114 lines
2.7 KiB
PHP
Executable file
114 lines
2.7 KiB
PHP
Executable file
<?php
|
|
|
|
namespace App\Http\Controllers\Auth;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Mail\MagicLoginLink;
|
|
use App\Services\MagicLinkAuthService;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\Mail;
|
|
use Illuminate\Support\Facades\URL;
|
|
|
|
class MagicLinkController extends Controller
|
|
{
|
|
public function __construct(
|
|
protected MagicLinkAuthService $authService
|
|
) {}
|
|
|
|
/**
|
|
* Show the login form.
|
|
*/
|
|
public function showLoginForm()
|
|
{
|
|
return view('auth.login');
|
|
}
|
|
|
|
/**
|
|
* Send a magic link to the user's email.
|
|
*/
|
|
public function sendLink(Request $request)
|
|
{
|
|
$request->validate([
|
|
'email' => 'required|email',
|
|
]);
|
|
|
|
$result = $this->authService->sendMagicLink(
|
|
$request->email,
|
|
$request->ip(),
|
|
$request->userAgent()
|
|
);
|
|
|
|
$loginUrl = URL::temporarySignedRoute(
|
|
'magic-link.verify',
|
|
now()->addMinutes(15),
|
|
['token' => $result->plainToken]
|
|
);
|
|
|
|
Mail::to($request->email)->queue(new MagicLoginLink($loginUrl, $result->plainCode, 15));
|
|
|
|
return redirect()->route('verify-code')
|
|
->with('status', 'Check your email for your login code!')
|
|
->with('email', $request->email);
|
|
}
|
|
|
|
/**
|
|
* Show the code verification form.
|
|
*/
|
|
public function showCodeForm()
|
|
{
|
|
return view('auth.verify-code');
|
|
}
|
|
|
|
/**
|
|
* Verify the magic link token.
|
|
*/
|
|
public function verifyLink(Request $request)
|
|
{
|
|
if (!$request->hasValidSignature()) {
|
|
return redirect()->route('login')->with('error', 'Invalid or expired magic link.');
|
|
}
|
|
|
|
if ($this->authService->verifyMagicLink($request->query('token'))) {
|
|
$request->session()->regenerate();
|
|
|
|
return redirect()->route('dashboard');
|
|
}
|
|
|
|
return redirect()->route('login')->with('error', 'Invalid or expired magic link.');
|
|
}
|
|
|
|
/**
|
|
* Verify the magic code.
|
|
*/
|
|
public function verifyCode(Request $request)
|
|
{
|
|
$request->validate([
|
|
'email' => 'required|email',
|
|
'code' => 'required|digits:6',
|
|
]);
|
|
|
|
if ($this->authService->verifyCode($request->email, $request->code)) {
|
|
$request->session()->regenerate();
|
|
|
|
return redirect()->route('dashboard');
|
|
}
|
|
|
|
return back()->withErrors([
|
|
'code' => 'Invalid or expired code.',
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Log the user out.
|
|
*/
|
|
public function logout(Request $request)
|
|
{
|
|
Auth::logout();
|
|
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
return redirect('/');
|
|
}
|
|
}
|