-
Notifications
You must be signed in to change notification settings - Fork 0
/
AuthenticatesUsers.php
150 lines (130 loc) · 3.55 KB
/
AuthenticatesUsers.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
<?php
namespace A2Workspace\LaravelJwt;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Auth;
use PHPOpenSourceSaver\JWTAuth\JWTGuard;
use PHPOpenSourceSaver\JWTAuth\Exceptions\JWTException;
trait AuthenticatesUsers
{
/**
* Handle login request.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function login(Request $request)
{
$credentials = $this->credentials($request);
if ($token = $this->guard()->attempt($credentials)) {
return $this->respondWithToken($token);
}
return response()->json(['error' => 'Unauthorized'], 401);
}
/**
* Get the needed authorization credentials from the request.
*
* @param \Illuminate\Http\Request $request
* @return array
*/
protected function credentials(Request $request)
{
return $request->only($this->username(), 'password');
}
/**
* Get the guard to be used during authentication.
*
* @return \PHPOpenSourceSaver\JWTAuth\JWTGuard
*/
protected function guard(): JWTGuard
{
return Auth::guard('api');
}
/**
* Get the login username to be used by the controller.
*
*
* @return string
*/
protected function username()
{
return 'username';
}
/**
* Get the token array structure.
*
* @param string $token
* @return \Illuminate\Http\JsonResponse
*/
protected function respondWithToken($token)
{
return response()->json([
'access_token' => $token,
'token_type' => 'bearer',
'expires_in' => $this->guard()->factory()->getTTL() * 60
]);
}
/**
* Handle logout request.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function logout(Request $request)
{
$this->guard()->logout();
return response()->json(['message' => 'Successfully logged out']);
}
/**
* Handle refresh token request.
*
* @return \Illuminate\Http\JsonResponse
*/
public function refresh()
{
try {
$newToken = $this->guard()->refresh();
return $this->respondWithToken($newToken);
} catch (JWTException $e) {
return $this->respondWithInvalidAccess();
}
}
/**
* Handle reissue token request.
*
*@return \Illuminate\Http\JsonResponse
*/
protected function reissue()
{
$jwtGuard = $this->guard();
try {
$temporaryToken = $jwtGuard->refresh();
$jwtGuard->setToken($temporaryToken);
$payload = $jwtGuard->getPayload();
$newToken = $jwtGuard->tokenById($payload['sub']);
return $this->respondWithToken($newToken);
} catch (JWTException $e) {
return $this->respondWithInvalidAccess();
}
}
/**
* @param string|null $message
* @return \Illuminate\Http\JsonResponse
*/
private function respondWithInvalidAccess(string $message = 'Invalid Access Token')
{
return response()->json(['error' => $message], 401);
}
/**
* Handle get user info request.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function me(Request $request)
{
if ($this->guard()->check()) {
return response()->json($this->guard()->user());
}
return $this->respondWithInvalidAccess();
}
}