2015-07-12 15:01:42 -04:00
|
|
|
<?php
|
|
|
|
|
2015-09-10 14:31:09 -04:00
|
|
|
namespace BookStack\Http\Controllers\Auth;
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2016-01-11 17:41:05 -05:00
|
|
|
use Illuminate\Contracts\Auth\Authenticatable;
|
2015-09-05 15:25:57 -04:00
|
|
|
use Illuminate\Http\Request;
|
2015-09-10 14:31:09 -04:00
|
|
|
use BookStack\Exceptions\SocialSignInException;
|
|
|
|
use BookStack\Exceptions\UserRegistrationException;
|
|
|
|
use BookStack\Repos\UserRepo;
|
|
|
|
use BookStack\Services\EmailConfirmationService;
|
|
|
|
use BookStack\Services\SocialAuthService;
|
|
|
|
use BookStack\SocialAccount;
|
2015-07-12 15:01:42 -04:00
|
|
|
use Validator;
|
2015-09-10 14:31:09 -04:00
|
|
|
use BookStack\Http\Controllers\Controller;
|
2015-07-12 15:01:42 -04:00
|
|
|
use Illuminate\Foundation\Auth\ThrottlesLogins;
|
|
|
|
use Illuminate\Foundation\Auth\AuthenticatesAndRegistersUsers;
|
|
|
|
|
|
|
|
class AuthController extends Controller
|
|
|
|
{
|
|
|
|
/*
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
| Registration & Login Controller
|
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
| This controller handles the registration of new users, as well as the
|
|
|
|
| authentication of existing users. By default, this controller uses
|
|
|
|
| a simple trait to add these behaviors. Why don't you explore it?
|
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
use AuthenticatesAndRegistersUsers, ThrottlesLogins;
|
|
|
|
|
2015-08-05 15:59:39 -04:00
|
|
|
protected $redirectPath = '/';
|
2015-08-05 16:16:10 -04:00
|
|
|
protected $redirectAfterLogout = '/login';
|
2016-01-11 17:41:05 -05:00
|
|
|
protected $username = 'email';
|
|
|
|
|
2015-08-05 15:59:39 -04:00
|
|
|
|
2015-09-04 12:50:52 -04:00
|
|
|
protected $socialAuthService;
|
2015-09-05 15:25:57 -04:00
|
|
|
protected $emailConfirmationService;
|
|
|
|
protected $userRepo;
|
2015-08-05 15:59:39 -04:00
|
|
|
|
2015-07-12 15:01:42 -04:00
|
|
|
/**
|
|
|
|
* Create a new authentication controller instance.
|
2015-09-05 15:25:57 -04:00
|
|
|
* @param SocialAuthService $socialAuthService
|
|
|
|
* @param EmailConfirmationService $emailConfirmationService
|
|
|
|
* @param UserRepo $userRepo
|
2015-07-12 15:01:42 -04:00
|
|
|
*/
|
2015-09-05 15:25:57 -04:00
|
|
|
public function __construct(SocialAuthService $socialAuthService, EmailConfirmationService $emailConfirmationService, UserRepo $userRepo)
|
2015-07-12 15:01:42 -04:00
|
|
|
{
|
2015-09-06 07:14:32 -04:00
|
|
|
$this->middleware('guest', ['only' => ['getLogin', 'postLogin', 'getRegister', 'postRegister']]);
|
2015-09-04 12:50:52 -04:00
|
|
|
$this->socialAuthService = $socialAuthService;
|
2015-09-05 15:25:57 -04:00
|
|
|
$this->emailConfirmationService = $emailConfirmationService;
|
|
|
|
$this->userRepo = $userRepo;
|
2016-01-11 17:41:05 -05:00
|
|
|
$this->username = config('auth.method') === 'standard' ? 'email' : 'username';
|
2015-09-05 15:25:57 -04:00
|
|
|
parent::__construct();
|
2015-07-12 15:01:42 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get a validator for an incoming registration request.
