3 changed files with 9 additions and 26 deletions
--- a/app/Http/Controllers/PublicUserController.php
+++ b/app/Http/Controllers/PublicUserController.php
@ -26,25 +26,7 @@ class PublicUserController extends Controller
            'password' => Hash::make($request->input('password'))
        ]);
        $user->save();
-        session()->put('user', $user->id);
+        session('user', $user->id);
        session()->save();
    }
-
-    public function login(Request $request)
-    {
-        $user = User::where([ 'email' => $request->input('email') ])->get();
-        if ($user->count() == 0) {
-            return response()
-                ->json('bad_password', 400);
-        }
-
-        $user = $user[0];
-        if (Hash::check($request->input('password'), $user->password)) {
-            session()->put('user', $user->id);
-            session()->save();
-            return;
-        }
-        return response()
-            ->json('bad_password', 400);
-    }
 }
--- a/public/openapi.yml
+++ b/public/openapi.yml
@ -94,8 +94,6 @@ paths:
    post:
      tags:
        - Users
-      description: |-
-        I know its not secure because anyone can reset anyones password. But here's a counterpoint: its not required to be secure, and i dont care
      requestBody:
        content:
          application/json:
@ -105,13 +103,17 @@ paths:
                email:
                  type: string
                  example: 'jdoe@example.com'
-                new_pass:
-                  type: string
-                  example: 'very_strong_password123456'
      responses:
        200:
          description: |-
-            The password is reset
+            A reset password link is sent to the email, if such an account exists.
+            
+            If no mailer is set and it is debug mode, link will be available in `X-Reset-Link`
+        400:
+          description: |-
+            Invalid email
+            
+            This error also might be sent by laravel if your body is corrupted
    
  /api/users/private/list:
    get:
--- a/routes/web.php
+++ b/routes/web.php
@ -10,7 +10,6 @@ Route::get('/', function() {
 Route::prefix('/api')->group(function() {
    Route::controller(PublicUserController::class)->prefix('/users')->group(function() {
        Route::put('/register', 'register');
-        Route::post('/login', 'login');
    });
 });