/**
* Show the application login form.
*
* @return \Illuminate\Http\Response
*/
public function getLogin()
{
//dd("loaded");
// get the current request object
//Throttle::clear();
$request = Request::getFacadeRoot();
//dd($request);
// throttler object for that request, X, Y
// X = tries, Y = minutes
$throttler = Throttle::get($request, Config::get('kagi.throttle', '3'), Config::get('kagi.time_out', '2'));
//dd($throttler);
/*
// check if we've gone over the limit
var_dump($throttler->check());
// implement Countable
var_dump($throttler->count());
// the attempt function will hit the throttle, then return check
var_dump(Throttle::attempt($request));
*/
// Check throttle, return with error
if (!Throttle::attempt($request, 5)) {
Flash::error(trans('kotoba::auth.error.not_approved'));
}
return Theme::View('modules.kagi.auth.login');
}
/**
* Get a default request value, if any is available
*
* @return Request|null A default request value or Null if no default value is available
*/
public function getDefaultRequest()
{
return RequestFacade::getFacadeRoot();
}
public function validateSignedURL($actual_url, $signed_url, $substitions)
{
$current_route = Request::route();
$current_route_name = $current_route->getName();
if (isset($substitions[$current_route_name])) {
$substition = $substitions[$current_route_name];
// make sure the host of the signed URL matches the host of the substitution URL
if (isset($substition['host'])) {
$signed_host = $this->getHostFromURL($signed_url);
$allowed_host = $substition['host'];
if ($signed_host != $allowed_host) {
Log::debug("HOST MISMATCH: \$signed_host={$signed_host} \$allowed_host={$allowed_host}");
// no host match - return false
return false;
}
}
// check the route
$substitute_route = new Route($current_route->getMethods(), $substition['route'], []);
$signed_request = \Illuminate\Http\Request::create($signed_url, Request::method());
if ($substitute_route->matches($signed_request)) {
// the allowed substitute route matches the signed request
return true;
}
Log::debug("ROUTE MISMATCH: pathinfo=" . json_encode(Request::getFacadeRoot()->getPathInfo()) . " allowed route={$substition['route']}");
}
// this signed URL was not valid
return false;
}
/**
* Returns an instance of the current request
*
* @return \Illuminate\Http\Request|null Request or null if not available
*/
public function getRequest()
{
return Request::getFacadeRoot();
}
