stasbilay02/MicroFrameWork
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
9e446563b2
MicroFrameWork/kernel/modules/secure/controllers/SecureController.php

166 lines
5.4 KiB
PHP
Raw Normal View History

login
2024-09-24 17:22:09 +03:00
<?php
secure module add
2024-09-25 14:17:36 +03:00
namespace kernel\modules\secure\controllers;
login
2024-09-24 17:22:09 +03:00
use JetBrains\PhpStorm\NoReturn;
use kernel\AdminController;
email login
2024-12-05 14:31:04 +03:00
use kernel\App;
flash, middleware
2024-10-17 14:55:00 +03:00
use kernel\Flash;
use kernel\helpers\Debug;
email login
2024-12-05 14:31:04 +03:00
use kernel\Mailing;
use kernel\modules\secure\models\forms\LoginEmailForm;
secure module add
2024-09-25 14:17:36 +03:00
use kernel\modules\secure\models\forms\LoginForm;
registration
2024-12-04 12:42:53 +03:00
use kernel\modules\secure\models\forms\RegisterForm;
email login
2024-12-05 14:31:04 +03:00
use kernel\modules\user\models\User;
login
2024-09-24 17:22:09 +03:00
use kernel\modules\user\service\UserService;
email login
2024-12-05 14:31:04 +03:00
use kernel\Request;
use PHPMailer\PHPMailer\Exception;
use Random\RandomException;
login
2024-09-24 17:22:09 +03:00
class SecureController extends AdminController
{
protected UserService $userService;
protected function init(): void
{
parent::init();
secure module add
2024-09-25 14:17:36 +03:00
$this->cgView->viewPath = KERNEL_MODULES_DIR. "/secure/views/";
login
2024-09-24 17:22:09 +03:00
$this->cgView->layout = "/login.php";
$this->userService = new UserService();
}
public function actionLogin(): void
{
email login
2024-12-05 14:31:04 +03:00
$this->cgView->render(match (App::$secure['web_auth_type']) {
"login_password" => "login.php",
"email_code" => "email_login.php",
});
// $this->cgView->render('login.php');
login
2024-09-24 17:22:09 +03:00
}
flash, middleware
2024-10-17 14:55:00 +03:00
#[NoReturn] public function actionAuth(): void
login
2024-09-24 17:22:09 +03:00
{
$loginForm = new LoginForm();
$loginForm->load($_REQUEST);
if(filter_var($loginForm->getItem("username"), FILTER_VALIDATE_EMAIL)) {
$field = "email";
}
else {
$field = "username";
}
$user = $this->userService->getByField($field, $loginForm->getItem("username"));
if (!$user){
flash, middleware
2024-10-17 14:55:00 +03:00
Flash::setMessage("error", "User not found.");
$this->redirect("/admin/login", code: 302);
login
2024-09-24 17:22:09 +03:00
}
if (password_verify($loginForm->getItem("password"), $user->password_hash)) {
setcookie('user_id', $user->id, time()+60*60*24, '/', $_SERVER['SERVER_NAME'], false);
flash, middleware
2024-10-17 14:55:00 +03:00
$this->redirect("/admin", code: 302);
login
2024-09-24 17:22:09 +03:00
} else {
flash, middleware
2024-10-17 14:55:00 +03:00
Flash::setMessage("error", "Username or password incorrect.");
$this->redirect("/admin/login", code: 302);
login
2024-09-24 17:22:09 +03:00
}
}
email login
2024-12-05 14:31:04 +03:00
/**
* @throws RandomException
* @throws Exception
*/
public function actionEmailAuth(): void
{
$loginForm = new LoginEmailForm();
$loginForm->load($_REQUEST);
$email = $loginForm->getItem("email");
some fix
2024-12-05 14:38:36 +03:00
$code = mt_rand(100000, 999999);
email login
2024-12-05 14:31:04 +03:00
$user = $this->userService->getByField('email', $email);
if (!$user){
$newUser = new User();
$newUser->email = $email;
$newUser->username = substr($email, 0, strpos($email, "@"));
$newUser->password_hash = password_hash(md5(microtime() . bin2hex(random_bytes(10)) . time()), PASSWORD_DEFAULT);
$newUser->auth_code = $code;
$newUser->auth_code_expires_at = date("Y-m-d H:i:s", strtotime("+5 minutes"));
$newUser->save();
} else {
$user->auth_code = $code;
$user->auth_code_expires_at = date("Y-m-d H:i:s", strtotime("+5 minutes"));
$user->save();
}
$mailing = new Mailing();
$mailing->send_html("login_by_code.php", ['code' => $code], [
'address' => $email,
'subject' => "Код авторизации",
"from_name" => $_ENV['APP_NAME']
]);
setcookie('user_email', $email, time()+60*15, '/', $_SERVER['SERVER_NAME'], false);
$this->cgView->render("enter_code.php", ['email' => $email]);
}
/**
* @throws Exception
*/
public function actionCodeCheck(): void
{
$request = new Request();
if (isset($_COOKIE['user_email'])) {
$user = User::where('email', $_COOKIE["user_email"])->first();
if (!$user) {
throw new exception("User not found.");
}
$code = $request->post("code");
if ($user->auth_code == $code && time() <= strtotime($user->auth_code_expires_at)) {
setcookie('user_id', $user->id, time() + 60 * 60 * 24, '/', $_SERVER['SERVER_NAME'], false);
$this->redirect("/admin", code: 302);
} else {
Flash::setMessage("error", "Wrong code.");
$this->redirect("/admin/login", code: 302);
}
}
}
login
2024-09-24 17:22:09 +03:00
#[NoReturn] public function actionLogout(): void
{
unset($_COOKIE['user_id']);
flash, middleware
2024-10-17 14:55:00 +03:00
setcookie('user_id', "", -1, '/', ".".$_SERVER['SERVER_NAME'], false);
email login
2024-12-05 14:31:04 +03:00
setcookie('user_email', "", -1, '/', ".".$_SERVER['SERVER_NAME'], false);
rest controller
2024-09-26 14:47:13 +03:00
$this->redirect("/", code: 302);
login
2024-09-24 17:22:09 +03:00
}
email login
2024-12-05 14:31:04 +03:00
public function actionRegister(): void
registration
2024-12-04 12:42:53 +03:00
{
$this->cgView->render('register.php');
}
public function actionRegistration(): void
{
$regForm = new RegisterForm();
$regForm->load($_REQUEST);
if ($this->userService->getByField('username', $regForm->getItem("username"))) {
Flash::setMessage("error", "Username already exists.");
$this->redirect("/admin/register", code: 302);
}
if ($this->userService->getByField('email', $regForm->getItem("email"))) {
Flash::setMessage("error", "Email already exists.");
$this->redirect("/admin/register", code: 302);
}
$user = $this->userService->create($regForm);
if ($user){
setcookie('user_id', $user->id, time()+60*60*24, '/', $_SERVER['SERVER_NAME'], false);
$this->redirect("/admin", code: 302);
}
}
login
2024-09-24 17:22:09 +03:00
}
Reference in New Issue Copy Permalink