|
2015-09-04 12:16:58 -04:00
|
|
|
* @param array $data
|
2015-07-12 15:01:42 -04:00
|
|
|
* @return \Illuminate\Contracts\Validation\Validator
|
|
|
|
*/
|
|
|
|
protected function validator(array $data)
|
|
|
|
{
|
|
|
|
return Validator::make($data, [
|
2015-09-04 12:16:58 -04:00
|
|
|
'name' => 'required|max:255',
|
|
|
|
'email' => 'required|email|max:255|unique:users',
|
2015-09-05 15:25:57 -04:00
|
|
|
'password' => 'required|min:6',
|
2015-07-12 15:01:42 -04:00
|
|
|
]);
|
|
|
|
}
|
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
protected function checkRegistrationAllowed()
|
|
|
|
{
|
2015-09-06 07:14:32 -04:00
|
|
|
if (!\Setting::get('registration-enabled')) {
|
2015-09-05 15:25:57 -04:00
|
|
|
throw new UserRegistrationException('Registrations are currently disabled.', '/login');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-09-05 12:42:05 -04:00
|
|
|
/**
|
|
|
|
* Show the application registration form.
|
|
|
|
* @return \Illuminate\Http\Response
|
|
|
|
*/
|
|
|
|
public function getRegister()
|
|
|
|
{
|
2015-09-05 15:25:57 -04:00
|
|
|
$this->checkRegistrationAllowed();
|
2015-09-05 12:42:05 -04:00
|
|
|
$socialDrivers = $this->socialAuthService->getActiveDrivers();
|
|
|
|
return view('auth.register', ['socialDrivers' => $socialDrivers]);
|
|
|
|
}
|
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
/**
|
|
|
|
* Handle a registration request for the application.
|
|
|
|
* @param \Illuminate\Http\Request $request
|
|
|
|
* @return \Illuminate\Http\Response
|
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
|
|
|
public function postRegister(Request $request)
|
|
|
|
{
|
|
|
|
$this->checkRegistrationAllowed();
|
|
|
|
$validator = $this->validator($request->all());
|
|
|
|
|
|
|
|
if ($validator->fails()) {
|
|
|
|
$this->throwValidationException(
|
|
|
|
$request, $validator
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
$userData = $request->all();
|
|
|
|
return $this->registerUser($userData);
|
|
|
|
}
|
|
|
|
|
2016-01-11 17:41:05 -05:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Overrides the action when a user is authenticated.
|
|
|
|
* If the user authenticated but does not exist in the user table we create them.
|
|
|
|
* @param Request $request
|
|
|
|
* @param Authenticatable $user
|
|
|
|
* @return \Illuminate\Http\RedirectResponse
|
|
|
|
*/
|
|
|
|
protected function authenticated(Request $request, Authenticatable $user)
|
|
|
|
{
|
2016-01-15 18:21:47 -05:00
|
|
|
// Explicitly log them out for now if they do no exist.
|
|
|
|
if (!$user->exists) auth()->logout($user);
|
|
|
|
|
|
|
|
if (!$user->exists && $user->email === null && !$request->has('email')) {
|
2016-01-13 17:22:30 -05:00
|
|
|
$request->flash();
|
|
|
|
session()->flash('request-email', true);
|
|
|
|
return redirect('/login');
|
|
|
|
}
|
|
|
|
|
2016-01-15 18:21:47 -05:00
|
|
|
if (!$user->exists && $user->email === null && $request->has('email')) {
|
2016-01-13 17:22:30 -05:00
|
|
|
$user->email = $request->get('email');
|
|
|
|
}
|
|
|
|
|
2016-01-15 18:21:47 -05:00
|
|
|
if (!$user->exists) {
|
2016-01-11 17:41:05 -05:00
|
|
|
$user->save();
|
|
|
|
$this->userRepo->attachDefaultRole($user);
|
|
|
|
auth()->login($user);
|
|
|
|
}
|
2016-01-13 17:22:30 -05:00
|
|
|
|
2016-01-11 17:41:05 -05:00
|
|
|
return redirect()->intended($this->redirectPath());
|
|
|
|
}
|
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
/**
|
|
|
|
* Register a new user after a registration callback.
|
|
|
|
* @param $socialDriver
|
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
|
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
|
|
|
protected function socialRegisterCallback($socialDriver)
|
|
|
|
{
|
|
|
|
$socialUser = $this->socialAuthService->handleRegistrationCallback($socialDriver);
|
|
|
|
$socialAccount = $this->socialAuthService->fillSocialAccount($socialDriver, $socialUser);
|
|
|
|
|
|
|
|
// Create an array of the user data to create a new user instance
|
|
|
|
$userData = [
|
|
|
|
'name' => $socialUser->getName(),
|
|
|
|
'email' => $socialUser->getEmail(),
|
|
|
|
'password' => str_random(30)
|
|
|
|
];
|
|
|
|
return $this->registerUser($userData, $socialAccount);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* The registrations flow for all users.
