KMP/backend
3
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

creste secret key

Browse Source
This commit is contained in:
Kavalar
2024-10-22 16:40:40 +03:00
parent 7ccf0957bf
commit c9fe2f160a
10 changed files with 136 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
kernel/modules/secure/controllers/SecureRestController.php
View File

@ -5,10 +5,12 @@ namespace kernel\modules\secure\controllers;
use Firebase\JWT\JWT;
use Firebase\JWT\Key;
use JetBrains\PhpStorm\NoReturn;
use kernel\App;
use kernel\helpers\Debug;
use kernel\modules\user\models\User;
use kernel\Request;
use kernel\RestController;
use kernel\services\TokenService;
class SecureRestController extends RestController
{
@ -25,21 +27,13 @@ class SecureRestController extends RestController
$res = [];
if ($model) {
if (password_verify($data["password"], $model->password_hash)) {
$baseUrl = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? 'https://' : 'http://';
$baseUrl .= $_SERVER['HTTP_HOST'];
// $baseUrl .= $_SERVER['REQUEST_URI'];;
$jwt = JWT::encode(
payload: [
"iat" => time(),
"exp" => date("Y-m-d H:i:s", strtotime("+30 days"))
],
key: $model->password_hash,
alg: 'HS256'
);
$model->access_token = $jwt;
$model->access_token_expires_at =
JWT::decode($jwt, new Key($model->password_hash, 'HS256'))->exp;
$model->access_token_expires_at = date("Y-m-d H:i:s", strtotime(App::$secure['token_expired_time']));
switch (App::$secure['token_type']){
case "JWT":
$model->access_token = TokenService::JWT($_ENV['SECRET_KEY'], 'HS256');
default:
$model->access_token = TokenService::random_bytes(20);
}
$res = [
"access_token" => $model->access_token,