|
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace Engelsystem\Controllers;
|
|
|
|
|
|
|
|
|
|
use Carbon\Carbon;
|
|
|
|
|
use Engelsystem\Helpers\Authenticator;
|
|
|
|
|
use Engelsystem\Http\Request;
|
|
|
|
|
use Engelsystem\Http\Response;
|
|
|
|
|
use Engelsystem\Http\UrlGeneratorInterface;
|
|
|
|
|
use Engelsystem\Models\User\User;
|
|
|
|
|
use Symfony\Component\HttpFoundation\Session\SessionInterface;
|
|
|
|
|
|
|
|
|
|
class AuthController extends BaseController
|
|
|
|
|
{
|
|
|
|
|
/** @var Response */
|
|
|
|
|
protected $response;
|
|
|
|
|
|
|
|
|
|
/** @var SessionInterface */
|
|
|
|
|
protected $session;
|
|
|
|
|
|
|
|
|
|
/** @var UrlGeneratorInterface */
|
|
|
|
|
protected $url;
|
|
|
|
|
|
|
|
|
|
/** @var Authenticator */
|
|
|
|
|
protected $auth;
|
|
|
|
|
|
|
|
|
|
/** @var array */
|
|
|
|
|
protected $permissions = [
|
|
|
|
|
'login' => 'login',
|
|
|
|
|
'postLogin' => 'login',
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @param Response $response
|
|
|
|
|
* @param SessionInterface $session
|
|
|
|
|
* @param UrlGeneratorInterface $url
|
|
|
|
|
* @param Authenticator $auth
|
|
|
|
|
*/
|
|
|
|
|
public function __construct(
|
|
|
|
|
Response $response,
|
|
|
|
|
SessionInterface $session,
|
|
|
|
|
UrlGeneratorInterface $url,
|
|
|
|
|
Authenticator $auth
|
|
|
|
|
) {
|
|
|
|
|
$this->response = $response;
|
|
|
|
|
$this->session = $session;
|
|
|
|
|
$this->url = $url;
|
|
|
|
|
$this->auth = $auth;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @return Response
|
|
|
|
|
*/
|
|
|
|
|
public function login()
|
|
|
|
|
{
|
|
|
|
|
return $this->response->withView('pages/login');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Posted login form
|
|
|
|
|
*
|
|
|
|
|
* @param Request $request
|
|
|
|
|
* @return Response
|
|
|
|
|
*/
|
|
|
|
|
public function postLogin(Request $request): Response
|
|
|
|
|
{
|
|
|
|
|
$return = $this->authenticateUser($request->get('login', ''), $request->get('password', ''));
|
|
|
|
|
if (!$return instanceof User) {
|
|
|
|
|
return $this->response->withView(
|
|
|
|
|
'pages/login',
|
|
|
|
|
['errors' => [$return], 'show_password_recovery' => true]
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$user = $return;
|
|
|
|
|
|
|
|
|
|
$this->session->invalidate();
|
|
|
|
|
$this->session->set('user_id', $user->id);
|
|
|
|
|
$this->session->set('locale', $user->settings->language);
|
|
|
|
|
|
|
|
|
|
$user->last_login_at = new Carbon();
|
|
|
|
|
$user->save(['touch' => false]);
|
|
|
|
|
|
|
|
|
|
return $this->response->redirectTo('news');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @return Response
|
|
|
|
|
*/
|
|
|
|
|
public function logout(): Response
|
|
|
|
|
{
|
|
|
|
|
$this->session->invalidate();
|
|
|
|
|
|
|
|
|
|
return $this->response->redirectTo($this->url->to('/'));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Verify the user and password
|
|
|
|
|
*
|
|
|
|
|
* @param $login
|
|
|
|
|
* @param $password
|
|
|
|
|
* @return User|string
|
|
|
|
|
*/
|
|
|
|
|
protected function authenticateUser(string $login, string $password)
|
|
|
|
|
{
|
|
|
|
|
if (!$login) {
|
|
|
|
|
return 'auth.no-nickname';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!$password) {
|
|
|
|
|
return 'auth.no-password';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!$user = $this->auth->authenticate($login, $password)) {
|
|
|
|
|
return 'auth.not-found';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $user;
|
|
|
|
|
}
|
|
|
|
|
}
|
