mirror of
https://github.com/vitodeploy/vito.git
synced 2025-07-01 14:06:15 +00:00
101 lines
2.9 KiB
PHP
101 lines
2.9 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Auth;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use Illuminate\Auth\Events\Lockout;
|
|
use Illuminate\Http\RedirectResponse;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\RateLimiter;
|
|
use Illuminate\Support\Facades\Route;
|
|
use Illuminate\Support\Facades\Session;
|
|
use Illuminate\Support\Str;
|
|
use Illuminate\Validation\ValidationException;
|
|
use Inertia\Inertia;
|
|
use Inertia\Response;
|
|
use Spatie\RouteAttributes\Attributes\Get;
|
|
use Spatie\RouteAttributes\Attributes\Post;
|
|
|
|
class AuthenticatedSessionController extends Controller
|
|
{
|
|
#[Get('login', name: 'login', middleware: 'guest')]
|
|
public function create(Request $request): Response
|
|
{
|
|
return Inertia::render('auth/login', [
|
|
'canResetPassword' => Route::has('password.request'),
|
|
'status' => $request->session()->get('status'),
|
|
]);
|
|
}
|
|
|
|
#[Post('login', name: 'login.store', middleware: 'guest')]
|
|
public function store(Request $request): RedirectResponse
|
|
{
|
|
$this->validate($request, [
|
|
'email' => ['required', 'string', 'email'],
|
|
'password' => ['required', 'string'],
|
|
]);
|
|
|
|
$this->ensureIsNotRateLimited();
|
|
|
|
if (! Auth::attempt(['email' => $request->email, 'password' => $request->password], $request->remember)) {
|
|
RateLimiter::hit($this->throttleKey());
|
|
|
|
throw ValidationException::withMessages([
|
|
'email' => __('auth.failed'),
|
|
]);
|
|
}
|
|
|
|
RateLimiter::clear($this->throttleKey());
|
|
Session::regenerate();
|
|
|
|
if (user()->two_factor_secret) {
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
$request->session()->put([
|
|
'login.id' => user()->id,
|
|
'login.remember' => $request->boolean('remember'),
|
|
]);
|
|
|
|
return redirect()->route('two-factor.login');
|
|
}
|
|
|
|
return redirect()->intended(route('servers', absolute: false));
|
|
}
|
|
|
|
#[Post('logout', name: 'logout', middleware: 'auth')]
|
|
public function destroy(Request $request): RedirectResponse
|
|
{
|
|
Auth::guard('web')->logout();
|
|
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
return redirect('/');
|
|
}
|
|
|
|
protected function ensureIsNotRateLimited(): void
|
|
{
|
|
if (! RateLimiter::tooManyAttempts($this->throttleKey(), 5)) {
|
|
return;
|
|
}
|
|
|
|
event(new Lockout(request()));
|
|
|
|
$seconds = RateLimiter::availableIn($this->throttleKey());
|
|
|
|
throw ValidationException::withMessages([
|
|
'email' => __('auth.throttle', [
|
|
'seconds' => $seconds,
|
|
'minutes' => ceil($seconds / 60),
|
|
]),
|
|
]);
|
|
}
|
|
|
|
protected function throttleKey(): string
|
|
{
|
|
return Str::transliterate(Str::lower(request()->email).'|'.request()->ip());
|
|
}
|
|
}
|