|
|
|
|
* @param array $userData
|
|
|
|
* @param bool|false|SocialAccount $socialAccount
|
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
|
|
|
|
* @throws UserRegistrationException
|
2015-09-10 14:31:09 -04:00
|
|
|
* @throws \BookStack\Exceptions\ConfirmationEmailException
|
2015-09-06 07:14:32 -04:00
|
|
|
*/
|
|
|
|
protected function registerUser(array $userData, $socialAccount = false)
|
|
|
|
{
|
|
|
|
if (\Setting::get('registration-restrict')) {
|
2015-09-05 15:25:57 -04:00
|
|
|
$restrictedEmailDomains = explode(',', str_replace(' ', '', \Setting::get('registration-restrict')));
|
2015-09-06 07:14:32 -04:00
|
|
|
$userEmailDomain = $domain = substr(strrchr($userData['email'], "@"), 1);
|
|
|
|
if (!in_array($userEmailDomain, $restrictedEmailDomains)) {
|
2015-09-05 15:25:57 -04:00
|
|
|
throw new UserRegistrationException('That email domain does not have access to this application', '/register');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
$newUser = $this->userRepo->registerNew($userData);
|
|
|
|
if ($socialAccount) {
|
|
|
|
$newUser->socialAccounts()->save($socialAccount);
|
|
|
|
}
|
2015-09-05 15:25:57 -04:00
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
if (\Setting::get('registration-confirmation') || \Setting::get('registration-restrict')) {
|
2015-09-05 15:25:57 -04:00
|
|
|
$newUser->email_confirmed = false;
|
|
|
|
$newUser->save();
|
|
|
|
$this->emailConfirmationService->sendConfirmation($newUser);
|
|
|
|
return redirect('/register/confirm');
|
|
|
|
}
|
|
|
|
|
2015-09-10 15:28:53 -04:00
|
|
|
$newUser->email_confirmed = true;
|
2016-01-17 10:20:07 -05:00
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
auth()->login($newUser);
|
2015-09-06 07:14:32 -04:00
|
|
|
session()->flash('success', 'Thanks for signing up! You are now registered and signed in.');
|
2015-09-05 15:25:57 -04:00
|
|
|
return redirect($this->redirectPath());
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2016-01-13 17:22:30 -05:00
|
|
|
* Show the page to tell the user to check their email
|
2015-09-05 15:25:57 -04:00
|
|
|
* and confirm their address.
|
|
|
|
*/
|
|
|
|
public function getRegisterConfirmation()
|
|
|
|
{
|
|
|
|
return view('auth/register-confirm');
|
|
|
|
}
|
|
|
|
|
2015-09-21 15:54:11 -04:00
|
|
|
/**
|
|
|
|
* View the confirmation email as a standard web page.
|
|
|
|
* @param $token
|
|
|
|
* @return \Illuminate\View\View
|
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
|
|
|
public function viewConfirmEmail($token)
|
|
|
|
{
|
|
|
|
$confirmation = $this->emailConfirmationService->getEmailConfirmationFromToken($token);
|
|
|
|
return view('emails/email-confirmation', ['token' => $confirmation->token]);
|
|
|
|
}
|
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
/**
|
|
|
|
* Confirms an email via a token and logs the user into the system.
|
|
|
|
* @param $token
|
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
|
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
|
|
|
public function confirmEmail($token)
|
|
|
|
{
|
|
|
|
$confirmation = $this->emailConfirmationService->getEmailConfirmationFromToken($token);
|
|
|
|
$user = $confirmation->user;
|
|
|
|
$user->email_confirmed = true;
|
|
|
|
$user->save();
|
|
|
|
auth()->login($confirmation->user);
|
|
|
|
session()->flash('success', 'Your email has been confirmed!');
|
|
|
|
$this->emailConfirmationService->deleteConfirmationsByUser($user);
|
|
|
|
return redirect($this->redirectPath);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Shows a notice that a user's email address has not been confirmed,
|
|
|
|
* Also has the option to re-send the confirmation email.
