X-Git-Url: http://source.bookstackapp.com/bookstack/blobdiff_plain/e743cd3f606fb8a2e432813f7c84fed1093f68c4..refs/pull/2827/head:/app/Http/Controllers/Auth/LoginController.php diff --git a/app/Http/Controllers/Auth/LoginController.php b/app/Http/Controllers/Auth/LoginController.php index 8116288ad..174770bf9 100644 --- a/app/Http/Controllers/Auth/LoginController.php +++ b/app/Http/Controllers/Auth/LoginController.php @@ -2,12 +2,15 @@ namespace BookStack\Http\Controllers\Auth; +use Activity; +use BookStack\Auth\Access\LoginService; use BookStack\Auth\Access\SocialAuthService; use BookStack\Exceptions\LoginAttemptEmailNeededException; use BookStack\Exceptions\LoginAttemptException; use BookStack\Http\Controllers\Controller; use Illuminate\Foundation\Auth\AuthenticatesUsers; use Illuminate\Http\Request; +use Illuminate\Validation\ValidationException; class LoginController extends Controller { @@ -25,24 +28,28 @@ class LoginController extends Controller use AuthenticatesUsers; /** - * Redirection paths + * Redirection paths. */ protected $redirectTo = '/'; protected $redirectPath = '/'; protected $redirectAfterLogout = '/login'; protected $socialAuthService; + protected $loginService; /** * Create a new controller instance. */ - public function __construct(SocialAuthService $socialAuthService) + public function __construct(SocialAuthService $socialAuthService, LoginService $loginService) { - $this->middleware('guest', ['only' => ['getLogin', 'postLogin']]); + $this->middleware('guest', ['only' => ['getLogin', 'login']]); + $this->middleware('guard:standard,ldap', ['only' => ['login', 'logout']]); + $this->socialAuthService = $socialAuthService; + $this->loginService = $loginService; + $this->redirectPath = url('/'); $this->redirectAfterLogout = url('/https/source.bookstackapp.com/login'); - parent::__construct(); } public function username() @@ -68,28 +75,39 @@ class LoginController extends Controller if ($request->has('email')) { session()->flashInput([ - 'email' => $request->get('email'), - 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : '' + 'email' => $request->get('email'), + 'password' => (config('app.env') === 'demo') ? $request->get('password', '') : '', ]); } + // Store the previous location for redirect after login + $previous = url()->previous(''); + if ($previous && $previous !== url('/https/source.bookstackapp.com/login') && setting('app-public')) { + $isPreviousFromInstance = (strpos($previous, url('/')) === 0); + if ($isPreviousFromInstance) { + redirect()->setIntendedUrl($previous); + } + } + return view('auth.login', [ - 'socialDrivers' => $socialDrivers, - 'authMethod' => $authMethod, + 'socialDrivers' => $socialDrivers, + 'authMethod' => $authMethod, ]); } /** * Handle a login request to the application. * - * @param \Illuminate\Http\Request $request - * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse + * @param \Illuminate\Http\Request $request * * @throws \Illuminate\Validation\ValidationException + * + * @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response|\Illuminate\Http\JsonResponse */ public function login(Request $request) { $this->validateLogin($request); + $username = $request->get($this->username()); // If the class is using the ThrottlesLogins trait, we can automatically throttle // the login attempts for this application. We'll key this by the username and @@ -98,6 +116,8 @@ class LoginController extends Controller $this->hasTooManyLoginAttempts($request)) { $this->fireLockoutEvent($request); + Activity::logFailedLogin($username); + return $this->sendLockoutResponse($request); } @@ -106,6 +126,8 @@ class LoginController extends Controller return $this->sendLoginResponse($request); } } catch (LoginAttemptException $exception) { + Activity::logFailedLogin($username); + return $this->sendLoginAttemptExceptionResponse($exception, $request); } @@ -114,16 +136,45 @@ class LoginController extends Controller // user surpasses their maximum number of attempts they will get locked out. $this->incrementLoginAttempts($request); + Activity::logFailedLogin($username); + return $this->sendFailedLoginResponse($request); } /** - * Validate the user login request. + * Attempt to log the user into the application. * * @param \Illuminate\Http\Request $request - * @return void + * @return bool + */ + protected function attemptLogin(Request $request) + { + return $this->loginService->attempt( + $this->credentials($request), auth()->getDefaultDriver(), $request->filled('remember') + ); + } + + /** + * The user has been authenticated. + * + * @param \Illuminate\Http\Request $request + * @param mixed $user + * + * @return mixed + */ + protected function authenticated(Request $request, $user) + { + return redirect()->intended($this->redirectPath()); + } + + /** + * Validate the user login request. + * + * @param \Illuminate\Http\Request $request * * @throws \Illuminate\Validation\ValidationException + * + * @return void */ protected function validateLogin(Request $request) { @@ -160,13 +211,18 @@ class LoginController extends Controller } /** - * Log the user out of the application. + * Get the failed login response instance. + * + * @param \Illuminate\Http\Request $request + * + * @throws \Illuminate\Validation\ValidationException + * + * @return \Symfony\Component\HttpFoundation\Response */ - public function logout(Request $request) + protected function sendFailedLoginResponse(Request $request) { - $this->guard()->logout(); - $request->session()->invalidate(); - - return $this->loggedOut($request) ?: redirect('/'); + throw ValidationException::withMessages([ + $this->username() => [trans('auth.failed')], + ])->redirectTo('/login'); } }