Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
L
laravel-adminpanel
Project
Project
Details
Activity
Releases
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Administrator
laravel-adminpanel
Commits
f62d3906
Commit
f62d3906
authored
Dec 01, 2017
by
Vipul Basapati
Browse files
Options
Browse Files
Download
Plain Diff
Merge branch 'master' of
https://github.com/viralsolani/laravel-adminpanel
parents
faa59fc4
c39ce680
Changes
18
Hide whitespace changes
Inline
Side-by-side
Showing
18 changed files
with
668 additions
and
634 deletions
+668
-634
APIController.php
app/Http/Controllers/Api/V1/APIController.php
+80
-34
AuthController.php
app/Http/Controllers/Api/V1/AuthController.php
+29
-208
ForgotPasswordController.php
app/Http/Controllers/Api/V1/ForgotPasswordController.php
+55
-0
RegisterController.php
app/Http/Controllers/Api/V1/RegisterController.php
+63
-0
UsersController.php
app/Http/Controllers/Api/V1/UsersController.php
+70
-0
Kernel.php
app/Http/Kernel.php
+4
-3
UserResource.php
app/Http/Resources/UserResource.php
+25
-0
User.php
app/Models/Access/User/User.php
+22
-1
BaseRepository.php
app/Repositories/BaseRepository.php
+22
-0
UserRepository.php
app/Repositories/Frontend/Access/User/UserRepository.php
+18
-1
composer.lock
composer.lock
+85
-73
api.php
config/api.php
+10
-212
api_validation.php
config/api_validation.php
+0
-49
auth.php
config/auth.php
+1
-1
jwt.php
config/jwt.php
+137
-43
api.php
resources/lang/en/api.php
+30
-0
footer.blade.php
resources/views/backend/includes/footer.blade.php
+1
-1
api.php
routes/api.php
+16
-8
No files found.
app/Http/Controllers/Api/V1/APIController.php
View file @
f62d3906
...
...
@@ -33,7 +33,7 @@ class APIController extends Controller
*
* @param [type] $statusCode [description]
*
* @return
mix
* @return
statuscode
*/
public
function
setStatusCode
(
$statusCode
)
{
...
...
@@ -42,37 +42,13 @@ class APIController extends Controller
return
$this
;
}
/**
* responsd not found.
*
* @param string $message
*
* @return mix
*/
public
function
respondNotFound
(
$message
=
'Not Found'
)
{
return
$this
->
setStatusCode
(
IlluminateResponse
::
HTTP_NOT_FOUND
)
->
respondWithError
(
$message
);
}
/**
* Respond with error.
*
* @param string $message
*
* @return mix
*/
public
function
respondInternalError
(
$message
=
'Internal Error'
)
{
return
$this
->
setStatusCode
(
'500'
)
->
respondWithError
(
$message
);
}
/**
* Respond.
*
* @param array $data
* @param array $headers
*
* @return
mix
* @return
\Illuminate\Http\JsonResponse
*/
public
function
respond
(
$data
,
$headers
=
[])
{
...
...
@@ -85,7 +61,7 @@ class APIController extends Controller
* @param Paginator $items
* @param array $data
*
* @return
mix
* @return
\Illuminate\Http\JsonResponse
*/
public
function
respondWithPagination
(
$items
,
$data
)
{
...
...
@@ -101,12 +77,38 @@ class APIController extends Controller
return
$this
->
respond
(
$data
);
}
/**
* Respond Created.
*
* @param string $message
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
respondCreated
(
$data
)
{
return
$this
->
setStatusCode
(
201
)
->
respond
([
'data'
=>
$data
,
]);
}
/**
* Respond Created with data.
*
* @param string $message
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
respondCreatedWithData
(
$data
)
{
return
$this
->
setStatusCode
(
201
)
->
respond
(
$data
);
}
/**
* respond with error.
*
* @param $message
*
* @return
mix
* @return
\Illuminate\Http\JsonResponse
*/
public
function
respondWithError
(
$message
)
{
...
...
@@ -119,17 +121,61 @@ class APIController extends Controller
}
/**
*
Respond Create
d.
*
responsd not foun
d.
*
* @param string $message
*
* @return
mix
* @return
\Illuminate\Http\JsonResponse
*/
public
function
respond
Created
(
$message
)
public
function
respond
NotFound
(
$message
=
'Not Found'
)
{
return
$this
->
setStatusCode
(
201
)
->
respond
([
'message'
=>
$message
,
]);
return
$this
->
setStatusCode
(
IlluminateResponse
::
HTTP_NOT_FOUND
)
->
respondWithError
(
$message
);
}
/**
* Respond with error.
*
* @param string $message
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
respondInternalError
(
$message
=
'Internal Error'
)
{
return
$this
->
setStatusCode
(
500
)
->
respondWithError
(
$message
);
}
/**
* Respond with unauthorized.
*
* @param string $message
*
* @return \Illuminate\Http\JsonResponse
*/
protected
function
respondUnauthorized
(
$message
=
'Unauthorized'
)
{
return
$this
->
setStatusCode
(
401
)
->
respondWithError
(
$message
);
}
/**
* Respond with forbidden.
*
* @param string $message
*
* @return \Illuminate\Http\JsonResponse
*/
protected
function
respondForbidden
(
$message
=
'Forbidden'
)
{
return
$this
->
setStatusCode
(
403
)
->
respondWithError
(
$message
);
}
/**
* Respond with no content.
*
* @return \Illuminate\Http\JsonResponse
*/
protected
function
respondWithNoContent
()
{
return
$this
->
setStatusCode
(
204
)
->
respond
(
null
);
}
/**
...
...
app/Http/Controllers/Api/V1/AuthController.php
View file @
f62d3906
...
...
@@ -2,77 +2,52 @@
namespace
App\Http\Controllers\Api\V1
;
use
App\Models\Access\User\User
;
use
App\Notifications\Activated
;
use
App\Notifications\Activation
;
use
App\Notifications\PasswordReset
;
use
App\Notifications\PasswordResetted
;
use
Illuminate\Http\Request
;
use
JWTAuth
;
use
Tymon\JWTAuth\Exceptions\JWTException
;
use
Validator
;
/**
* AuthController.
*/
class
AuthController
extends
APIController
{
/**
*
Authenticate User
.
*
Log the user in
.
*
* @param Request $request
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
authenticate
(
Request
$request
)
public
function
login
(
Request
$request
)
{
$credentials
=
$request
->
only
(
'email'
,
'password'
);
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'email'
=>
'required|email'
,
'password'
=>
'required|min:4'
,
]);
if
(
$validation
->
fails
())
{
return
$this
->
throwValidation
(
$validation
->
messages
()
->
first
());
}
$credentials
=
$request
->
only
([
'email'
,
'password'
]);
try
{
if
(
!
$token
=
JWTAuth
::
attempt
(
$credentials
))
{
return
$this
->
throwValidation
(
'Invalid Credentials! Please try again.'
);
return
$this
->
throwValidation
(
trans
(
'api.messages.login.failed'
)
);
}
}
catch
(
JWTException
$e
)
{
return
$this
->
respondInternalError
(
'This is something wrong. Please try again!'
);
}
$user
=
User
::
whereEmail
(
request
(
'email'
))
->
first
();
if
(
$user
->
status
!=
1
)
{
return
$this
->
throwValidation
(
'Your account hasn\'t been activated. Please check your email & activate account.'
