apuc/back_gestalt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

module shop client

Browse Source
This commit is contained in:
Kavalar
2024-12-09 16:14:43 +03:00
parent cfbcb3609f
commit 38b6aa8860
8 changed files with 154 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
kernel/modules/secure/controllers/SecureRestController.php
View File

@ -94,7 +94,7 @@ class SecureRestController extends RestController
}
$res = [
"code" => $secretCode->code,
"status" => "success",
"code_expires_at" => $secretCode->code_expires_at,
];
@ -105,23 +105,26 @@ class SecureRestController extends RestController
/**
* @throws Exception
*/
public function actionCodeCheck(): void
#[NoReturn] public function actionCodeCheck(): void
{
$request = new Request();
$code = $request->post("code");
if (isset($_COOKIE['user_email'])) {
$user = User::where('email', $_COOKIE["user_email"])->first();
if (!$user) {
throw new exception("User not found.");
}
$code = $request->post("code");
$secretCode = SecureService::getByField("user_id", $user->id);
if ($secretCode->code == $code && time() <= strtotime($secretCode->code_expires_at)) {
setcookie('user_id', $user->id, time() + 60 * 60 * 24, '/', $_SERVER['SERVER_NAME'], false);
} else {
throw new exception("incorrect code");
$model = SecretCode::where("code", $code)->first();
if (time() <= strtotime($model->code_expires_at)) {
$user = $this->model->where("id", $model->user_id)->first();
if ($user){
$user->access_token_expires_at = date("Y-m-d H:i:s", strtotime(App::$secure['token_expired_time']));
$user->access_token = SecureService::generateAccessToken();
$user->save();
$this->renderApi([
"access_token" => $user->access_token,
"access_token_expires_at" => $user->access_token_expires_at,
]);
}
}
$this->renderApi(['status' => 'error', 'message' => 'incorrect code']);
}
}

13
kernel/modules/secure/services/SecureService.php
View File

@ -2,11 +2,13 @@
namespace kernel\modules\secure\services;
use kernel\App;
use kernel\FormModel;
use kernel\helpers\Debug;
use kernel\modules\secure\models\SecretCode;
use kernel\modules\user\models\User;
use kernel\modules\user\service\UserService;
use kernel\services\TokenService;
class SecureService
{
@ -38,4 +40,15 @@ class SecureService
return SecretCode::where($field, $value)->first();
}
public static function generateAccessToken(): string
{
return match (App::$secure['token_type']) {
"JWT" => TokenService::JWT($_ENV['SECRET_KEY'], 'HS256'),
"md5" => TokenService::md5(),
"crypt" => TokenService::crypt(),
"hash" => TokenService::hash('sha256'),
default => TokenService::random_bytes(20),
};
}
}