_at)) {
+            $user = $this->model->where("id", $model->user_id)->first();
+            if ($user){
+                $user->access_token_expires_at = date("Y-m-d H:i:s", strtotime(App::$secure['token_expired_time']));
+                $user->access_token = SecureService::generateAccessToken();
+                $user->save();
+                $this->renderApi([
+                    "access_token" => $user->access_token,
+                    "access_token_expires_at" => $user->access_token_expires_at,
+                ]);
+            }
+        }
+
+        $this->renderApi(['status' => 'error', 'message' => 'incorrect code']);
+    }
+
+}