2024-09-24 17:22:09 +03:00
|
|
|
<?php
|
|
|
|
|
2024-09-25 14:17:36 +03:00
|
|
|
namespace kernel\modules\secure\controllers;
|
2024-09-24 17:22:09 +03:00
|
|
|
|
|
|
|
use JetBrains\PhpStorm\NoReturn;
|
|
|
|
use kernel\AdminController;
|
2024-10-17 14:55:00 +03:00
|
|
|
use kernel\Flash;
|
|
|
|
use kernel\helpers\Debug;
|
2024-09-25 14:17:36 +03:00
|
|
|
use kernel\modules\secure\models\forms\LoginForm;
|
2024-12-04 12:42:53 +03:00
|
|
|
use kernel\modules\secure\models\forms\RegisterForm;
|
2024-09-24 17:22:09 +03:00
|
|
|
use kernel\modules\user\service\UserService;
|
|
|
|
|
|
|
|
class SecureController extends AdminController
|
|
|
|
{
|
|
|
|
protected UserService $userService;
|
|
|
|
|
|
|
|
protected function init(): void
|
|
|
|
{
|
|
|
|
parent::init();
|
2024-09-25 14:17:36 +03:00
|
|
|
$this->cgView->viewPath = KERNEL_MODULES_DIR. "/secure/views/";
|
2024-09-24 17:22:09 +03:00
|
|
|
$this->cgView->layout = "/login.php";
|
|
|
|
$this->userService = new UserService();
|
|
|
|
}
|
|
|
|
|
|
|
|
public function actionLogin(): void
|
|
|
|
{
|
|
|
|
$this->cgView->render('login.php');
|
|
|
|
}
|
|
|
|
|
2024-10-17 14:55:00 +03:00
|
|
|
#[NoReturn] public function actionAuth(): void
|
2024-09-24 17:22:09 +03:00
|
|
|
{
|
|
|
|
$loginForm = new LoginForm();
|
|
|
|
$loginForm->load($_REQUEST);
|
|
|
|
|
|
|
|
if(filter_var($loginForm->getItem("username"), FILTER_VALIDATE_EMAIL)) {
|
|
|
|
$field = "email";
|
|
|
|
}
|
|
|
|
else {
|
|
|
|
$field = "username";
|
|
|
|
}
|
|
|
|
|
|
|
|
$user = $this->userService->getByField($field, $loginForm->getItem("username"));
|
|
|
|
if (!$user){
|
2024-10-17 14:55:00 +03:00
|
|
|
Flash::setMessage("error", "User not found.");
|
|
|
|
$this->redirect("/admin/login", code: 302);
|
2024-09-24 17:22:09 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
if (password_verify($loginForm->getItem("password"), $user->password_hash)) {
|
|
|
|
setcookie('user_id', $user->id, time()+60*60*24, '/', $_SERVER['SERVER_NAME'], false);
|
2024-10-17 14:55:00 +03:00
|
|
|
$this->redirect("/admin", code: 302);
|
2024-09-24 17:22:09 +03:00
|
|
|
} else {
|
2024-10-17 14:55:00 +03:00
|
|
|
Flash::setMessage("error", "Username or password incorrect.");
|
|
|
|
$this->redirect("/admin/login", code: 302);
|
2024-09-24 17:22:09 +03:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
#[NoReturn] public function actionLogout(): void
|
|
|
|
{
|
|
|
|
unset($_COOKIE['user_id']);
|
2024-10-17 14:55:00 +03:00
|
|
|
setcookie('user_id', "", -1, '/', ".".$_SERVER['SERVER_NAME'], false);
|
2024-09-26 14:47:13 +03:00
|
|
|
$this->redirect("/", code: 302);
|
2024-09-24 17:22:09 +03:00
|
|
|
}
|
|
|
|
|
2024-12-04 12:42:53 +03:00
|
|
|
public function actionRegister()
|
|
|
|
{
|
|
|
|
$this->cgView->render('register.php');
|
|
|
|
}
|
|
|
|
|
|
|
|
public function actionRegistration(): void
|
|
|
|
{
|
|
|
|
$regForm = new RegisterForm();
|
|
|
|
$regForm->load($_REQUEST);
|
|
|
|
|
|
|
|
if ($this->userService->getByField('username', $regForm->getItem("username"))) {
|
|
|
|
Flash::setMessage("error", "Username already exists.");
|
|
|
|
$this->redirect("/admin/register", code: 302);
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($this->userService->getByField('email', $regForm->getItem("email"))) {
|
|
|
|
Flash::setMessage("error", "Email already exists.");
|
|
|
|
$this->redirect("/admin/register", code: 302);
|
|
|
|
}
|
|
|
|
|
|
|
|
$user = $this->userService->create($regForm);
|
|
|
|
if ($user){
|
|
|
|
setcookie('user_id', $user->id, time()+60*60*24, '/', $_SERVER['SERVER_NAME'], false);
|
|
|
|
$this->redirect("/admin", code: 302);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2024-09-24 17:22:09 +03:00
|
|
|
}
|