apuc/back_gestalt
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

api auth email

Browse Source
This commit is contained in:
Билай Станислав
2024-12-09 13:46:10 +03:00
parent 8778c4d725
commit 62ed358a4b
10 changed files with 156 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
kernel/modules/secure/controllers/SecureController.php
View File

@ -11,6 +11,7 @@ use kernel\Mailing;
use kernel\modules\secure\models\forms\LoginEmailForm;
use kernel\modules\secure\models\forms\LoginForm;
use kernel\modules\secure\models\forms\RegisterForm;
use kernel\modules\secure\services\SecureService;
use kernel\modules\user\models\User;
use kernel\modules\user\service\UserService;
use kernel\Request;
@ -86,17 +87,19 @@ class SecureController extends AdminController
UserService::createUserByEmailAndPassword($email, $password);
$user = $this->userService->getByField('email', $email);
$mailing->send_html("register_by_code.php", ['code' => $user->auth_code, 'password' => $password], [
SecureService::createSecretCode($user);
$secretCode = SecureService::getByField("user_id", $user->id);
$mailing->send_html("register_by_code.php", ['code' => $secretCode->code, 'password' => $password], [
'address' => $email,
'subject' => "Код регистрации",
"from_name" => $_ENV['APP_NAME']
]);
} else {
$user->auth_code = mt_rand(100000, 999999);;
$user->auth_code_expires_at = date("Y-m-d H:i:s", strtotime("+5 minutes"));
$user->save();
$mailing->send_html("login_by_code.php", ['code' => $user->auth_code], [
SecureService::updateSecretCode($user);
$secretCode = SecureService::getByField("user_id", $user->id);
$mailing->send_html("login_by_code.php", ['code' => $secretCode->code], [
'address' => $email,
'subject' => "Код авторизации",
"from_name" => $_ENV['APP_NAME']
@ -120,7 +123,8 @@ class SecureController extends AdminController
throw new exception("User not found.");
}
$code = $request->post("code");
if ($user->auth_code == $code && time() <= strtotime($user->auth_code_expires_at)) {
$secretCode = SecureService::getByField("user_id", $user->id);
if ($secretCode->code == $code && time() <= strtotime($secretCode->code_expires_at)) {
setcookie('user_id', $user->id, time() + 60 * 60 * 24, '/', $_SERVER['SERVER_NAME'], false);
$this->redirect("/admin", code: 302);
} else {