yanto/kulakpos_web
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
129ca2260ccb511c66c9483ab45467119097d6da
kulakpos_web/app/Http/Controllers/Api/Auth/AuthController.php

324 lines
11 KiB
PHP
Raw Normal View History

migrate to gtea from bistbucket
2026-03-15 17:08:23 +07:00
<?php
namespace App\Http\Controllers\Api\Auth;
use App\Models\User;
use App\Models\Branch;
use App\Models\Currency;
use App\Mail\WelcomeMail;
use App\Models\UserCurrency;
use Illuminate\Http\Request;
use Illuminate\Http\JsonResponse;
use Illuminate\Support\Facades\DB;
use Laravel\Sanctum\NewAccessToken;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Mail;
use Illuminate\Support\Facades\Config;
use App\Http\Controllers\Auth\RegisteredUserController;
class AuthController extends Controller
{
public function otpSettings()
{
$otp_settings = get_option('email-varification');
return response()->json([
'message' => 'Data fetched successfully.',
'data' => $otp_settings
]);
}
public function signUp(Request $request)
{
$request->validate([
'name' => 'required|string|max:255',
'password' => 'required|min:6|max:100',
'email' => 'required|email',
]);
$code = random_int(100000, 999999);
$otpController = new RegisteredUserController();
$visibility_time = $otpController->getOtpTimeInSeconds();
$expire = now()->addSeconds($visibility_time);
$data = [
'code' => $code,
'name' => $request->name,
];
$user = User::where('email', $request->email)->first();
if ($user && $user->business_id) {
return response()->json([
'message' => 'This email is already exists.',
], 406);
}
$otp_settings = get_option('email-varification');
$verify_email = ($otp_settings['otp_status'] ?? false) && $otp_settings['otp_status'] == 'on' ? 1 : 0;
if ($verify_email) {
if (env('MAIL_USERNAME')) {
if (env('QUEUE_MAIL')) {
Mail::to($request->email)->queue(new WelcomeMail($data));
} else {
Mail::to($request->email)->send(new WelcomeMail($data));
}
} else {
return response()->json([
'message' => __('Mail service is not configured. Please contact your administrator.'),
], 406);
}
}
$user = User::updateOrCreate(['email' => $request->email], $request->except('password') + [
'is_verified' => $verify_email ? 0 : 1,
'remember_token' => $verify_email ? $code : NULL,
'email_verified_at' => $verify_email ? $expire : NULL,
'password' => Hash::make($request->password),
]);
return response()->json([
'message' => $verify_email ? 'An otp code has been sent to your email. Please check and confirm.' : 'Sign Up completed. Please setup your profile.',
'token' => $verify_email ? null : $user->createToken('createToken')->plainTextToken,
'data' => $user,
]);
}
public function submitOtp(Request $request)
{
$request->validate([
'email' => 'required|email',
'otp' => 'required|min:4|max:15',
]);
$user = User::where('email', $request->email)->first();
if (!$user) {
return response()->json([
'status' => 404,
'message' => __('User not found'),
], 404);
}
if ($user->remember_token == $request->otp) {
if ($user->email_verified_at > now()) {
Auth::login($user);
$is_setup = $user->business_id ? true : false;
$token = $user->createToken('createToken')->plainTextToken;
$accessToken = $user->createToken('createToken');
$this->setAccessTokenExpiration($accessToken);
$user->update([
'is_verified' => 1,
'remember_token' => NULL,
'email_verified_at' => now(),
]);
$currency = Currency::select('id', 'name', 'code', 'symbol', 'position')->where('is_default', 1)->first();
return response()->json([
'message' => 'Logged In successfully!',
'is_setup' => $is_setup,
'token' => $token,
'currency' => $currency,
]);
} else {
return response()->json([
'error' => __('The verification otp has been expired.')
], 400);
}
} else {
return response()->json([
'error' => __('Invalid otp.')