);
return
$this
->
respondInternalError
(
$e
->
getMessage
());
}
return
$this
->
respond
([
'message'
=>
'You are successfully logged in!'
,
'message'
=>
trans
(
'api.messages.login.success'
)
,
'token'
=>
$token
,
]);
}
/**
*
Check if user is authenticated or not
.
*
Log the user out (Invalidate the token)
.
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
check
()
{
try
{
JWTAuth
::
parseToken
()
->
authenticate
();
}
catch
(
JWTException
$e
)
{
return
$this
->
respond
([
'authenticated'
=>
false
,
]);
}
return
$this
->
respond
([
'authenticated'
=>
true
,
]);
}
/**
* Log Out.
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
logout
()
{
try
{
...
...
@@ -82,190 +57,36 @@ class AuthController extends APIController
JWTAuth
::
invalidate
(
$token
);
}
}
catch
(
JWTException
$e
)
{
return
$this
->
respondInternalError
(
'This is something wrong. Please try again!'
);
return
$this
->
respondInternalError
(
$e
->
getMessage
()
);
}
return
$this
->
respond
([
'message'
=>
'You are successfully logged out!'
,
]);
}
/**
* Register User.
*
* @param Request $request
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
register
(
Request
$request
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'first_name'
=>
'required'
,
'last_name'
=>
'required'
,
'email'
=>
'required|email|unique:users'
,
'password'
=>
'required|min:6'
,
'password_confirmation'
=>
'required|same:password'
,
]);
if
(
$validation
->
fails
())
{
return
$this
->
throwValidation
(
$validation
->
messages
()
->
first
());
}
$user
=
User
::
create
([
'first_name'
=>
request
(
'first_name'
),
'last_name'
=>
request
(
'last_name'
),
'email'
=>
request
(
'email'
),
'status'
=>
'0'
,
'password'
=>
bcrypt
(
request
(
'password'
)),
'country_id'
=>
1
,
'state_id'
=>
1
,
'city_id'
=>
1
,
'zip_code'
=>
1
,
'ssn'
=>
123456789
,
'created_by'
=>
1
,
]);
$user
->
confirmation_code
=
generateUuid
();
$user
->
save
();
$user
->
notify
(
new
Activation
(
$user
));
return
$this
->
respondCreated
([
'You have registered successfully. Please check your email for activation!'
,
'message'
=>
trans
(
'api.messages.logout.success'
),
]);
}
/**
* Activate User.
*
* @param $activation_token [description]
* Refresh a token.
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
activate
(
$activation_token
)
public
function
refresh
(
)
{
$
user
=
User
::
whereConfirmationCode
(
$activation_token
)
->
first
();
$
token
=
JWTAuth
::
getToken
();
if
(
!
$
user
)
{
return
$this
->
throwValidation
(
'Invalid activation token!'
);
if
(
!
$
token
)
{
$this
->
respondUnauthorized
(
trans
(
'api.messages.refresh.token.not_provided'
)
);
}
if
(
$user
->
status
==
1
)
{
return
$this
->
throwValidation
(
'Your account has already been activated!'
);
try
{
$refreshedToken
=
JWTAuth
::
refresh
(
$token
);
}
catch
(
JWTException
$e
)
{
return
$this
->
respondInternalError
(
$e
->
getMessage
());
}
$user
->
confirmed
=
1
;
$user
->
status
=
1
;
$user
->
save
();
$user
->
notify
(
new
Activated
(
$user
));
return
$this
->
respond
([
'message'
=>
'Your account has been activated!'
,
]);
}
public
function
password
(
Request
$request
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'email'
=>
'required|email'
,
'status'
=>
trans
(
'api.messages.refresh.status'
),
'token'
=>
$refreshedToken
,
]);
if
(
$validation
->
fails
())
{
return
response
()
->
json
([
'message'
=>
$validation
->
messages
()
->
first
()],
422
);
}
$user
=
User
::
whereEmail
(
request
(
'email'
))
->
first
();
if
(
!
$user
)
{
return
response
()
->
json
([
'message'
=>
'We couldn\'t found any user with this email. Please try again!'
],
422
);
}
$token
=
generateUuid
();
\DB
::
table
(
'password_resets'
)
->
insert
([
'email'
=>
request
(
'email'
),
'token'
=>
$token
,
]);
$user
->
notify
(
new
PasswordReset
(
$user
,
$token
));
return
response
()
->
json
([
'message'
=>
'We have sent reminder email. Please check your inbox!'
]);
}
public
function
validatePasswordReset
(
Request
$request
)
{
$validate_password_request
=
\DB
::
table
(
'password_resets'
)
->
where
(
'token'
,
'='
,
request
(
'token'
))
->
first
();
if
(
!
$validate_password_request
)
{
return
response
()
->
json
([
'message'
=>
'Invalid password reset token!'
],
422
);
}
if
(
date
(
'Y-m-d H:i:s'
,
strtotime
(
$validate_password_request
->
created_at
.
'+30 minutes'
))
<
date
(
'Y-m-d H:i:s'
))
{
return
response
()
->
json
([
'message'
=>
'Password reset token is expired. Please request reset password again!'
],
422
);
}
return
response
()
->
json
([
'message'
=>
''
]);
}
public
function
reset
(
Request
$request
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'email'
=>
'required|email'
,
'password'
=>
'required|min:6'
,
'password_confirmation'
=>
'required|same:password'
,
]);
if
(
$validation
->
fails
())
{
return
response
()
->
json
([
'message'
=>
$validation
->
messages
()
->
first
()],
422
);
}
$user
=
User
::
whereEmail
(
request
(
'email'
))
->
first
();
if
(
!
$user
)
{
return
response
()
->
json
([
'message'
=>
'We couldn\'t found any user with this email. Please try again!'
],
422
);
}
$validate_password_request
=
\DB
::
table
(
'password_resets'
)
->
where
(
'email'
,
'='
,
request
(
'email'
))
->
where
(
'token'
,
'='
,
request
(
'token'
))
->
first
();
if
(
!
$validate_password_request
)
{
return
response
()
->
json
([
'message'
=>
'Invalid password reset token!'
],
422
);
}
if
(
date
(
'Y-m-d H:i:s'
,
strtotime
(
$validate_password_request
->
created_at
.
'+30 minutes'
))
<
date
(
'Y-m-d H:i:s'
))
{
return
response
()
->
json
([
'message'
=>
'Password reset token is expired. Please request reset password again!'
],
422
);
}
$user
->
password
=
bcrypt
(
request
(
'password'
));
$user
->
save
();
$user
->
notify
(
new
PasswordResetted
(
$user
));
return
response
()
->
json
([
'message'
=>
'Your password has been reset. Please login again!'
]);
}
public
function
changePassword
(
Request
$request
)
{
if
(
env
(
'IS_DEMO'
))
{
return
response
()
->
json
([
'message'
=>
'You are not allowed to perform this action in this mode.'
],
422
);
}
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'current_password'
=>
'required'
,
'new_password'
=>
'required|confirmed|different:current_password|min:6'
,
'new_password_confirmation'
=>
'required|same:new_password'
,
]);
if
(
$validation
->
fails
())
{
return
response
()
->
json
([
'message'
=>
$validation
->
messages
()
->
first
()],
422
);
}
$user
=
JWTAuth
::
parseToken
()
->
authenticate
();
if
(
!
\Hash
::
check
(
request
(
'current_password'
),
$user
->
password
))
{
return
response
()
->
json
([
'message'
=>
'Old password does not match! Please try again!'
