BookStack Code Mirror - bookstack/blobdiff - app/Http/Controllers/Auth/LoginController.php

index 4660c16d5e9b47899595d47cf35b48cc51cabc47..01cc77d8455ed5759e264b10d71d745f834a60f0 100644 (file)

--- a/app/Http/Controllers/Auth/LoginController.php

+++ b/app/Http/Controllers/Auth/LoginController.php

@@ -2,13 +2,15 @@

namespace BookStack\Http\Controllers\Auth;

+use Activity;

+use BookStack\Auth\Access\LoginService;

use BookStack\Auth\Access\SocialAuthService;

use BookStack\Exceptions\LoginAttemptEmailNeededException;

use BookStack\Exceptions\LoginAttemptException;

-use BookStack\Exceptions\UserRegistrationException;

use BookStack\Http\Controllers\Controller;

use Illuminate\Foundation\Auth\AuthenticatesUsers;

use Illuminate\Http\Request;

+use Illuminate\Validation\ValidationException;

class LoginController extends Controller

{

@@ -26,26 +28,28 @@ class LoginController extends Controller

use AuthenticatesUsers;

/**

- * Redirection paths

+ * Redirection paths.

protected $redirectTo = '/';

protected $redirectPath = '/';

protected $redirectAfterLogout = '/login';

protected $socialAuthService;

+ protected $loginService;

/**

* Create a new controller instance.

- public function __construct(SocialAuthService $socialAuthService)

+ public function __construct(SocialAuthService $socialAuthService, LoginService $loginService)

{

$this->middleware('guest', ['only' => ['getLogin', 'login']]);

$this->middleware('guard:standard,ldap', ['only' => ['login', 'logout']]);

$this->socialAuthService = $socialAuthService;

+ $this->loginService = $loginService;

$this->redirectPath = url('/');

$this->redirectAfterLogout = url('/login');

- parent::__construct();

}

public function username()

@@ -71,33 +75,39 @@ class LoginController extends Controller

if ($request->has('email')) {

session()->flashInput([

- 'email' => $request->get('email'),

- 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : ''

+ 'email' => $request->get('email'),

+ 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : '',

]);

}

+ // Store the previous location for redirect after login

$previous = url()->previous('');

- if (setting('app-public') && $previous && $previous !== url('/login')) {

- redirect()->setIntendedUrl($previous);

+ if ($previous && $previous !== url('/login') && setting('app-public')) {

+ $isPreviousFromInstance = (strpos($previous, url('/')) === 0);

+ if ($isPreviousFromInstance) {

+ redirect()->setIntendedUrl($previous);

+ }

}

return view('auth.login', [

- 'socialDrivers' => $socialDrivers,

- 'authMethod' => $authMethod,

+ 'socialDrivers' => $socialDrivers,

+ 'authMethod' => $authMethod,

]);

}

/**

* Handle a login request to the application.

- * @param \Illuminate\Http\Request $request

- * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse

+ * @param \Illuminate\Http\Request $request

* @throws \Illuminate\Validation\ValidationException

+ *

+ * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse

public function login(Request $request)

{

$this->validateLogin($request);

+ $username = $request->get($this->username());

// If the class is using the ThrottlesLogins trait, we can automatically throttle

// the login attempts for this application. We'll key this by the username and

@@ -106,6 +116,8 @@ class LoginController extends Controller

$this->hasTooManyLoginAttempts($request)) {

$this->fireLockoutEvent($request);

+ Activity::logFailedLogin($username);

return $this->sendLockoutResponse($request);

}

@@ -114,6 +126,8 @@ class LoginController extends Controller

return $this->sendLoginResponse($request);

}

} catch (LoginAttemptException $exception) {

+ Activity::logFailedLogin($username);

return $this->sendLoginAttemptExceptionResponse($exception, $request);

}

@@ -122,16 +136,48 @@ class LoginController extends Controller

// user surpasses their maximum number of attempts they will get locked out.

$this->incrementLoginAttempts($request);

+ Activity::logFailedLogin($username);

return $this->sendFailedLoginResponse($request);

}

+ /**

+ * Attempt to log the user into the application.

+ *

+ * @param \Illuminate\Http\Request $request

+ *

+ * @return bool

+ */

+ protected function attemptLogin(Request $request)

+ {

+ return $this->loginService->attempt(

+ $this->credentials($request),

+ auth()->getDefaultDriver(),

+ $request->filled('remember')

+ );

+ }

+ /**

+ * The user has been authenticated.

+ *

+ * @param \Illuminate\Http\Request $request

+ * @param mixed $user

+ *

+ * @return mixed

+ */

+ protected function authenticated(Request $request, $user)

+ {

+ return redirect()->intended($this->redirectPath());

+ }

/**

* Validate the user login request.

- * @param \Illuminate\Http\Request $request

- * @return void

+ * @param \Illuminate\Http\Request $request

* @throws \Illuminate\Validation\ValidationException

+ *

+ * @return void

protected function validateLogin(Request $request)

{

@@ -167,4 +213,19 @@ class LoginController extends Controller

return redirect('/login');

}

+ /**

+ * Get the failed login response instance.

+ *

+ * @param \Illuminate\Http\Request $request

+ *

+ * @throws \Illuminate\Validation\ValidationException

+ *

+ * @return \Symfony\Component\HttpFoundation\Response

+ */

+ protected function sendFailedLoginResponse(Request $request)

+ {

+ throw ValidationException::withMessages([

+ $this->username() => [trans('auth.failed')],

+ ])->redirectTo('/login');

+ }

}