/**
  * auth user.
  *
  * @param Request                $request
  * @param ServerRequestInterface $serverRequest
  */
 protected function authUser(Request $request, ServerRequestInterface $serverRequest)
 {
     $userVerifier = app()->make(Oauth2Server::class)->getOptions()['user_verifier'];
     /** @var \RTLer\Oauth2\Authorize\UserVerifierInterface $userVerifierObj */
     $userVerifierObj = new $userVerifier();
     $user = $userVerifierObj->getUserByIdentifier($serverRequest->getAttribute('oauth_user_id'));
     Auth::setUser($user);
     $request->setUserResolver(function () use($user) {
         return $user;
     });
 }
Exemplo n.º 2
0
 public function login($credentials, $remember)
 {
     Session::forget('profile');
     if (Auth::attempt($credentials, $remember)) {
         $user = Auth::user();
         $realm = $this->organizationsOfUser($user)[0];
         //Auth::user should contain all information about a user
         //so refill it
         $auth_user = $this->getProfile($user->id(), $realm->id());
         $profile_vars = ['userId' => $user->id(), 'realmId' => $realm->id()];
         Session::put('profile_vars', $profile_vars);
         Auth::setUser($auth_user);
         return true;
     }
     return false;
 }
Exemplo n.º 3
0
 /**
  * Handle a registration request for the application.
  *
  * @param  \Illuminate\Http\Request  $request
  * @return \Illuminate\Http\Response
  */
 public function postRegister(Request $request)
 {
     $validator = $this->validator($request->all());
     if ($validator->fails()) {
         $this->throwValidationException($request, $validator);
     }
     $user = $this->create($request->all());
     $previous_session = $user->session_id;
     if ($previous_session) {
         \Session::getHandler()->destroy($previous_session);
         Auth::setUser($user);
         Auth::logout();
     }
     Auth::login($user, $request->has('remember'));
     $user->session_id = \Session::getId();
     $user->save();
     return redirect($this->redirectPath());
 }
Exemplo n.º 4
0
 /**
  * Send the response after the user was authenticated.
  *
  * @param  \Illuminate\Http\Request  $request
  * @param  bool  $throttles
  * @return \Illuminate\Http\Response
  */
 protected function handleUserWasAuthenticated(Request $request, $throttles)
 {
     if ($throttles) {
         $this->clearLoginAttempts($request);
     }
     // if (method_exists($this, 'authenticated')) {
     //     return $this->authenticated($request, Auth::user());
     // }
     $user = Auth::getLastAttempted();
     $previous_session = $user->session_id;
     if ($previous_session) {
         \Session::getHandler()->destroy($previous_session);
         Auth::setUser($user);
         Auth::logout();
     }
     Auth::login($user, $request->has('remember'));
     $user->session_id = \Session::getId();
     $user->save();
     return redirect()->intended($this->redirectPath());
 }
 public function postUpdateProfile(Request $request)
 {
     $user_id = Auth::user()->id;
     $input = $request->all();
     $validator = Validator::make($input, ["name" => "required", "email" => "required|email|unique:users,email," . $user_id, 'password' => "required|confirmed"]);
     if ($validator->passes()) {
         // Update Profile
         $user = User::find($user_id);
         if ($user) {
             $user->name = $input['name'];
             $user->email = $input['email'];
             $user->password = bcrypt($input['password']);
             $user->save();
             Auth::setUser(Auth::user()->first());
             return redirect()->back()->with("status", "Profile updated successfully");
         } else {
             return redirect()->back();
         }
     } else {
         return redirect()->back()->withErrors($validator)->withInput();
     }
 }
 public function login(Request $request)
 {
     $this->validate($request, [$this->loginUsername() => 'required', 'password' => 'required']);
     // If the class is using the ThrottlesLogins trait, we can automatically throttle
     // the login attempts for this application. We'll key this by the username and
     // the IP address of the client making these requests into this application.