],
422
);
}
$user
->
password
=
bcrypt
(
request
(
'new_password'
));
$user
->
save
();
return
response
()
->
json
([
'message'
=>
'Your password has been changed successfully!'
]);
}
}
app/Http/Controllers/Api/V1/ForgotPasswordController.php
0 → 100644
View file @
f62d3906
<?php
namespace
App\Http\Controllers\Api\V1
;
use
App\Models\User\User
;
use
App\Notifications\Frontend\Auth\UserNeedsPasswordReset
;
use
App\Repositories\Frontend\Access\User\UserRepository
;
use
Illuminate\Http\Request
;
use
Validator
;
class
ForgotPasswordController
extends
APIController
{
/**
* __construct.
*
* @param $repository
*/
public
function
__construct
(
UserRepository
$repository
)
{
$this
->
repository
=
$repository
;
}
/**
* Send a reset link to the given user.
*
* @param \Illuminate\Http\Request $request
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
sendResetLinkEmail
(
Request
$request
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'email'
=>
'required|email'
,
]);
if
(
$validation
->
fails
())
{
return
$this
->
throwValidation
(
$validation
->
messages
()
->
first
());
}
$user
=
$this
->
repository
->
findByEmail
(
$request
->
get
(
'email'
));
if
(
!
$user
)
{
return
$this
->
respondNotFound
(
trans
(
'api.messages.forgot_password.validation.email_not_found'
));
}
$token
=
$this
->
repository
->
createNewToken
();
$user
->
notify
(
new
UserNeedsPasswordReset
(
$token
));
return
$this
->
respond
([
'status'
=>
'ok'
,
'message'
=>
trans
(
'api.messages.forgot_password.success'
),
]);
}
}
app/Http/Controllers/Api/V1/RegisterController.php
0 → 100644
View file @
f62d3906
<?php
namespace
App\Http\Controllers\Api\V1
;
use
App\Models\User\User
;
use
App\Repositories\Frontend\Access\User\UserRepository
;
use
Config
;
use
Illuminate\Http\Request
;
use
JWTAuth
;
use
Validator
;
class
RegisterController
extends
APIController
{
protected
$repository
;
/**
* __construct.
*
* @param $repository
*/
public
function
__construct
(
UserRepository
$repository
)
{
$this
->
repository
=
$repository
;
}
/**
* Register User.
*
* @param Request $request
*
* @return \Illuminate\Http\JsonResponse
*/
public
function
register
(
Request
$request
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'first_name'
=>
'required'
,
'last_name'
=>
'required'
,
'email'
=>
'required|email|unique:users'
,
'password'
=>
'required|min:4'
,
'password_confirmation'
=>
'required|same:password'
,
'is_term_accept'
=>
'required'
,
]);
if
(
$validation
->
fails
())
{
return
$this
->
throwValidation
(
$validation
->
messages
()
->
first
());
}
$user
=
$this
->
repository
->
create
(
$request
->
all
());
if
(
!
Config
::
get
(
'api.register.release_token'
))
{
return
$this
->
respondCreated
([
'message'
=>
trans
(
'api.messages.registeration.success'
),
]);
}
$token
=
JWTAuth
::
fromUser
(
$user
);
return
$this
->
respondCreated
([
'message'
=>
trans
(
'api.messages.registeration.success'
),
'token'
=>
$token
,
]);
}
}
app/Http/Controllers/Api/V1/UsersController.php
0 → 100644
View file @
f62d3906
<?php
namespace
App\Http\Controllers\Api\V1
;
use
App\Http\Resources\UserResource
;
use
App\Models\User\User
;
use
App\Repositories\Backend\Access\User\UserRepository
;
use
Illuminate\Http\Request
;
use
Validator
;
class
UsersController
extends
APIController
{
protected
$repository
;
/**
* __construct.
*
* @param $repository
*/
public
function
__construct
(
UserRepository
$repository
)
{
$this
->
repository
=
$repository
;
}
/**
* Return the users.
*
* @return \Illuminate\Http\Response
*/
public
function
index
(
Request
$request
)
{
$limit
=
$request
->
get
(
'paginate'
)
?
$request
->
get
(
'paginate'
)
:
25
;
return
UserResource
::
collection
(
$this
->
repository
->
getPaginated
(
$limit
)
);
}
/**
* Return the specified resource.
*
* @param User $user
*
* @return \Illuminate\Http\Response
*/
public
function
show
(
User
$user
)
{
return
new
UserResource
(
$user
);
}
/**
* Update the specified resource in storage.
*/
public
function
update
(
Request
$request
,
User
$user
)
{
$validation
=
Validator
::
make
(
$request
->
all
(),
[
'name'
=>
'required'
,
'email'
=>
'email|unique:users,email,'
.
$user
->
id
,
'password'
=>
'nullable|confirmed'
,
]);
if
(
$validation
->
fails
())
{
return
$this
->
throwValidation
(
$validation
->
messages
()
->
first
());
}
$user
=
$this
->
repository
->
update
(
$user
->
id
,
$request
->
all
());
return
new
UserResource
(
$user
);
}
}
app/Http/Kernel.php
View file @
f62d3906
...
...
@@ -3,6 +3,8 @@
namespace
App\Http
;
use
Illuminate\Foundation\Http\Kernel
as
HttpKernel
;
use
Tymon\JWTAuth\Middleware\GetUserFromToken
;
use
Tymon\JWTAuth\Middleware\RefreshToken
;
/**
* Class Kernel.
...
...
@@ -73,8 +75,7 @@ class Kernel extends HttpKernel
*/
'access.routeNeedsRole'
=>
\App\Http\Middleware\RouteNeedsRole
::
class
,
'access.routeNeedsPermission'
=>
\App\Http\Middleware\RouteNeedsPermission
::
class
,
//'jwt.auth' => \App\Http\Middleware\VerifyJWTToken::class,
'jwt.auth'
=>
\Tymon\JWTAuth\Middleware\GetUserFromToken
::
class
,
'jwt.refresh'
=>
\Tymon\JWTAuth\Middleware\RefreshToken
::
class
,
'jwt.auth'
=>
GetUserFromToken
::
class
,
'jwt.refresh'
=>
RefreshToken
::
class
,
];
}
app/Http/Resources/UserResource.php
0 → 100644
View file @
f62d3906
<?php
namespace
App\Http\Resources
;
use
Illuminate\Http\Resources\Json\Resource
;
class
UserResource
extends
Resource
{
/**
* Transform the resource into an array.
*
* @param \Illuminate\Http\Request
*
* @return array
*/
public
function
toArray
(
$request
)
{
return
[
'id'
=>
$this
->
id
,
'name'
=>
$this
->
name
,
'email'
=>
$this
->
email
,
'registered_at'
=>
$this
->
created_at
->
toIso8601String
(),
];
}
}
app/Models/Access/User/User.php
View file @
f62d3906
...
...
@@ -10,11 +10,12 @@ use App\Models\Access\User\Traits\UserSendPasswordReset;
use
Illuminate\Database\Eloquent\SoftDeletes
;
use
Illuminate\Foundation\Auth\User
as
Authenticatable
;
use
Illuminate\Notifications\Notifiable
;
use
Tymon\JWTAuth\Contracts\JWTSubject
;
/**
* Class User.
*/
class
User
extends
Authenticatable
class
User
extends
Authenticatable
implements
JWTSubject
{
use
UserScope
,
UserAccess
,
...
...
