2024-10-17 16:47:04 +03:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace kernel\modules\secure\controllers;
|
|
|
|
|
|
2024-10-18 13:45:18 +03:00
|
|
|
use Firebase\JWT\JWT;
|
|
|
|
|
use Firebase\JWT\Key;
|
2024-10-17 16:47:04 +03:00
|
|
|
use JetBrains\PhpStorm\NoReturn;
|
2024-10-22 16:40:40 +03:00
|
|
|
use kernel\App;
|
2024-10-17 16:47:04 +03:00
|
|
|
use kernel\helpers\Debug;
|
|
|
|
|
use kernel\modules\user\models\User;
|
|
|
|
|
use kernel\Request;
|
|
|
|
|
use kernel\RestController;
|
2024-10-22 16:40:40 +03:00
|
|
|
use kernel\services\TokenService;
|
2024-10-17 16:47:04 +03:00
|
|
|
|
|
|
|
|
class SecureRestController extends RestController
|
|
|
|
|
{
|
|
|
|
|
public function __construct()
|
|
|
|
|
{
|
|
|
|
|
$this->model = new User();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[NoReturn] public function actionAuth(): void
|
|
|
|
|
{
|
|
|
|
|
$request = new Request();
|
|
|
|
|
$data = $request->post();
|
2024-10-18 13:45:18 +03:00
|
|
|
$model = $this->model->where('username', $data['username'])->first();
|
|
|
|
|
$res = [];
|
|
|
|
|
if ($model) {
|
|
|
|
|
if (password_verify($data["password"], $model->password_hash)) {
|
2024-10-22 16:40:40 +03:00
|
|
|
$model->access_token_expires_at = date("Y-m-d H:i:s", strtotime(App::$secure['token_expired_time']));
|
|
|
|
|
switch (App::$secure['token_type']){
|
|
|
|
|
case "JWT":
|
|
|
|
|
$model->access_token = TokenService::JWT($_ENV['SECRET_KEY'], 'HS256');
|
|
|
|
|
default:
|
|
|
|
|
$model->access_token = TokenService::random_bytes(20);
|
|
|
|
|
}
|
2024-10-18 13:45:18 +03:00
|
|
|
|
|
|
|
|
$res = [
|
2024-10-21 15:56:51 +03:00
|
|
|
"access_token" => $model->access_token,
|
|
|
|
|
"access_token_expires_at" => $model->access_token_expires_at,
|
2024-10-18 13:45:18 +03:00
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
$model->save();
|
2024-10-17 16:47:04 +03:00
|
|
|
}
|
2024-10-18 13:45:18 +03:00
|
|
|
|
|
|
|
|
$this->renderApi($res);
|
2024-10-17 16:47:04 +03:00
|
|
|
|
|
|
|
|
}
|
|
|
|
|
}
|
