Compare commits
2 Commits
3c0a6007d0
...
ab7b5c0a97
Author | SHA1 | Date |
---|---|---|
b1ek | ab7b5c0a97 | |
b1ek | 55d9b7dc6b |
|
@ -26,7 +26,25 @@ class PublicUserController extends Controller
|
|||
'password' => Hash::make($request->input('password'))
|
||||
]);
|
||||
$user->save();
|
||||
session('user', $user->id);
|
||||
session()->put('user', $user->id);
|
||||
session()->save();
|
||||
}
|
||||
|
||||
public function login(Request $request)
|
||||
{
|
||||
$user = User::where([ 'email' => $request->input('email') ])->get();
|
||||
if ($user->count() == 0) {
|
||||
return response()
|
||||
->json('bad_password', 400);
|
||||
}
|
||||
|
||||
$user = $user[0];
|
||||
if (Hash::check($request->input('password'), $user->password)) {
|
||||
session()->put('user', $user->id);
|
||||
session()->save();
|
||||
return;
|
||||
}
|
||||
return response()
|
||||
->json('bad_password', 400);
|
||||
}
|
||||
}
|
||||
|
|
|
@ -94,6 +94,8 @@ paths:
|
|||
post:
|
||||
tags:
|
||||
- Users
|
||||
description: |-
|
||||
I know its not secure because anyone can reset anyones password. But here's a counterpoint: its not required to be secure, and i dont care
|
||||
requestBody:
|
||||
content:
|
||||
application/json:
|
||||
|
@ -103,17 +105,13 @@ paths:
|
|||
email:
|
||||
type: string
|
||||
example: 'jdoe@example.com'
|
||||
new_pass:
|
||||
type: string
|
||||
example: 'very_strong_password123456'
|
||||
responses:
|
||||
200:
|
||||
description: |-
|
||||
A reset password link is sent to the email, if such an account exists.
|
||||
|
||||
If no mailer is set and it is debug mode, link will be available in `X-Reset-Link`
|
||||
400:
|
||||
description: |-
|
||||
Invalid email
|
||||
|
||||
This error also might be sent by laravel if your body is corrupted
|
||||
The password is reset
|
||||
|
||||
/api/users/private/list:
|
||||
get:
|
||||
|
|
|
@ -10,6 +10,7 @@ Route::get('/', function() {
|
|||
Route::prefix('/api')->group(function() {
|
||||
Route::controller(PublicUserController::class)->prefix('/users')->group(function() {
|
||||
Route::put('/register', 'register');
|
||||
Route::post('/login', 'login');
|
||||
});
|
||||
});
|
||||
|
||||
|
|
Loading…
Reference in New Issue