@@ -67,4 +68,24 @@ class User extends Authenticatable
parent
::
__construct
(
$attributes
);
$this
->
table
=
config
(
'access.users_table'
);
}
/**
* Get the identifier that will be stored in the subject claim of the JWT.
*
* @return mixed
*/
public
function
getJWTIdentifier
()
{
return
$this
->
getKey
();
}
/**
* Return a key value array, containing any custom claims to be added to the JWT.
*
* @return array
*/
public
function
getJWTCustomClaims
()
{
return
[];
}
}
app/Repositories/BaseRepository.php
View file @
f62d3906
...
...
@@ -15,6 +15,28 @@ class BaseRepository
return
$this
->
query
()
->
get
();
}
/**
* Get Paginated.
*
* @param $per_page
* @param string $active
* @param string $order_by
* @param string $sort
*
* @return mixed
*/
public
function
getPaginated
(
$per_page
,
$active
=
''
,
$order_by
=
'id'
,
$sort
=
'asc'
)
{
if
(
$active
)
{
return
$this
->
query
()
->
where
(
'status'
,
$active
)
->
orderBy
(
$order_by
,
$sort
)
->
paginate
(
$per_page
);
}
else
{
return
$this
->
query
()
->
orderBy
(
$order_by
,
$sort
)
->
paginate
(
$per_page
);
}
}
/**
* @return mixed
*/
...
...
app/Repositories/Frontend/Access/User/UserRepository.php
View file @
f62d3906
...
...
@@ -11,6 +11,7 @@ use App\Repositories\Backend\Access\Role\RoleRepository;
use
App\Repositories\BaseRepository
;
use
Illuminate\Support\Facades\DB
;
use
Illuminate\Support\Facades\Hash
;
use
Illuminate\Support\Str
;
/**
* Class UserRepository.
...
...
@@ -95,7 +96,6 @@ class UserRepository extends BaseRepository
$user
->
password
=
$provider
?
null
:
bcrypt
(
$data
[
'password'
]);
$user
->
confirmed
=
$provider
?
1
:
(
config
(
'access.users.confirm_email'
)
?
0
:
1
);
$user
->
is_term_accept
=
$data
[
'is_term_accept'
];
$user
->
created_by
=
1
;
DB
::
transaction
(
function
()
use
(
$user
)
{
if
(
$user
->
save
())
{
...
...
@@ -287,4 +287,21 @@ class UserRepository extends BaseRepository
throw
new
GeneralException
(
trans
(
'exceptions.frontend.auth.password.change_mismatch'
));
}
/**
* Create a new token for the user.
*
* @return string
*/
public
function
createNewToken
()
{
$token
=
hash_hmac
(
'sha256'
,
Str
::
random
(
40
),
'hashKey'
);
\DB
::
table
(
'password_resets'
)
->
insert
([
'email'
=>
request
(
'email'
),
'token'
=>
$token
,
]);
return
$token
;
}
}
composer.lock
View file @
f62d3906
...
...
@@ -331,21 +331,21 @@
},
{
"name": "doctrine/annotations",
"version": "v1.
4
.0",
"version": "v1.
5
.0",
"source": {
"type": "git",
"url": "https://github.com/doctrine/annotations.git",
"reference": "5
4cacc9b81758b14e3ce750f205a393d52339e97
"
"reference": "5
beebb01b025c94e93686b7a0ed3edae81fe3e7f
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/annotations/zipball/5
4cacc9b81758b14e3ce750f205a393d52339e97
",
"reference": "5
4cacc9b81758b14e3ce750f205a393d52339e97
",
"url": "https://api.github.com/repos/doctrine/annotations/zipball/5
beebb01b025c94e93686b7a0ed3edae81fe3e7f
",
"reference": "5
beebb01b025c94e93686b7a0ed3edae81fe3e7f
",
"shasum": ""
},
"require": {
"doctrine/lexer": "1.*",
"php": "^
5.6 || ^7.0
"
"php": "^
7.1
"
},
"require-dev": {
"doctrine/cache": "1.*",
...
...
@@ -354,7 +354,7 @@
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "1.
4
.x-dev"
"dev-master": "1.
5
.x-dev"
}
},
"autoload": {
...
...
@@ -395,37 +395,41 @@
"docblock",
"parser"
],
"time": "2017-0
2-24T16:22:25
+00:00"
"time": "2017-0
7-22T10:58:02
+00:00"
},
{
"name": "doctrine/cache",
"version": "v1.
6.2
",
"version": "v1.
7.1
",
"source": {
"type": "git",
"url": "https://github.com/doctrine/cache.git",
"reference": "
eb152c5100571c7a45470ff2a35095ab3f3b900b
"
"reference": "
b3217d58609e9c8e661cd41357a54d926c4a2a1a
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/cache/zipball/
eb152c5100571c7a45470ff2a35095ab3f3b900b
",
"reference": "
eb152c5100571c7a45470ff2a35095ab3f3b900b
",
"url": "https://api.github.com/repos/doctrine/cache/zipball/
b3217d58609e9c8e661cd41357a54d926c4a2a1a
",
"reference": "
b3217d58609e9c8e661cd41357a54d926c4a2a1a
",
"shasum": ""
},
"require": {
"php": "~
5.5|~7.0
"
"php": "~
7.1
"
},
"conflict": {
"doctrine/common": ">2.2,<2.4"
},
"require-dev": {
"phpunit/phpunit": "~4.8|~5.0",
"predis/predis": "~1.0",
"satooshi/php-coveralls": "~0.6"
"alcaeus/mongo-php-adapter": "^1.1",
"mongodb/mongodb": "^1.1",
"phpunit/phpunit": "^5.7",
"predis/predis": "~1.0"
},
"suggest": {
"alcaeus/mongo-php-adapter": "Required to use legacy MongoDB driver"
},
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "1.
6
.x-dev"
"dev-master": "1.
7
.x-dev"
}
},
"autoload": {
...
...
@@ -465,24 +469,24 @@
"cache",
"caching"
],
"time": "2017-0
7-22T12:49:21
+00:00"
"time": "2017-0
8-25T07:02:50
+00:00"
},
{
"name": "doctrine/collections",
"version": "v1.
4
.0",
"version": "v1.
5
.0",
"source": {
"type": "git",
"url": "https://github.com/doctrine/collections.git",
"reference": "
1a4fb7e902202c33cce8c55989b945612943c2ba
"
"reference": "
a01ee38fcd999f34d9bfbcee59dbda5105449cbf
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/collections/zipball/
1a4fb7e902202c33cce8c55989b945612943c2ba
",
"reference": "
1a4fb7e902202c33cce8c55989b945612943c2ba
",
"url": "https://api.github.com/repos/doctrine/collections/zipball/
a01ee38fcd999f34d9bfbcee59dbda5105449cbf
",
"reference": "
a01ee38fcd999f34d9bfbcee59dbda5105449cbf
",
"shasum": ""
},
"require": {
"php": "^
5.6 || ^7.0
"
"php": "^
7.1
"
},
"require-dev": {
"doctrine/coding-standard": "~0.1@dev",
...
...
@@ -532,20 +536,20 @@
"collections",
"iterator"
],
"time": "2017-0
1-03T10:49:41
+00:00"
"time": "2017-0
7-22T10:37:32
+00:00"
},
{
"name": "doctrine/common",
"version": "v2.
7.3
",
"version": "v2.
