wip

KacperWalenga · KacperWalenga · commit ec66314249cd · 2025-03-03T20:30:42.000+01:00
diff --git a/app/Http/Controllers/AuthController.php b/app/Http/Controllers/AuthController.php
@@ -0,0 +1,66 @@
+<?php
+
+namespace CommunityWithLegends\Http\Controllers;
+
+use CommunityWithLegends\Http\Requests\LoginRequest;
+use CommunityWithLegends\Http\Requests\RegisterRequest;
+use CommunityWithLegends\Models\User;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Hash;
+use Symfony\Component\HttpFoundation\Response as Status;
+
+class AuthController extends Controller
+{
+    public function login(LoginRequest $loginRequest): \Illuminate\Http\JsonResponse
+    {
+        if (Auth::attempt($loginRequest->validated())) {
+            $loginRequest->session()->regenerate();
+
+            return  response()->json([
+                "message" => "success",
+            ])->setStatusCode(Status::HTTP_OK);
+        }
+
+        return response()->json([
+            "message" => "The provided credentials do not match our records.",
+        ])->setStatusCode(Status::HTTP_FORBIDDEN);
+    }
+    public function logout(Request $request): \Illuminate\Http\JsonResponse
+    {
+        if (Auth::user()) {
+            Auth::logout();
+
+            $request->session()->invalidate();
+
+            $request->session()->regenerateToken();
+
+            return  response()->json([
+                "message" => "success",
+            ])->setStatusCode(Status::HTTP_OK);
+        }
+
+        return response()->json([
+            "message" => "You are not logged in.",
+        ])->setStatusCode(Status::HTTP_UNAUTHORIZED);
+    }
+    public function register(RegisterRequest $registerRequest)
+    {
+        $validated = $registerRequest->validated();
+        $userExist = User::query()->where('email', $validated['email'])->exists();
+
+        if(!$userExist){
+            $user = new User($validated);
+            $user->password = Hash::make($validated['password']);
+            $user->save();
+
+            Auth::login($user);
+        }
+
+        return response()->json([
+            "message" => "success",
+        ])->setStatusCode(Status::HTTP_OK);
+    }
+
+}
diff --git a/app/Http/Requests/LoginRequest.php b/app/Http/Requests/LoginRequest.php
@@ -0,0 +1,29 @@
+<?php
+
+namespace CommunityWithLegends\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class LoginRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     */
+    public function authorize(): bool
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, \Illuminate\Contracts\Validation\ValidationRule|array<mixed>|string>
+     */
+    public function rules(): array
+    {
+        return [
+            'email' => ['required', 'email', 'max:225'],
+            'password' => ['required', 'min:8', 'max:225', 'string'],
+        ];
+    }
+}
diff --git a/app/Http/Requests/RegisterRequest.php b/app/Http/Requests/RegisterRequest.php
@@ -0,0 +1,30 @@
+<?php
+
+namespace CommunityWithLegends\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class RegisterRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     */
+    public function authorize(): bool
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, \Illuminate\Contracts\Validation\ValidationRule|array<mixed>|string>
+     */
+    public function rules(): array
+    {
+        return [
+            "name" => ['required', 'max:225'],
+            "email" => ['required', 'email:rfc,dns', 'max:225', 'string'],
+            "password" => ['required', 'min:8', 'max:225', 'string'],
+        ];
+    }
+}
diff --git a/bootstrap/app.php b/bootstrap/app.php
@@ -5,6 +5,7 @@
 use Illuminate\Foundation\Application;
 use Illuminate\Foundation\Configuration\Exceptions;
 use Illuminate\Foundation\Configuration\Middleware;
+use Illuminate\Session\Middleware\StartSession;
 
 return Application::configure(basePath: dirname(__DIR__))
     ->withRouting(
@@ -15,6 +16,7 @@
     )
     ->withMiddleware(function (Middleware $middleware): void {
         $middleware->statefulApi();
+        $middleware->append(StartSession::class);
     })
     ->withExceptions(function (Exceptions $exceptions): void {
     })->create();
diff --git a/config/cors.php b/config/cors.php
@@ -30,5 +30,5 @@
 
     "max_age" => 0,
 
-    "supports_credentials" => false,
+    "supports_credentials" => true,
 ];
diff --git a/routes/api.php b/routes/api.php
@@ -2,6 +2,7 @@
 
 declare(strict_types=1);
 
+use CommunityWithLegends\Http\Controllers\AuthController;
 use CommunityWithLegends\Models\User;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Hash;
@@ -26,4 +27,11 @@
     return $user->createToken($request->device_name)->plainTextToken;
 });
 
-Route::get("/user", fn(Request $request) => $request->user())->middleware("auth:sanctum");
+Route::middleware('auth:sanctum')->group(function () {
+    Route::get("/user", fn(Request $request) => $request->user());
+
+    Route::post("/auth/logout", [AuthController::class, 'logout']);
+});
+
+Route::post("/auth/login", [AuthController::class, 'login'])->name('login');
+Route::post("/auth/register", [AuthController::class, 'register']);
diff --git a/routes/web.php b/routes/web.php
@@ -7,4 +7,4 @@
 
 Route::get("/", fn(): JsonResponse => response()->json([
     "message" => "Welcome",
-]));
+]))->name('dashboard');
