MicroFrameWork/kernel/modules/secure/controllers/SecureRestController.php

54 lines
1.6 KiB
PHP
Raw Normal View History

2024-10-17 16:47:04 +03:00
<?php
namespace kernel\modules\secure\controllers;
2024-10-18 13:45:18 +03:00
use Firebase\JWT\JWT;
use Firebase\JWT\Key;
2024-10-17 16:47:04 +03:00
use JetBrains\PhpStorm\NoReturn;
2024-10-22 16:40:40 +03:00
use kernel\App;
2024-10-17 16:47:04 +03:00
use kernel\helpers\Debug;
use kernel\modules\user\models\User;
use kernel\Request;
use kernel\RestController;
2024-10-22 16:40:40 +03:00
use kernel\services\TokenService;
2024-10-23 11:38:53 +03:00
use Random\RandomException;
2024-10-17 16:47:04 +03:00
class SecureRestController extends RestController
{
public function __construct()
{
$this->model = new User();
}
2024-10-23 11:38:53 +03:00
/**
* @throws RandomException
*/
2024-10-17 16:47:04 +03:00
#[NoReturn] public function actionAuth(): void
{
$request = new Request();
$data = $request->post();
2024-10-18 13:45:18 +03:00
$model = $this->model->where('username', $data['username'])->first();
$res = [];
if ($model) {
if (password_verify($data["password"], $model->password_hash)) {
2024-10-22 16:40:40 +03:00
$model->access_token_expires_at = date("Y-m-d H:i:s", strtotime(App::$secure['token_expired_time']));
2024-10-23 11:38:53 +03:00
$model->access_token = match (App::$secure['token_type']) {
"JWT" => TokenService::JWT($_ENV['SECRET_KEY'], 'HS256'),
"md5" => TokenService::md5(),
"crypt" => TokenService::crypt(),
"hash" => TokenService::hash('sha256'),
default => TokenService::random_bytes(20),
};
2024-10-18 13:45:18 +03:00
$res = [
2024-10-21 15:56:51 +03:00
"access_token" => $model->access_token,
"access_token_expires_at" => $model->access_token_expires_at,
2024-10-18 13:45:18 +03:00
];
}
$model->save();
2024-10-17 16:47:04 +03:00
}
2024-10-18 13:45:18 +03:00
$this->renderApi($res);
2024-10-17 16:47:04 +03:00
}
2024-10-17 16:47:04 +03:00
}