8.1
",
"source": {
"type": "git",
"url": "https://github.com/doctrine/common.git",
"reference": "
4acb8f89626baafede6ee5475bc5844096eba8a9
"
"reference": "
f68c297ce6455e8fd794aa8ffaf9fa458f6ade66
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/common/zipball/
4acb8f89626baafede6ee5475bc5844096eba8a9
",
"reference": "
4acb8f89626baafede6ee5475bc5844096eba8a9
",
"url": "https://api.github.com/repos/doctrine/common/zipball/
f68c297ce6455e8fd794aa8ffaf9fa458f6ade66
",
"reference": "
f68c297ce6455e8fd794aa8ffaf9fa458f6ade66
",
"shasum": ""
},
"require": {
...
...
@@ -554,15 +558,15 @@
"doctrine/collections": "1.*",
"doctrine/inflector": "1.*",
"doctrine/lexer": "1.*",
"php": "~
5.6|~7.0
"
"php": "~
7.1
"
},
"require-dev": {
"phpunit/phpunit": "^5.
4.6
"
"phpunit/phpunit": "^5.
7
"
},
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "2.
7
.x-dev"
"dev-master": "2.
8
.x-dev"
}
},
"autoload": {
...
...
@@ -605,28 +609,30 @@
"persistence",
"spl"
],
"time": "2017-0
7-22T08:35:12
+00:00"
"time": "2017-0
8-31T08:43:38
+00:00"
},
{
"name": "doctrine/dbal",
"version": "v2.
5.1
3",
"version": "v2.
6.
3",
"source": {
"type": "git",
"url": "https://github.com/doctrine/dbal.git",
"reference": "
729340d8d1eec8f01bff708e12e449a3415af87
3"
"reference": "
e3eed9b1facbb0ced3a0995244843a189e7d1b1
3"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/dbal/zipball/
729340d8d1eec8f01bff708e12e449a3415af87
3",
"reference": "
729340d8d1eec8f01bff708e12e449a3415af87
3",
"url": "https://api.github.com/repos/doctrine/dbal/zipball/
e3eed9b1facbb0ced3a0995244843a189e7d1b1
3",
"reference": "
e3eed9b1facbb0ced3a0995244843a189e7d1b1
3",
"shasum": ""
},
"require": {
"doctrine/common": ">=2.4,<2.8-dev",
"php": ">=5.3.2"
"doctrine/common": "^2.7.1",
"ext-pdo": "*",
"php": "^7.1"
},
"require-dev": {
"phpunit/phpunit": "4.*",
"phpunit/phpunit": "^5.4.6",
"phpunit/phpunit-mock-objects": "!=3.2.4,!=3.2.5",
"symfony/console": "2.*||^3.0"
},
"suggest": {
...
...
@@ -638,7 +644,7 @@
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "2.
5
.x-dev"
"dev-master": "2.
6
.x-dev"
}
},
"autoload": {
...
...
@@ -676,7 +682,7 @@
"persistence",
"queryobject"
],
"time": "2017-
07-22T20:44:48
+00:00"
"time": "2017-
11-19T13:38:54
+00:00"
},
{
"name": "doctrine/inflector",
...
...
@@ -1361,16 +1367,16 @@
},
{
"name": "laravel/framework",
"version": "v5.5.2
1
",
"version": "v5.5.2
2
",
"source": {
"type": "git",
"url": "https://github.com/laravel/framework.git",
"reference": "
6321069a75723d88103526903d3192f0b231544a
"
"reference": "
2404af887ca8272d721628a99bbc721ac3b692e7
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/laravel/framework/zipball/
6321069a75723d88103526903d3192f0b231544a
",
"reference": "
6321069a75723d88103526903d3192f0b231544a
",
"url": "https://api.github.com/repos/laravel/framework/zipball/
2404af887ca8272d721628a99bbc721ac3b692e7
",
"reference": "
2404af887ca8272d721628a99bbc721ac3b692e7
",
"shasum": ""
},
"require": {
...
...
@@ -1490,7 +1496,7 @@
"framework",
"laravel"
],
"time": "2017-11-
14T15:08:13
+00:00"
"time": "2017-11-
27T15:29:55
+00:00"
},
{
"name": "laravel/socialite",
...
...
@@ -3847,32 +3853,32 @@
},
{
"name": "doctrine/instantiator",
"version": "1.
0.5
",
"version": "1.
1.0
",
"source": {
"type": "git",
"url": "https://github.com/doctrine/instantiator.git",
"reference": "
8e884e78f9f0eb1329e445619e04456e64d8051d
"
"reference": "
185b8868aa9bf7159f5f953ed5afb2d7fcdc3bda
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/doctrine/instantiator/zipball/
8e884e78f9f0eb1329e445619e04456e64d8051d
",
"reference": "
8e884e78f9f0eb1329e445619e04456e64d8051d
",
"url": "https://api.github.com/repos/doctrine/instantiator/zipball/
185b8868aa9bf7159f5f953ed5afb2d7fcdc3bda
",
"reference": "
185b8868aa9bf7159f5f953ed5afb2d7fcdc3bda
",
"shasum": ""
},
"require": {
"php": "
>=5.3,<8.0-DEV
"
"php": "
^7.1
"
},
"require-dev": {
"athletic/athletic": "~0.1.8",
"ext-pdo": "*",
"ext-phar": "*",
"phpunit/phpunit": "
~4.0
",
"squizlabs/php_codesniffer": "
~2.0
"
"phpunit/phpunit": "
^6.2.3
",
"squizlabs/php_codesniffer": "
^3.0.2
"
},
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "1.
0
.x-dev"
"dev-master": "1.
2
.x-dev"
}
},
"autoload": {
...
...
@@ -3897,7 +3903,7 @@
"constructor",
"instantiate"
],
"time": "201
5-06-14T21:17:01
+00:00"
"time": "201
7-07-22T11:58:36
+00:00"
},
{
"name": "filp/whoops",
...
...
@@ -4431,29 +4437,35 @@
},
{
"name": "phpdocumentor/reflection-docblock",
"version": "4.
1.1
",
"version": "4.
2.0
",
"source": {
"type": "git",
"url": "https://github.com/phpDocumentor/ReflectionDocBlock.git",
"reference": "
2d3d238c433cf69caeb4842e97a3223a116f94b2
"
"reference": "
66465776cfc249844bde6d117abff1d22e06c2da
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/phpDocumentor/ReflectionDocBlock/zipball/
2d3d238c433cf69caeb4842e97a3223a116f94b2
",
"reference": "
2d3d238c433cf69caeb4842e97a3223a116f94b2
",
"url": "https://api.github.com/repos/phpDocumentor/ReflectionDocBlock/zipball/
66465776cfc249844bde6d117abff1d22e06c2da
",
"reference": "
66465776cfc249844bde6d117abff1d22e06c2da
",
"shasum": ""
},
"require": {
"php": "^7.0",
"phpdocumentor/reflection-common": "^1.0
@dev
",
"phpdocumentor/reflection-common": "^1.0
.0
",
"phpdocumentor/type-resolver": "^0.4.0",
"webmozart/assert": "^1.0"
},
"require-dev": {
"mockery/mockery": "^0.9.4",
"phpunit/phpunit": "^4.4"
"doctrine/instantiator": "~1.0.5",
"mockery/mockery": "^1.0",
"phpunit/phpunit": "^6.4"
},
"type": "library",
"extra": {
"branch-alias": {
"dev-master": "4.x-dev"
}
},
"autoload": {
"psr-4": {
"phpDocumentor\\Reflection\\": [
...