], 404);
}
}
public function login(Request $request)
{
$request->validate([
'password' => 'required',
'email' => 'required|email',
]);
if (auth()->attempt($request->only('email', 'password'))) {
$user = auth()->user();
$business = $user->business;
$branch = Branch::find($user->branch_id);
if (multibranch_active() && branch_count()) {
if ($branch && !$branch->status && $user->branch_id && !$branch->is_main) {
Auth::logout();
return response()->json([
'message' => 'This branch is not active, Please contact with manager.',
], 406);
}
} elseif (!multibranch_active()) {
if ($user->active_branch_id) {
$user->update([
'active_branch_id' => NULL
]);
} elseif ($user->branch_id && !$branch->is_main) {
Auth::logout();
return response()->json([
'message' => 'Multibranch is not allowed in your current package, please upgrade your subscription plan.',
], 406);
}
} elseif (!$branch && $user->branch_id) {
Auth::logout();
return response()->json([
'message' => 'Your current branch has been deleted, Please contact with manager.',
], 406);
} elseif ($business && !$business->status) {
Auth::logout();
return response()->json([
'message' => 'Your business is inactive. Please contact your administrator.',
], 406);
}
if ($user->role != 'staff' && $user->role != 'shop-owner') {
return response()->json([
'message' => 'You can not login as ' . $user->role . ' from the app!'
], 406);
}
if ($user->remember_token && !$user->business_id) { // If user didn't verify email
$code = random_int(100000, 999999);
$expire = now()->addMinutes(env('OTP_VISIBILITY_TIME') ?? 3);
$data = [
'code' => $code,
'name' => $request->name,
];
if (env('MAIL_USERNAME')) {
if (env('QUEUE_MAIL')) {
Mail::to($request->email)->queue(new WelcomeMail($data));
} else {
Mail::to($request->email)->send(new WelcomeMail($data));
}
} else {
return response()->json([
'message' => __('Mail service is not configured. Please contact your administrator.'),
], 406);
}
User::where('email', $request->email)->first()->update(['remember_token' => $code, 'email_verified_at' => $expire]);
return response()->json([
'message' => 'An otp code has been sent to your email. Please check and confirm.',
], 201);
}
$currency = UserCurrency::select('id', 'name', 'code', 'symbol', 'position')->where('business_id', $user->business_id)->first();
return response()->json([
'message' => 'User login successfully!',
'data' => [
'is_setup' => $user->business_id ? true : false,
'token' => $user->createToken('createToken')->plainTextToken,
'currency' => $currency ?? Currency::select('id', 'name', 'code', 'symbol', 'position')->where('is_default', 1)->first(),
],
]);
} else {
return response()->json([
'message' => 'Invalid email or password!'
], 404);
}
}
protected function setAccessTokenExpiration(NewAccessToken $accessToken)
{
$expiration = now()->addMinutes(Config::get('sanctum.expiration'));
DB::table('personal_access_tokens')
->where('id', $accessToken->accessToken->id)
->update(['expires_at' => $expiration]);
}
public function signOut(): JsonResponse
{
$currentToken = auth()->user()->currentAccessToken();
if ($currentToken) {
$currentToken->delete();
return response()->json([
'message' => __('Sign out successfully'),
]);
} else {
return response()->json([
'message' => __('Unauthorized'),
], 401);
}
}
public function refreshToken()
{
if (auth()->user()->tokens()) {
auth()->user()->currentAccessToken()->delete();
$data['token'] = auth()->user()->createToken('createToken')->plainTextToken;
return response()->json($data);
} else {
return response()->json([
'message' => __('Unauthorized'),
], 401);
}
}
public function resendOtp(Request $request)
{
$request->validate([
'email' => 'required|email|exists:users,email',
]);
$code = random_int(100000, 999999);
$otpController = new RegisteredUserController();
$visibility_time = $otpController->getOtpTimeInSeconds();
$expire = now()->addSeconds($visibility_time);
$data = [
'code' => $code,
'name' => $request->name,
];
if (env('MAIL_USERNAME')) {
if (env('QUEUE_MAIL')) {
Mail::to($request->email)->queue(new WelcomeMail($data));
} else {
Mail::to($request->email)->send(new WelcomeMail($data));
}
} else {
return response()->json([
'message' => __('Mail service is not configured. Please contact your administrator.'),
], 406);
}
User::where('email', $request->email)->first()->update(['remember_token' => $code, 'email_verified_at' => $expire]);
return response()->json([
'message' => 'An otp code has been sent to your email. Please check and confirm.',
]);
}
public function moduleCheck()
{
if (moduleCheck(request('module_name'))) {
return response()->json([
'status' => true
]);
}
return response()->json([
'status' => false
]);
}
}
Reference in New Issue Copy Permalink