AuthController.php 9.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261
  1. <?php
  2. namespace App\Http\Controllers\Passport;
  3. use App\Http\Controllers\Controller;
  4. use App\Http\Requests\Passport\AuthRegister;
  5. use App\Http\Requests\Passport\AuthForget;
  6. use App\Http\Requests\Passport\AuthLogin;
  7. use Illuminate\Http\Request;
  8. use Illuminate\Support\Facades\Cache;
  9. use App\Models\Plan;
  10. use App\Models\User;
  11. use App\Models\InviteCode;
  12. use App\Utils\Helper;
  13. use App\Utils\Dict;
  14. use App\Utils\CacheKey;
  15. use ReCaptcha\ReCaptcha;
  16. class AuthController extends Controller
  17. {
  18. public function register(AuthRegister $request)
  19. {
  20. if ((int)config('v2board.recaptcha_enable', 0)) {
  21. $recaptcha = new ReCaptcha(config('v2board.recaptcha_key'));
  22. $recaptchaResp = $recaptcha->verify($request->input('recaptcha_data'));
  23. if (!$recaptchaResp->isSuccess()) {
  24. abort(500, __('Invalid code is incorrect'));
  25. }
  26. }
  27. if ((int)config('v2board.email_whitelist_enable', 0)) {
  28. if (!Helper::emailSuffixVerify(
  29. $request->input('email'),
  30. config('v2board.email_whitelist_suffix', Dict::EMAIL_WHITELIST_SUFFIX_DEFAULT))
  31. ) {
  32. abort(500, __('Email suffix is not in the Whitelist'));
  33. }
  34. }
  35. if ((int)config('v2board.email_gmail_limit_enable', 0)) {
  36. $prefix = explode('@', $request->input('email'))[0];
  37. if (strpos($prefix, '.') !== false || strpos($prefix, '+') !== false) {
  38. abort(500, __('Gmail alias is not supported'));
  39. }
  40. }
  41. if ((int)config('v2board.stop_register', 0)) {
  42. abort(500, __('Registration has closed'));
  43. }
  44. if ((int)config('v2board.invite_force', 0)) {
  45. if (empty($request->input('invite_code'))) {
  46. abort(500, __('You must use the invitation code to register'));
  47. }
  48. }
  49. if ((int)config('v2board.email_verify', 0)) {
  50. if (empty($request->input('email_code'))) {
  51. abort(500, __('Email verification code cannot be empty'));
  52. }
  53. if (Cache::get(CacheKey::get('EMAIL_VERIFY_CODE', $request->input('email'))) !== $request->input('email_code')) {
  54. abort(500, __('Incorrect email verification code'));
  55. }
  56. }
  57. $email = $request->input('email');
  58. $password = $request->input('password');
  59. $exist = User::where('email', $email)->first();
  60. if ($exist) {
  61. abort(500, __('Email already exists'));
  62. }
  63. $user = new User();
  64. $user->email = $email;
  65. $user->password = password_hash($password, PASSWORD_DEFAULT);
  66. $user->uuid = Helper::guid(true);
  67. $user->token = Helper::guid();
  68. if ($request->input('invite_code')) {
  69. $inviteCode = InviteCode::where('code', $request->input('invite_code'))
  70. ->where('status', 0)
  71. ->first();
  72. if (!$inviteCode) {
  73. if ((int)config('v2board.invite_force', 0)) {
  74. abort(500, __('Invalid invitation code'));
  75. }
  76. } else {
  77. $user->invite_user_id = $inviteCode->user_id ? $inviteCode->user_id : null;
  78. if (!(int)config('v2board.invite_never_expire', 0)) {
  79. $inviteCode->status = 1;
  80. $inviteCode->save();
  81. }
  82. }
  83. }
  84. // try out
  85. if ((int)config('v2board.try_out_plan_id', 0)) {
  86. $plan = Plan::find(config('v2board.try_out_plan_id'));
  87. if ($plan) {
  88. $user->transfer_enable = $plan->transfer_enable * 1073741824;
  89. $user->plan_id = $plan->id;
  90. $user->group_id = $plan->group_id;
  91. $user->expired_at = time() + (config('v2board.try_out_hour', 1) * 3600);
  92. }
  93. }
  94. if (!$user->save()) {
  95. abort(500, __('Register failed'));
  96. }
  97. if ((int)config('v2board.email_verify', 0)) {
  98. Cache::forget(CacheKey::get('EMAIL_VERIFY_CODE', $request->input('email')));
  99. }
  100. $request->session()->put('email', $user->email);
  101. $request->session()->put('id', $user->id);
  102. return response()->json([
  103. 'data' => true
  104. ]);
  105. }
  106. public function login(AuthLogin $request)
  107. {
  108. $email = $request->input('email');
  109. $password = $request->input('password');
  110. $user = User::where('email', $email)->first();
  111. if (!$user) {
  112. abort(500, __('Incorrect email or password'));
  113. }
  114. if (!Helper::multiPasswordVerify(
  115. $user->password_algo,
  116. $password,
  117. $user->password)
  118. ) {
  119. abort(500, __('Incorrect email or password'));
  120. }
  121. if ($user->banned) {
  122. abort(500, __('Your account has been suspended'));
  123. }
  124. $data = [
  125. 'token' => $user->token,
  126. 'auth_data' => base64_encode("{$user->email}:{$user->password}")
  127. ];
  128. $request->session()->put('email', $user->email);
  129. $request->session()->put('id', $user->id);
  130. if ($user->is_admin) {
  131. $request->session()->put('is_admin', true);
  132. $data['is_admin'] = true;
  133. }
  134. if ($user->is_staff) {
  135. $request->session()->put('is_staff', true);
  136. $data['is_staff'] = true;
  137. }
  138. return response([
  139. 'data' => $data
  140. ]);
  141. }
  142. public function token2Login(Request $request)
  143. {
  144. if ($request->input('token')) {
  145. $redirect = '/#/login?verify=' . $request->input('token') . '&redirect=' . ($request->input('redirect') ? $request->input('redirect') : 'dashboard');
  146. if (config('v2board.app_url')) {
  147. $location = config('v2board.app_url') . $redirect;
  148. } else {
  149. $location = url($redirect);
  150. }
  151. return redirect()->to($location)->send();
  152. }
  153. if ($request->input('verify')) {
  154. $key = CacheKey::get('TEMP_TOKEN', $request->input('verify'));
  155. $userId = Cache::get($key);
  156. if (!$userId) {
  157. abort(500, __('Token error'));
  158. }
  159. $user = User::find($userId);
  160. if (!$user) {
  161. abort(500, __('The user does not '));
  162. }
  163. if ($user->banned) {
  164. abort(500, __('Your account has been suspended'));
  165. }
  166. $request->session()->put('email', $user->email);
  167. $request->session()->put('id', $user->id);
  168. if ($user->is_admin) {
  169. $request->session()->put('is_admin', true);
  170. }
  171. Cache::forget($key);
  172. return response([
  173. 'data' => true
  174. ]);
  175. }
  176. }
  177. public function getTempToken(Request $request)
  178. {
  179. $user = User::where('token', $request->input('token'))->first();
  180. if (!$user) {
  181. abort(500, __('Token error'));
  182. }
  183. $code = Helper::guid();
  184. $key = CacheKey::get('TEMP_TOKEN', $code);
  185. Cache::put($key, $user->id, 60);
  186. return response([
  187. 'data' => $code
  188. ]);
  189. }
  190. public function getQuickLoginUrl(Request $request)
  191. {
  192. $authData = explode(':', base64_decode($request->input('auth_data')));
  193. $user = User::where('email', $authData[0])
  194. ->where('password', $authData[1])
  195. ->first();
  196. if (!$user) {
  197. abort(500, __('Token error'));
  198. }
  199. $code = Helper::guid();
  200. $key = CacheKey::get('TEMP_TOKEN', $code);
  201. Cache::put($key, $user->id, 60);
  202. $redirect = '/#/login?verify=' . $code . '&redirect=' . ($request->input('redirect') ? $request->input('redirect') : 'dashboard');
  203. if (config('v2board.app_url')) {
  204. $url = config('v2board.app_url') . $redirect;
  205. } else {
  206. $url = url($redirect);
  207. }
  208. return response([
  209. 'data' => $url
  210. ]);
  211. }
  212. public function check(Request $request)
  213. {
  214. $data = [
  215. 'is_login' => $request->session()->get('id') ? true : false
  216. ];
  217. if ($request->session()->get('is_admin')) {
  218. $data['is_admin'] = true;
  219. }
  220. return response([
  221. 'data' => $data
  222. ]);
  223. }
  224. public function forget(AuthForget $request)
  225. {
  226. if (Cache::get(CacheKey::get('EMAIL_VERIFY_CODE', $request->input('email'))) !== $request->input('email_code')) {
  227. abort(500, __('Incorrect email verification code'));
  228. }
  229. $user = User::where('email', $request->input('email'))->first();
  230. if (!$user) {
  231. abort(500, __('This email is not registered in the system'));
  232. }
  233. $user->password = password_hash($request->input('password'), PASSWORD_DEFAULT);
  234. $user->password_algo = NULL;
  235. if (!$user->save()) {
  236. abort(500, __('Reset failed'));
  237. }
  238. Cache::forget(CacheKey::get('EMAIL_VERIFY_CODE', $request->input('email')));
  239. return response([
  240. 'data' => true
  241. ]);
  242. }
  243. }