...
@@ -4472,7 +4484,7 @@
}
],
"description": "With this component, a library can provide support for annotations via DocBlocks or otherwise retrieve information that is embedded in a DocBlock.",
"time": "2017-
08-30T18:51:59
+00:00"
"time": "2017-
11-27T17:38:31
+00:00"
},
{
"name": "phpdocumentor/type-resolver",
...
...
@@ -4586,16 +4598,16 @@
},
{
"name": "phpunit/php-code-coverage",
"version": "5.2.
3
",
"version": "5.2.
4
",
"source": {
"type": "git",
"url": "https://github.com/sebastianbergmann/php-code-coverage.git",
"reference": "
8e1d2397d8adf59a3f12b2878a3aaa66d1ab189d
"
"reference": "
033ec97498cf530cc1be4199264cad568b19be26
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/sebastianbergmann/php-code-coverage/zipball/
8e1d2397d8adf59a3f12b2878a3aaa66d1ab189d
",
"reference": "
8e1d2397d8adf59a3f12b2878a3aaa66d1ab189d
",
"url": "https://api.github.com/repos/sebastianbergmann/php-code-coverage/zipball/
033ec97498cf530cc1be4199264cad568b19be26
",
"reference": "
033ec97498cf530cc1be4199264cad568b19be26
",
"shasum": ""
},
"require": {
...
...
@@ -4604,7 +4616,7 @@
"php": "^7.0",
"phpunit/php-file-iterator": "^1.4.2",
"phpunit/php-text-template": "^1.2.1",
"phpunit/php-token-stream": "^2.0",
"phpunit/php-token-stream": "^2.0
.1
",
"sebastian/code-unit-reverse-lookup": "^1.0.1",
"sebastian/environment": "^3.0",
"sebastian/version": "^2.0.1",
...
...
@@ -4646,20 +4658,20 @@
"testing",
"xunit"
],
"time": "2017-11-
03T13:47:33
+00:00"
"time": "2017-11-
27T09:00:30
+00:00"
},
{
"name": "phpunit/php-file-iterator",
"version": "1.4.
3
",
"version": "1.4.
5
",
"source": {
"type": "git",
"url": "https://github.com/sebastianbergmann/php-file-iterator.git",
"reference": "
8ebba84e5bd74fc5fdeb916b38749016c7232f93
"
"reference": "
730b01bc3e867237eaac355e06a36b85dd93a8b4
"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/sebastianbergmann/php-file-iterator/zipball/
8ebba84e5bd74fc5fdeb916b38749016c7232f93
",
"reference": "
8ebba84e5bd74fc5fdeb916b38749016c7232f93
",
"url": "https://api.github.com/repos/sebastianbergmann/php-file-iterator/zipball/
730b01bc3e867237eaac355e06a36b85dd93a8b4
",
"reference": "
730b01bc3e867237eaac355e06a36b85dd93a8b4
",
"shasum": ""
},
"require": {
...
...
@@ -4693,7 +4705,7 @@
"filesystem",
"iterator"
],
"time": "2017-11-2
4T15:00:59
+00:00"
"time": "2017-11-2
7T13:52:08
+00:00"
},
{
"name": "phpunit/php-text-template",
...
...
config/api.php
View file @
f62d3906
<?php
return
[
/*
|--------------------------------------------------------------------------
| Standards Tree
|--------------------------------------------------------------------------
|
| Versioning an API with Dingo revolves around content negotiation and
| custom MIME types. A custom type will belong to one of three
| standards trees, the Vendor tree (vnd), the Personal tree
| (prs), and the Unregistered tree (x).
|
| By default the Unregistered tree (x) is used, however, should you wish
| to you can register your type with the IANA. For more details:
| https://tools.ietf.org/html/rfc6838
|
*/
'standardsTree'
=>
env
(
'API_STANDARDS_TREE'
,
'x'
),
/*
|--------------------------------------------------------------------------
| API Subtype
|--------------------------------------------------------------------------
|
| Your subtype will follow the standards tree you use when used in the
| "Accept" header to negotiate the content type and version.
|
| For example: Accept: application/x.SUBTYPE.v1+json
|
*/
'subtype'
=>
env
(
'API_SUBTYPE'
,
''
),
/*
|--------------------------------------------------------------------------
| Default API Version
|--------------------------------------------------------------------------
|
| This is the default version when strict mode is disabled and your API
| is accessed via a web browser. It's also used as the default version
| when generating your APIs documentation.
|
*/
'version'
=>
env
(
'API_VERSION'
,
'v1'
),
/*
|--------------------------------------------------------------------------
| Default API Prefix
|--------------------------------------------------------------------------
|
| A default prefix to use for your API routes so you don't have to
| specify it for each group.
|
*/
'prefix'
=>
env
(
'API_PREFIX'
,
null
),
/*
|--------------------------------------------------------------------------
| Default API Domain
|--------------------------------------------------------------------------
|
| A default domain to use for your API routes so you don't have to
| specify it for each group.
|
*/
'domain'
=>
env
(
'API_DOMAIN'
,
null
),
/*
|--------------------------------------------------------------------------
| Name
|--------------------------------------------------------------------------
|
| When documenting your API using the API Blueprint syntax you can
| configure a default name to avoid having to manually specify
| one when using the command.
|
*/
'name'
=>
env
(
'API_NAME'
,
null
),
/*
|--------------------------------------------------------------------------
| Conditional Requests
|--------------------------------------------------------------------------
|
| Globally enable conditional requests so that an ETag header is added to
| any successful response. Subsequent requests will perform a check and
| will return a 304 Not Modified. This can also be enabled or disabled
| on certain groups or routes.
|
*/
'conditionalRequest'
=>
env
(
'API_CONDITIONAL_REQUEST'
,
true
),
/*
|--------------------------------------------------------------------------
| Strict Mode
|--------------------------------------------------------------------------
|
| Enabling strict mode will require clients to send a valid Accept header
| with every request. This also voids the default API version, meaning
| your API will not be browsable via a web browser.
|
*/
'strict'
=>
env
(
'API_STRICT'
,
false
),
/*
|--------------------------------------------------------------------------
| Debug Mode
|--------------------------------------------------------------------------
|
| Enabling debug mode will result in error responses caused by thrown
| exceptions to have a "debug" key that will be populated with
| more detailed information on the exception.
|
*/
'debug'
=>
env
(
'API_DEBUG'
,
false
),
/*
|--------------------------------------------------------------------------
| Generic Error Format
|--------------------------------------------------------------------------
|
| When some HTTP exceptions are not caught and dealt with the API will
| generate a generic error response in the format provided. Any
| keys that aren't replaced with corresponding values will be
| removed from the final response.
|
*/
'errorFormat'
=>
[
'message'
=>
':message'
,
'errors'
=>
':errors'
,
'code'
=>
':code'
,
'status_code'
=>
':status_code'
,
'debug'
=>
':debug'
,
],
/*
|--------------------------------------------------------------------------
| API Middleware
|--------------------------------------------------------------------------
|
| Middleware that will be applied globally to all API requests.
|
*/
'middleware'
=>
[
// these options are related to the sign-up procedure
'register'
=>
[
// this option must be set to true if you want to release a token
// when your user successfully terminates the sign-in procedure
'release_token'
=>
env
(
'SIGN_UP_RELEASE_TOKEN'
,
true
),
],
/*
|--------------------------------------------------------------------------
| Authentication Providers
|--------------------------------------------------------------------------
|
| The authentication providers that should be used when attempting to
| authenticate an incoming API request.