|
|
|
|
* @return \Illuminate\View\View
|
|
|
|
*/
|
|
|
|
public function showAwaitingConfirmation()
|
|
|
|
{
|
|
|
|
return view('auth/user-unconfirmed');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Resend the confirmation email
|
|
|
|
* @param Request $request
|
|
|
|
* @return \Illuminate\View\View
|
|
|
|
*/
|
|
|
|
public function resendConfirmation(Request $request)
|
|
|
|
{
|
|
|
|
$this->validate($request, [
|
|
|
|
'email' => 'required|email|exists:users,email'
|
|
|
|
]);
|
|
|
|
$user = $this->userRepo->getByEmail($request->get('email'));
|
|
|
|
$this->emailConfirmationService->sendConfirmation($user);
|
2016-01-13 17:22:30 -05:00
|
|
|
session()->flash('success', 'Confirmation email resent, Please check your inbox.');
|
2015-09-05 15:25:57 -04:00
|
|
|
return redirect('/register/confirm');
|
|
|
|
}
|
|
|
|
|
2015-09-04 12:16:58 -04:00
|
|
|
/**
|
|
|
|
* Show the application login form.
|
|
|
|
* @return \Illuminate\Http\Response
|
|
|
|
*/
|
|
|
|
public function getLogin()
|
|
|
|
{
|
2015-09-04 12:50:52 -04:00
|
|
|
$socialDrivers = $this->socialAuthService->getActiveDrivers();
|
2016-01-11 17:41:05 -05:00
|
|
|
$authMethod = config('auth.method');
|
2016-01-09 14:23:35 -05:00
|
|
|
return view('auth/login', ['socialDrivers' => $socialDrivers, 'authMethod' => $authMethod]);
|
2015-09-04 12:16:58 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Redirect to the relevant social site.
|
|
|
|
* @param $socialDriver
|
|
|
|
* @return \Symfony\Component\HttpFoundation\RedirectResponse
|
|
|
|
*/
|
|
|
|
public function getSocialLogin($socialDriver)
|
|
|
|
{
|
2015-09-06 07:14:32 -04:00
|
|
|
session()->put('social-callback', 'login');
|
2015-09-04 15:40:36 -04:00
|
|
|
return $this->socialAuthService->startLogIn($socialDriver);
|
2015-09-04 12:16:58 -04:00
|
|
|
}
|
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
/**
|
2016-01-09 14:23:35 -05:00
|
|
|
* Redirect to the social site for authentication intended to register.
|
2015-09-06 07:14:32 -04:00
|
|
|
* @param $socialDriver
|
|
|
|
* @return mixed
|
|
|
|
*/
|
|
|
|
public function socialRegister($socialDriver)
|
|
|
|
{
|
|
|
|
$this->checkRegistrationAllowed();
|
|
|
|
session()->put('social-callback', 'register');
|
|
|
|
return $this->socialAuthService->startRegister($socialDriver);
|
|
|
|
}
|
|
|
|
|
2015-09-04 12:16:58 -04:00
|
|
|
/**
|
|
|
|
* The callback for social login services.
|
|
|
|
* @param $socialDriver
|
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
|
2015-09-04 15:40:36 -04:00
|
|
|
* @throws SocialSignInException
|
2015-09-04 12:16:58 -04:00
|
|
|
*/
|
|
|
|
public function socialCallback($socialDriver)
|
|
|
|
{
|
2015-09-06 07:14:32 -04:00
|
|
|
if (session()->has('social-callback')) {
|
|
|
|
$action = session()->pull('social-callback');
|
|
|
|
if ($action == 'login') {
|
|
|
|
return $this->socialAuthService->handleLoginCallback($socialDriver);
|
|
|
|
} elseif ($action == 'register') {
|
|
|
|
return $this->socialRegisterCallback($socialDriver);
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
throw new SocialSignInException('No action defined', '/login');
|
|
|
|
}
|
|
|
|
return redirect()->back();
|
2015-09-04 15:40:36 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Detach a social account from a user.
|
|
|
|
* @param $socialDriver
|
|
|
|
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
|
|
|
|
*/
|
|
|
|
public function detachSocialAccount($socialDriver)
|
|
|
|
{
|
|
|
|
return $this->socialAuthService->detachSocialAccount($socialDriver);
|
2015-09-04 12:16:58 -04:00
|
|
|
}
|
|
|
|
|
2015-07-12 15:01:42 -04:00
|
|
|
}
|