BookStack Code Mirror - bookstack/blobdiff - app/Http/Controllers/Auth/LoginController.php

index 01255f466886005e26c155b7217133bbc6f76825..01cc77d8455ed5759e264b10d71d745f834a60f0 100644 (file)

--- a/app/Http/Controllers/Auth/LoginController.php

+++ b/app/Http/Controllers/Auth/LoginController.php

@@ -3,15 +3,14 @@

namespace BookStack\Http\Controllers\Auth;

use Activity;

-use BookStack\Actions\ActivityType;

+use BookStack\Auth\Access\LoginService;

use BookStack\Auth\Access\SocialAuthService;

use BookStack\Exceptions\LoginAttemptEmailNeededException;

use BookStack\Exceptions\LoginAttemptException;

-use BookStack\Facades\Theme;

use BookStack\Http\Controllers\Controller;

-use BookStack\Theming\ThemeEvents;

use Illuminate\Foundation\Auth\AuthenticatesUsers;

use Illuminate\Http\Request;

+use Illuminate\Validation\ValidationException;

class LoginController extends Controller

{

@@ -29,23 +28,26 @@ class LoginController extends Controller

use AuthenticatesUsers;

/**

- * Redirection paths

+ * Redirection paths.

protected $redirectTo = '/';

protected $redirectPath = '/';

protected $redirectAfterLogout = '/login';

protected $socialAuthService;

+ protected $loginService;

/**

* Create a new controller instance.

- public function __construct(SocialAuthService $socialAuthService)

+ public function __construct(SocialAuthService $socialAuthService, LoginService $loginService)

{

$this->middleware('guest', ['only' => ['getLogin', 'login']]);

$this->middleware('guard:standard,ldap', ['only' => ['login', 'logout']]);

$this->socialAuthService = $socialAuthService;

+ $this->loginService = $loginService;

$this->redirectPath = url('/');

$this->redirectAfterLogout = url('/login');

}

@@ -73,8 +75,8 @@ class LoginController extends Controller

if ($request->has('email')) {

session()->flashInput([

- 'email' => $request->get('email'),

- 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : ''

+ 'email' => $request->get('email'),

+ 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : '',

]);

}

@@ -88,18 +90,19 @@ class LoginController extends Controller

}

return view('auth.login', [

- 'socialDrivers' => $socialDrivers,

- 'authMethod' => $authMethod,

+ 'socialDrivers' => $socialDrivers,

+ 'authMethod' => $authMethod,

]);

}

/**

* Handle a login request to the application.

- * @param \Illuminate\Http\Request $request

- * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse

+ * @param \Illuminate\Http\Request $request

* @throws \Illuminate\Validation\ValidationException

+ *

+ * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse

public function login(Request $request)

{

@@ -114,6 +117,7 @@ class LoginController extends Controller

$this->fireLockoutEvent($request);

Activity::logFailedLogin($username);

return $this->sendLockoutResponse($request);

}

@@ -123,6 +127,7 @@ class LoginController extends Controller

}

} catch (LoginAttemptException $exception) {

Activity::logFailedLogin($username);

return $this->sendLoginAttemptExceptionResponse($exception, $request);

}

@@ -132,38 +137,47 @@ class LoginController extends Controller

$this->incrementLoginAttempts($request);

Activity::logFailedLogin($username);

return $this->sendFailedLoginResponse($request);

}

+ /**

+ * Attempt to log the user into the application.

+ *

+ * @param \Illuminate\Http\Request $request

+ *

+ * @return bool

+ */

+ protected function attemptLogin(Request $request)

+ {

+ return $this->loginService->attempt(

+ $this->credentials($request),

+ auth()->getDefaultDriver(),

+ $request->filled('remember')

+ );

+ }

/**

* The user has been authenticated.

- * @param \Illuminate\Http\Request $request

- * @param mixed $user

+ * @param \Illuminate\Http\Request $request

+ * @param mixed $user

+ *

* @return mixed

protected function authenticated(Request $request, $user)

{

- // Authenticate on all session guards if a likely admin

- if ($user->can('users-manage') && $user->can('user-roles-manage')) {

- $guards = ['standard', 'ldap', 'saml2'];

- foreach ($guards as $guard) {

- auth($guard)->login($user);

- }

- Theme::dispatch(ThemeEvents::AUTH_LOGIN, auth()->getDefaultDriver(), $user);

- $this->logActivity(ActivityType::AUTH_LOGIN, $user);

return redirect()->intended($this->redirectPath());

}

/**

* Validate the user login request.

- * @param \Illuminate\Http\Request $request

- * @return void

+ * @param \Illuminate\Http\Request $request

* @throws \Illuminate\Validation\ValidationException

+ *

+ * @return void

protected function validateLogin(Request $request)

{

@@ -198,4 +212,20 @@ class LoginController extends Controller

return redirect('/login');

}

+ /**

+ * Get the failed login response instance.

+ *

+ * @param \Illuminate\Http\Request $request

+ *

+ * @throws \Illuminate\Validation\ValidationException

+ *

+ * @return \Symfony\Component\HttpFoundation\Response

+ */

+ protected function sendFailedLoginResponse(Request $request)

+ {

+ throw ValidationException::withMessages([

+ $this->username() => [trans('auth.failed')],

+ ])->redirectTo('/login');

+ }

}