|
*/
'auth'
=>
[
'jwt'
=>
'Dingo\Api\Auth\Provider\JWT'
,
],
/*
|--------------------------------------------------------------------------
| Throttling / Rate Limiting
|--------------------------------------------------------------------------
|
| Consumers of your API can be limited to the amount of requests they can
| make. You can create your own throttles or simply change the default
| throttles.
|
*/
'throttling'
=>
[
],
/*
|--------------------------------------------------------------------------
| Response Transformer
|--------------------------------------------------------------------------
|
| Responses can be transformed so that they are easier to format. By
| default a Fractal transformer will be used to transform any
| responses prior to formatting. You can easily replace
| this with your own transformer.
|
*/
'transformer'
=>
env
(
'API_TRANSFORMER'
,
Dingo\Api\Transformer\Adapter\Fractal
::
class
),
/*
|--------------------------------------------------------------------------
| Response Formats
|--------------------------------------------------------------------------
|
| Responses can be returned in multiple formats by registering different
| response formatters. You can also customize an existing response
| formatter.
|
*/
'defaultFormat'
=>
env
(
'API_DEFAULT_FORMAT'
,
'json'
),
'formats'
=>
[
'json'
=>
Dingo\Api\Http\Response\Format\Json
::
class
,
// these options are related to the password recovery procedure
'reset_password'
=>
[
// this option must be set to true if you want to release a token
// when your user successfully terminates the password reset procedure
'release_token'
=>
env
(
'PASSWORD_RESET_RELEASE_TOKEN'
,
false
),
],
];
config/api_validation.php
deleted
100755 → 0
View file @
faa59fc4
<?php
return
[
/*
* Validation rules for all api.
*/
'login'
=>
[
'rules'
=>
[
'email'
=>
'required|email'
,
'password'
=>
'required'
,
],
],
'forgotpassword'
=>
[
'rules'
=>
[
'email'
=>
'required|email'
,
],
],
'resetpassword'
=>
[
'rules'
=>
[
'email'
=>
'required|email'
,
'password_confirmation'
=>
'required'
,
'password'
=>
'required|confirmed'
,
'token'
=>
'required'
,
],
],
'register'
=>
[
'rules'
=>
[
'first_name'
=>
'required|max:255'
,
'last_name'
=>
'required|max:255'
,
'email'
=>
'required|email|max:255|unique:users'
,
'password'
=>
'required|min:6|confirmed'
,
'state_id'
=>
'required'
,
'city_id'
=>
'required'
,
'zip_code'
=>
'required'
,
'ssn'
=>
'required'
,
],
],
'confirmaccount'
=>
[
'rules'
=>
[
'email'
=>
'required|email'
,
'otp'
=>
'required'
,
],
],
];
config/auth.php
View file @
f62d3906
...
...
@@ -44,7 +44,7 @@ return [
],
'api'
=>
[
'driver'
=>
'
token
'
,
'driver'
=>
'
jwt
'
,
'provider'
=>
'users'
,
],
],
...
...
config/jwt.php
View file @
f62d3906
...
...
@@ -16,12 +16,74 @@ return [
| JWT Authentication Secret
|--------------------------------------------------------------------------
|
| Don't forget to set this, as it will be used to sign your tokens.
| A helper command is provided for this: `php artisan jwt:generate`
| Don't forget to set this in your .env file, as it will be used to sign
| your tokens. A helper command is provided for this:
| `php artisan jwt:secret`
|
| Note: This will be used for Symmetric algorithms only (HMAC),
| since RSA and ECDSA use a private/public key combo (See below).
|
*/
'secret'
=>
env
(
'JWT_SECRET'
,
'3M0tGfsEolZsrst5wrJgUOWk5Zkqzx5A'
),
'secret'
=>
env
(
'JWT_SECRET'
),
/*
|--------------------------------------------------------------------------
| JWT Authentication Keys
|--------------------------------------------------------------------------
|
| The algorithm you are using, will determine whether your tokens are
| signed with a random string (defined in `JWT_SECRET`) or using the
| following public & private keys.
|
| Symmetric Algorithms:
| HS256, HS384 & HS512 will use `JWT_SECRET`.
|
| Asymmetric Algorithms:
| RS256, RS384 & RS512 / ES256, ES384 & ES512 will use the keys below.
|
*/
'keys'
=>
[
/*
|--------------------------------------------------------------------------
| Public Key
|--------------------------------------------------------------------------
|
| A path or resource to your public key.
|
| E.g. 'file://path/to/public/key'
|
*/
'public'
=>
env
(
'JWT_PUBLIC_KEY'
),
/*
|--------------------------------------------------------------------------
| Private Key
|--------------------------------------------------------------------------
|
| A path or resource to your private key.
|
| E.g. 'file://path/to/private/key'
|
*/
'private'
=>
env
(
'JWT_PRIVATE_KEY'
),
/*
|--------------------------------------------------------------------------
| Passphrase
|--------------------------------------------------------------------------
|
| The passphrase for your private key. Can be null if none set.
|
*/
'passphrase'
=>
env
(
'JWT_PASSPHRASE'
),
],
/*
|--------------------------------------------------------------------------
...
...
@@ -29,11 +91,16 @@ return [
|--------------------------------------------------------------------------
|
| Specify the length of time (in minutes) that the token will be valid for.
| Defaults to 1 hour
| Defaults to 1 hour.
|
| You can also set this to null, to yield a never expiring token.
| Some people may want this behaviour for e.g. a mobile app.
| This is not particularly recommended, so make sure you have appropriate
| systems in place to revoke the token if necessary.
|
*/
'ttl'
=>
60
,
'ttl'
=>
env
(
'JWT_TTL'
,
60
)
,
/*
|--------------------------------------------------------------------------
...
...
@@ -43,11 +110,16 @@ return [
| Specify the length of time (in minutes) that the token can be refreshed
| within. I.E. The user can refresh their token within a 2 week window of
| the original token being created until they must re-authenticate.
| Defaults to 2 weeks
| Defaults to 2 weeks.
|
| You can also set this to null, to yield an infinite refresh time.
| Some may want this instead of never expiring tokens for e.g. a mobile app.
| This is not particularly recommended, so make sure you have appropriate
| systems in place to revoke the token if necessary.
|
*/
'refresh_ttl'
=>
20160
,
'refresh_ttl'
=>
env
(
'JWT_REFRESH_TTL'
,
20160
)
,
/*
|--------------------------------------------------------------------------
...
...
