Login Proxy

Author: svilborg

app/Http/Controllers/API/LoginAPIController.php

@@ -0,0 +1,89 @@
+<?php
+namespace App\Http\Controllers\API;
+
+use App\Http\Controllers\AppBaseController;
+use App\Repositories\UserRepository;
+use Illuminate\Http\Request;
+use GuzzleHttp\Client;
+
+/**
+ * Class ItemController
+ *
+ * @package App\Http\Controllers\API
+ */
+class LoginAPIController extends AppBaseController
+{
+
+    /** @var  UserRepository */
+    private $userRepository;
+
+    public function __construct(UserRepository $userRepo)
+    {
+        $this->userRepository = $userRepo;
+    }
+
+    public function index(Request $request)
+    {
+        $d = $this->userRepository->findWhere([
+            "email" => $request->get("email")
+        ]);
+
+        if (! $d->isEmpty()) {
+            // proxy
+            return $this->proxy('password', [
+                'username' => $request->get("email"),
+                'password' => $request->get("password")
+            ]);
+        }
+
+        var_dump($d->isEmpty());
+        die();
+    }
+
+    /**
+     * Proxy a request to the OAuth server.
+     *
+     * @param string $grantType
+     *            what type of grant type should be proxied
+     * @param array $data
+     *            the data to send to the server
+     */
+    public function proxy($grantType, array $data = [])
+    {
+        $data = array_merge($data, [
+            'client_id' => '3',
+            'client_secret' => 'fWSn2MuCq3sIcN35bSe4Qq1fpreKi0ndKVS2rZh4',
+            'grant_type' => 'password',
+            'scope' => '*'
+        ]);
+
+        $result = $this->getAccessToken($data);
+        if (! $result) {
+            throw new \Exception("Unauthorized");
+        }
+
+        // Create a refresh token cookie
+//         $this->cookie->queue(self::REFRESH_TOKEN, $data["refresh_token"], 864000, null, null, false, true); // HttpOnly
+
+        return [
+            'access_token' => $data["access_token"],
+            'expires_in' => $data["expires_in"]
+        ];
+    }
+
+    private function getAccessToken($data)
+    {
+        $http = new Client();
+
+        try {
+            $response = $http->post('http://localhost:8000/oauth/token', [
+                'form_params' => $data
+            ]);
+
+            $result = json_decode((string) $response->getBody(), true);
+        } catch (\Exception $e) {
+            return null;
+        }
+        return $result;
+    }
+}

app/Http/Controllers/UserController.php

@@ -13,15 +13,15 @@
 
 class UserController extends AppBaseController
 {
-
+    
     /** @var  UserRepository */
     private $userRepository;
-
+    
     public function __construct(UserRepository $userRepo)
     {
         $this->userRepository = $userRepo;
     }
-
+    
     /**
      * Display a listing of the User.
      *
@@ -32,10 +32,10 @@ public function index(Request $request)
     {
         $this->userRepository->pushCriteria(new RequestCriteria($request));
         $users = $this->userRepository->all();
-
+        
         return view('users.index')->with('users', $users);
     }
-
+    
     /**
      * Show the form for creating a new User.
      *
@@ -45,7 +45,7 @@ public function create()
     {
         return view('users.create');
     }
-
+    
     /**
      * Store a newly created User in storage.
      *
@@ -56,16 +56,16 @@ public function create()
     public function store(CreateUserRequest $request)
     {
         $input = $request->all();
-
+        
         $input["password"] = Hash::make($input["password"]);
-
+        
         $user = $this->userRepository->create($input);
-
+        
         Flash::success('User saved successfully.');
-
+        
         return redirect(route('users.index'));
     }
-
+    
     /**
      * Display the specified User.
      *
@@ -76,16 +76,16 @@ public function store(CreateUserRequest $request)
     public function show($id)
     {
         $user = $this->userRepository->findWithoutFail($id);
-
+        
         if (empty($user)) {
             Flash::error('User not found');
-
+            
             return redirect(route('users.index'));
         }
-
+        
         return view('users.show')->with('user', $user);
     }
-
+    
     /**
      * Show the form for editing the specified User.
      *
@@ -96,16 +96,16 @@ public function show($id)
     public function edit($id)
     {
         $user = $this->userRepository->findWithoutFail($id);
-
+        
         if (empty($user)) {
             Flash::error('User not found');
-
+            
             return redirect(route('users.index'));
         }
-
+        
         return view('users.edit')->with('user', $user);
     }
-
+    
     /**
      * Update the specified User in storage.
      *
@@ -117,20 +117,20 @@ public function edit($id)
     public function update($id, UpdateUserRequest $request)
     {
         $user = $this->userRepository->findWithoutFail($id);
-
+        
         if (empty($user)) {
             Flash::error('User not found');
-
+            
             return redirect(route('users.index'));
         }
-
+        
         $user = $this->userRepository->update($request->all(), $id);
-
+        
         Flash::success('User updated successfully.');
-
+        
         return redirect(route('users.index'));
     }
-
+    
     /**
      * Remove the specified User from storage.
      *
@@ -141,17 +141,17 @@ public function update($id, UpdateUserRequest $request)
     public function destroy($id)
     {
         $user = $this->userRepository->findWithoutFail($id);
-
+        
         if (empty($user)) {
             Flash::error('User not found');
-
+            
             return redirect(route('users.index'));
         }
-
+        
         $this->userRepository->delete($id);
-
+        
         Flash::success('User deleted successfully.');
-
+        
         return redirect(route('users.index'));
     }
 }

routes/api.php

@@ -17,4 +17,5 @@
     return $request->user();
 });
 
+Route::resource('login', 'LoginAPIController');
 Route::resource('items', 'ItemAPIController');