     $throttles = $this->isUsingThrottlesLoginsTrait();
     if ($throttles && $this->hasTooManyLoginAttempts($request)) {
         return $this->sendLockoutResponse($request);
     }
     $credentials = $this->getCredentials($request);
     //  if (Auth::attempt($credentials, $request->has('remember'))) {
     //      $this->swapUserSession(Auth::user());
     //      return $this->handleUserWasAuthenticated($request, $throttles);
     //  }
     if (Auth::validate($credentials)) {
         $user = Auth::getLastAttempted();
         $previous_session = $user->last_session_id;
         if ($previous_session) {
             \Session::getHandler()->destroy($previous_session);
             Auth::setUser($user);
             Auth::logout();
         }
         Auth::login($user, $request->has('remember'));
         $user->last_session_id = \Session::getId();
         $user->save();
         return redirect()->intended($this->redirectPath());
     }
     // If the login attempt was unsuccessful we will increment the number of attempts
     // to login and redirect the user back to the login form. Of course, when this
     // user surpasses their maximum number of attempts they will get locked out.
     if ($throttles) {
         $this->incrementLoginAttempts($request);
     }
     return redirect()->back()->withInput($request->only($this->loginUsername(), 'remember'))->withErrors([$this->loginUsername() => $this->getFailedLoginMessage()]);
 }
 public function callHTTPRoute($method, $uri_or_url_extension, $parameters = [], $expected_response_code = 200, $cookies = [], $files = [], $server = [], $content = null)
 {
     if (substr($uri_or_url_extension, 0, 1) == '/' or substr($uri_or_url_extension, 0, 7) == 'http://') {
         $uri = $uri_or_url_extension;
     } else {
         $uri = $this->extendURL($this->url_base, $uri_or_url_extension);
     }
     if ($this->user) {
         Auth::setUser($this->user);
     }
     $request = $this->createRequest($method, $uri, $parameters, $cookies, $files, $server, $content);
     $response = $this->runRequest($request);
     $errors = [];
     $error_bag = Session::get('errors');
     if ($error_bag) {
         $errors = $error_bag->all();
     }
     PHPUnit::assertEquals($expected_response_code, $response->getStatusCode(), "Errors were: " . json_encode($errors, 192) . "\nResponse was: " . $response->getContent());
     return $response->getContent();
 }
Exemplo n.º 8
0
    Route::get('{template}', array(function ($template) {
        $template = str_replace(".html", "", $template);
        View::addExtension('html', 'php');
        return View::make('templates.' . $template);
    }));
});
Route::filter('api.csrf', function ($route, $request) {
    if (Request::isMethod('post')) {
        if (!((Input::has('_token') and Session::token() == Input::get('_token')) || ($request->header('X-Csrf-Token') != "" and Session::token() == $request->header('X-Csrf-Token')))) {
            //	return Response::json('CSRF does not match', 400);
        }
    }
});
Event::listen('auth.token.valid', function ($user) {
    //Token is valid, set the user on auth system.
    Auth::setUser($user);
});
Route::filter('auth.Ui', function () {
    if (Request::header('x-auth-token') != "") {
        return;
    }
    if (Auth::guest()) {
        return Redirect::guest('/login');
    }
    if (Auth::check()) {
        if (!Auth::User()) {
            return Redirect::to('/dashboard');
        }
    } else {
        return Redirect::guest('/login');
    }
Exemplo n.º 9
0
 /**
  * Fausse fonction de connexion de l'utilisateur
  * Il n'es pas possible d'utiliser les fonctions par défaut de Lumen car l'utilisateur n'a pas de mot de passe
  * On considère que si Facebook renvoit des informations, alors il est correctement identifié .
  * On fait confiance à Facebook qui s'est occupé de cette partie et on connectre notre utilisateur
  *
  * @param $user
  * @return mixed
  */
 protected function login(User $user)
 {
     // L'utilisateur est ajouté à la session courante
     Session::put(Auth::getName(), $user->id);
     // On set l'utilisateur courant dans l'application
     Auth::setUser($user);
     // Renvoie true si l'utilisateur est bien connecté
     return Auth::check();
 }