@@ -56,61 +128,95 @@ return [
|
| Specify the hashing algorithm that will be used to sign the token.
|
| See here: https://github.com/namshi/jose/tree/
2.2.0/src/Namshi/JOSE/Signer
| for possible values
| See here: https://github.com/namshi/jose/tree/
master/src/Namshi/JOSE/Signer/OpenSSL
| for possible values
.
|
*/
'algo'
=>
'HS256'
,
'algo'
=>
env
(
'JWT_ALGO'
,
'HS256'
)
,
/*
|--------------------------------------------------------------------------
|
User Model namespace
|
Required Claims
|--------------------------------------------------------------------------
|
| Specify the full namespace to your User model.
| e.g. 'Acme\Entities\User'
| Specify the required claims that must exist in any token.
| A TokenInvalidException will be thrown if any of these claims are not
| present in the payload.
|
*/
'user'
=>
'App\Models\Access\User\User'
,
'required_claims'
=>
[
'iss'
,
'iat'
,
'exp'
,
'nbf'
,
'sub'
,
'jti'
,
],
/*
|--------------------------------------------------------------------------
|
User identifier
|
Persistent Claims
|--------------------------------------------------------------------------
|
| Specify a unique property of the user that will be added as the 'sub'
| claim of the token payload.
| Specify the claim keys to be persisted when refreshing a token.
| `sub` and `iat` will automatically be persisted, in
| addition to the these claims.
|
| Note: If a claim does not exist then it will be ignored.
|
*/
'identifier'
=>
'id'
,
'persistent_claims'
=>
[
// 'foo',
// 'bar',
],
/*
|--------------------------------------------------------------------------
|
Required Claims
|
Blacklist Enabled
|--------------------------------------------------------------------------
|
| Specify the required claims that must exist in any token.
| A TokenInvalidException will be thrown if any of these claims are not
| present in the payload.
| In order to invalidate tokens, you must have the blacklist enabled.
| If you do not want or need this functionality, then set this to false.
|
*/
'blacklist_enabled'
=>
env
(
'JWT_BLACKLIST_ENABLED'
,
true
),
/*
| -------------------------------------------------------------------------
| Blacklist Grace Period
| -------------------------------------------------------------------------
|
| When multiple concurrent requests are made with the same JWT,
| it is possible that some of them fail, due to token regeneration
| on every request.
|
| Set grace period in seconds to prevent parallel request failure.
|
*/
'
required_claims'
=>
[
'iss'
,
'iat'
,
'exp'
,
'nbf'
,
'sub'
,
'jti'
]
,
'
blacklist_grace_period'
=>
env
(
'JWT_BLACKLIST_GRACE_PERIOD'
,
0
)
,
/*
|--------------------------------------------------------------------------
|
Blacklist Enabled
|
Cookies encryption
|--------------------------------------------------------------------------
|
| In order to invalidate tokens, you must have the blacklist enabled.
| If you do not want or need this functionality, then set this to false.
| By default Laravel encrypt cookies for security reason.
| If you decide to not decrypt cookies, you will have to configure Laravel
| to not encrypt your cookie token by adding its name into the $except
| array available in the middleware "EncryptCookies" provided by Laravel.
| see https://laravel.com/docs/master/responses#cookies-and-encryption
| for details.
|
| Set it to false if you don't want to decrypt cookies.
|
*/
'
blacklist_enabled'
=>
env
(
'JWT_BLACKLIST_ENABLED'
,
true
)
,
'
decrypt_cookies'
=>
true
,
/*
|--------------------------------------------------------------------------
...
...
@@ -123,18 +229,6 @@ return [
'providers'
=>
[
/*
|--------------------------------------------------------------------------
| User Provider
|--------------------------------------------------------------------------
|
| Specify the provider that is used to find the user based
| on the subject claim
|
*/
'user'
=>
'Tymon\JWTAuth\Providers\User\EloquentUserAdapter'
,
/*
|--------------------------------------------------------------------------
| JWT Provider
...
...
@@ -144,7 +238,7 @@ return [
|
*/
'jwt'
=>
'Tymon\JWTAuth\Providers\JWT\NamshiAdapter'
,
'jwt'
=>
Tymon\JWTAuth\Providers\JWT\Namshi
::
class
,
/*
|--------------------------------------------------------------------------
...
...
@@ -155,18 +249,18 @@ return [
|
*/
'auth'
=>
'Tymon\JWTAuth\Providers\Auth\IlluminateAuthAdapter'
,
'auth'
=>
Tymon\JWTAuth\Providers\Auth\Illuminate
::
class
,
/*
|--------------------------------------------------------------------------
| Storage Provider
|--------------------------------------------------------------------------
|
| Specify the provider that is used to store tokens in the blacklist
| Specify the provider that is used to store tokens in the blacklist
.
|
*/
'storage'
=>
'Tymon\JWTAuth\Providers\Storage\IlluminateCacheAdapter'
,
'storage'
=>
Tymon\JWTAuth\Providers\Storage\Illuminate
::
class
,
],
...
...
resources/lang/en/api.php
0 → 100644
View file @
f62d3906
<?php
return
[
'messages'
=>
[
'registeration'
=>
[
'success'
=>
'You have registered successfully. Please check your email for activation!'
,
],
'login'
=>
[
'success'
=>
'Login Successfull.'
,
'failed'
=>
'Invalid Credentials! Please try again.'
,
],
'logout'
=>
[
'success'
=>
'Successfully logged out.'
,
],
'forgot_password'
=>
[
'success'
=>
'We have sent email with reset password link. Please check your inbox!.'
,
'validation'
=>
[
'email_not_found'
=>
'This email address is not registered.'
,
],
],
'refresh'
=>
[
'token'
=>
[
'not_provided'
=>
'Token not provided.'
,
],
'status'
=>
'Ok'
,
],
],
];
resources/views/backend/includes/footer.blade.php
View file @
f62d3906
...
...
@@ -2,7 +2,7 @@
<footer
class=
"main-footer"
>
<!-- To the right -->
<div
class=
"pull-right hidden-xs"
>
<a
href=
"http://laravel-
boilerplate
.com"
target=
"_blank"
>
{{ trans('strings.backend.general.boilerplate_link') }}
</a>
<a
href=
"http://laravel-
admin
.com"
target=
"_blank"
>
{{ trans('strings.backend.general.boilerplate_link') }}
</a>
</div>
<!-- Default to the left -->
<strong>
Copyright
©
{{ date('Y') }}
<a
href=
"#"
>
{{ app_name() }}
</a>
.
</strong>
{{ trans('strings.backend.general.all_rights_reserved') }}
...
...
routes/api.php
View file @
f62d3906
...
...
@@ -14,13 +14,21 @@
Route
::
group
([
'namespace'
=>
'Api\V1'
,
'prefix'
=>
'v1'
,
'as'
=>
'v1.'
],
function
()
{
Route
::
group
([
'prefix'
=>
'auth'
],
function
()
{
Route
::
post
(
'/login'
,
'AuthController@authenticate'
);
Route
::
post
(
'/logout'
,
'AuthController@logout'
);
Route
::
post
(
'/check'
,
'AuthController@check'
);
Route
::
post
(
'/register'
,
'AuthController@register'
);
Route
::
get
(
'/activate/{token}'
,
'AuthController@activate'
);
Route
::
post
(
'/password'
,
'AuthController@password'
);
Route
::
post
(
'/validate-password-reset'
,
'AuthController@validatePasswordReset'
);
Route
::
post
(
'/reset'
,
'AuthController@reset'
);
Route
::
post
(
'register'
,
'RegisterController@register'
);
Route
::
post
(
'login'
,
'AuthController@login'
);
});
Route
::
group
([
'middleware'
=>
[
'jwt.auth'
]],
function
()
{
Route
::
group
([
'prefix'
=>
'auth'
],
function
()
{
Route
::
post
(
'logout'
,
'AuthController@logout'
);
Route
::
post
(
'refresh'
,
'AuthController@refresh'
);
// Password Reset Routes
Route
::
post
(
'password/email'
,
'ForgotPasswordController@sendResetLinkEmail'
);
Route
::
post
(
'password/reset'
,
'ResetPasswordController@reset'
)
->
name
(
'password.reset'
);
});
// Users
Route
::
resource
(
'users'
,
'UsersController'
);
});
});
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment