2016-09-15 23:19:40 -05:00
|
|
|
<?php
|
2016-09-17 00:57:32 -05:00
|
|
|
/**
|
|
|
|
|
* LoginController.php
|
|
|
|
|
* Copyright (C) 2016 thegrumpydictator@gmail.com
|
|
|
|
|
*
|
2016-10-04 23:52:15 -05:00
|
|
|
* This software may be modified and distributed under the terms of the
|
|
|
|
|
* Creative Commons Attribution-ShareAlike 4.0 International License.
|
|
|
|
|
*
|
|
|
|
|
* See the LICENSE file for details.
|
2016-09-17 00:57:32 -05:00
|
|
|
*/
|
|
|
|
|
declare(strict_types = 1);
|
2016-09-15 23:19:40 -05:00
|
|
|
|
|
|
|
|
namespace FireflyIII\Http\Controllers\Auth;
|
|
|
|
|
|
2016-09-16 00:22:57 -05:00
|
|
|
use Config;
|
|
|
|
|
use FireflyConfig;
|
2016-09-15 23:19:40 -05:00
|
|
|
use FireflyIII\Http\Controllers\Controller;
|
2016-09-16 00:22:57 -05:00
|
|
|
use FireflyIII\User;
|
2017-02-17 13:15:17 -06:00
|
|
|
use Illuminate\Cookie\CookieJar;
|
2016-09-15 23:19:40 -05:00
|
|
|
use Illuminate\Foundation\Auth\AuthenticatesUsers;
|
2016-09-16 00:22:57 -05:00
|
|
|
use Illuminate\Http\Request;
|
|
|
|
|
use Lang;
|
2016-09-15 23:19:40 -05:00
|
|
|
|
2016-09-16 00:22:57 -05:00
|
|
|
/**
|
2017-03-24 09:01:53 -05:00
|
|
|
* @codeCoverageIgnore
|
|
|
|
|
*
|
2016-09-16 00:22:57 -05:00
|
|
|
* Class LoginController
|
|
|
|
|
*
|
|
|
|
|
* @package FireflyIII\Http\Controllers\Auth
|
|
|
|
|
*/
|
2016-09-15 23:19:40 -05:00
|
|
|
class LoginController extends Controller
|
|
|
|
|
{
|
|
|
|
|
|
|
|
|
|
use AuthenticatesUsers;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Create a new controller instance.
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
public function __construct()
|
|
|
|
|
{
|
2016-09-16 00:22:57 -05:00
|
|
|
parent::__construct();
|
2016-09-15 23:19:40 -05:00
|
|
|
$this->middleware('guest', ['except' => 'logout']);
|
|
|
|
|
}
|
2016-09-16 00:22:57 -05:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Handle a login request to the application.
|
|
|
|
|
*
|
2016-12-23 00:02:45 -06:00
|
|
|
* @param Request $request
|
2016-09-16 00:22:57 -05:00
|
|
|
*
|
2016-12-23 00:02:45 -06:00
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Http\Response
|
2016-09-16 00:22:57 -05:00
|
|
|
*/
|
|
|
|
|
public function login(Request $request)
|
|
|
|
|
{
|
|
|
|
|
$this->validateLogin($request);
|
2016-11-26 02:16:06 -06:00
|
|
|
$lockedOut = $this->hasTooManyLoginAttempts($request);
|
|
|
|
|
if ($lockedOut) {
|
2016-09-16 00:22:57 -05:00
|
|
|
$this->fireLockoutEvent($request);
|
|
|
|
|
|
|
|
|
|
return $this->sendLockoutResponse($request);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$credentials = $this->credentials($request);
|
2016-12-09 09:30:33 -06:00
|
|
|
$credentials['blocked'] = 0; // must not be blocked.
|
2016-09-16 00:22:57 -05:00
|
|
|
|
|
|
|
|
if ($this->guard()->attempt($credentials, $request->has('remember'))) {
|
|
|
|
|
return $this->sendLoginResponse($request);
|
|
|
|
|
}
|
|
|
|
|
|
2016-12-28 11:49:30 -06:00
|
|
|
$errorMessage = $this->getBlockedError($credentials['email']);
|
2016-12-13 13:37:38 -06:00
|
|
|
|
2016-09-16 00:22:57 -05:00
|
|
|
if (!$lockedOut) {
|
|
|
|
|
$this->incrementLoginAttempts($request);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $this->sendFailedLoginResponse($request, $errorMessage);
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-12 09:50:35 -06:00
|
|
|
/**
|
2017-02-17 13:15:17 -06:00
|
|
|
* @param Request $request
|
|
|
|
|
* @param CookieJar $cookieJar
|
2017-02-12 09:50:35 -06:00
|
|
|
*
|
2017-02-17 13:15:17 -06:00
|
|
|
* @return $this
|
2017-02-12 09:50:35 -06:00
|
|
|
*/
|
2017-02-17 13:15:17 -06:00
|
|
|
public function logout(Request $request, CookieJar $cookieJar)
|
2017-02-12 09:50:35 -06:00
|
|
|
{
|
|
|
|
|
if (intval(getenv('SANDSTORM')) === 1) {
|
|
|
|
|
return view('error')->with('message', strval(trans('firefly.sandstorm_not_available')));
|
|
|
|
|
}
|
|
|
|
|
|
2017-02-17 13:15:17 -06:00
|
|
|
$cookie = $cookieJar->forever('twoFactorAuthenticated', 'false');
|
|
|
|
|
|
2017-02-12 09:50:35 -06:00
|
|
|
$this->guard()->logout();
|
|
|
|
|
|
|
|
|
|
$request->session()->flush();
|
|
|
|
|
|
|
|
|
|
$request->session()->regenerate();
|
|
|
|
|
|
2017-02-17 13:15:17 -06:00
|
|
|
return redirect('/')->withCookie($cookie);
|
2017-02-12 09:50:35 -06:00
|
|
|
}
|
|
|
|
|
|
2017-02-15 08:24:01 -06:00
|
|
|
/**
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
public function redirectTo(): string
|
|
|
|
|
{
|
|
|
|
|
return route('index');
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-16 00:22:57 -05:00
|
|
|
/**
|
|
|
|
|
* Show the application login form.
|
|
|
|
|
*
|
2016-10-09 00:58:27 -05:00
|
|
|
* @param Request $request
|
|
|
|
|
*
|
2016-09-16 00:22:57 -05:00
|
|
|
* @return \Illuminate\Http\Response
|
|
|
|
|
*/
|
2017-04-01 01:13:43 -05:00
|
|
|
public function showLoginForm(Request $request, CookieJar $cookieJar)
|
2016-09-16 00:22:57 -05:00
|
|
|
{
|
2017-04-01 01:13:43 -05:00
|
|
|
// forget 2fa cookie:
|
|
|
|
|
$cookie = $cookieJar->forever('twoFactorAuthenticated', 'false');
|
2016-09-16 00:22:57 -05:00
|
|
|
// is allowed to?
|
|
|
|
|
$singleUserMode = FireflyConfig::get('single_user_mode', Config::get('firefly.configuration.single_user_mode'))->data;
|
|
|
|
|
$userCount = User::count();
|
|
|
|
|
$allowRegistration = true;
|
|
|
|
|
if ($singleUserMode === true && $userCount > 0) {
|
|
|
|
|
$allowRegistration = false;
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-16 06:29:56 -05:00
|
|
|
$email = $request->old('email');
|
|
|
|
|
$remember = $request->old('remember');
|
|
|
|
|
|
2017-04-01 01:13:43 -05:00
|
|
|
return view('auth.login', compact('allowRegistration', 'email', 'remember'))->withCookie($cookie);
|
2016-09-16 00:22:57 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get the failed login message.
|
|
|
|
|
*
|
|
|
|
|
* @param string $message
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
protected function getFailedLoginMessage(string $message)
|
|
|
|
|
{
|
|
|
|
|
if (strlen($message) > 0) {
|
|
|
|
|
return $message;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return Lang::has('auth.failed') ? Lang::get('auth.failed') : 'These credentials do not match our records.';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get the failed login response instance.
|
|
|
|
|
*
|
|
|
|
|
* @param \Illuminate\Http\Request $request
|
|
|
|
|
* @param string $message
|
|
|
|
|
*
|
|
|
|
|
* @return \Illuminate\Http\RedirectResponse
|
|
|
|
|
*/
|
|
|
|
|
protected function sendFailedLoginResponse(Request $request, string $message)
|
|
|
|
|
{
|
|
|
|
|
return redirect()->back()
|
|
|
|
|
->withInput($request->only($this->username(), 'remember'))
|
|
|
|
|
->withErrors(
|
|
|
|
|
[
|
|
|
|
|
$this->username() => $this->getFailedLoginMessage($message),
|
|
|
|
|
]
|
|
|
|
|
);
|
|
|
|
|
}
|
2016-12-28 11:49:30 -06:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @param string $email
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
private function getBlockedError(string $email): string
|
|
|
|
|
{
|
|
|
|
|
// check if user is blocked:
|
|
|
|
|
$errorMessage = '';
|
|
|
|
|
/** @var User $foundUser */
|
|
|
|
|
$foundUser = User::where('email', $email)->where('blocked', 1)->first();
|
|
|
|
|
if (!is_null($foundUser)) {
|
|
|
|
|
// user exists, but is blocked:
|
|
|
|
|
$code = strlen(strval($foundUser->blocked_code)) > 0 ? $foundUser->blocked_code : 'general_blocked';
|
|
|
|
|
$errorMessage = strval(trans('firefly.' . $code . '_error', ['email' => $email]));
|
|
|
|
|
}
|
2016-12-30 06:47:23 -06:00
|
|
|
|
2016-12-28 11:49:30 -06:00
|
|
|
return $errorMessage;
|
|
|
|
|
}
|
2016-09-15 23:19:40 -05:00
|
|
|
}
|
