2026-02-19 23:14:00 -06:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace App\Http\Controllers;
|
|
|
|
|
|
|
|
|
|
use App\Http\Requests\LoginRequest;
|
2026-04-03 00:39:37 -05:00
|
|
|
use App\Http\Requests\PasswordResetRequest;
|
2026-02-19 23:14:00 -06:00
|
|
|
use App\Http\Requests\RegisterRequest;
|
2026-04-03 00:39:37 -05:00
|
|
|
use App\Models\Invitation;
|
2026-04-09 18:30:16 -05:00
|
|
|
use App\Models\Role;
|
2026-02-19 23:14:00 -06:00
|
|
|
use App\Models\User;
|
|
|
|
|
use Illuminate\Http\JsonResponse;
|
|
|
|
|
use Illuminate\Http\Request;
|
|
|
|
|
use Illuminate\Support\Facades\Auth;
|
2026-04-03 00:39:37 -05:00
|
|
|
use Illuminate\Support\Facades\Password;
|
2026-02-19 23:14:00 -06:00
|
|
|
|
|
|
|
|
class AuthController extends Controller
|
|
|
|
|
{
|
|
|
|
|
public function register(RegisterRequest $request): JsonResponse
|
|
|
|
|
{
|
|
|
|
|
$user = User::create($request->validated());
|
|
|
|
|
|
2026-04-03 00:39:37 -05:00
|
|
|
Password::sendResetLink(['email' => $user->email]);
|
|
|
|
|
$this->processAcceptedInvitations($user);
|
2026-02-19 23:14:00 -06:00
|
|
|
|
|
|
|
|
return response()->json($user, 201);
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-03 00:39:37 -05:00
|
|
|
private function processAcceptedInvitations(User $user)
|
|
|
|
|
{
|
|
|
|
|
$invitations = Invitation::query()
|
|
|
|
|
->where('status', 'accepted_login_pending')
|
|
|
|
|
->where('email', $user->email)
|
|
|
|
|
->get();
|
|
|
|
|
|
2026-04-09 18:30:16 -05:00
|
|
|
$viewerRole = Role::query()->where('name', 'VIEWER')->value('id');
|
|
|
|
|
|
2026-04-03 00:39:37 -05:00
|
|
|
foreach ($invitations as $invitation) {
|
2026-04-09 18:30:16 -05:00
|
|
|
$user->sharedLists()->attach(
|
|
|
|
|
$invitation->movie_list_id,
|
|
|
|
|
['role_id' => $viewerRole]
|
|
|
|
|
);
|
2026-04-03 00:39:37 -05:00
|
|
|
$invitation->update(['status' => 'accepted']);
|
|
|
|
|
$invitation->delete();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function forgotPassword(Request $request)
|
|
|
|
|
{
|
|
|
|
|
$request->validate(['email' => 'required|email']);
|
|
|
|
|
|
|
|
|
|
Password::sendResetLink(['email' => $request->email]);
|
|
|
|
|
|
|
|
|
|
return response()->json(['message' => 'Password reset link sent!']);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function resetPassword(PasswordResetRequest $request)
|
|
|
|
|
{
|
|
|
|
|
$updatedUser = null;
|
|
|
|
|
|
|
|
|
|
$status = Password::reset($request->validated(), function (User $user, string $password) use (&$updatedUser) {
|
|
|
|
|
$user->forceFill(['password' => $password])->save();
|
|
|
|
|
$updatedUser = $user;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if ($status === Password::PASSWORD_RESET && $updatedUser) {
|
|
|
|
|
Auth::login($updatedUser);
|
|
|
|
|
|
|
|
|
|
return response()->json(['message' => 'Password reset successfully.']);
|
|
|
|
|
} elseif ($status === Password::INVALID_TOKEN) {
|
|
|
|
|
return response()->json(['message' => 'Token expired'], 401);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return response()->json(['message' => 'Unable to reset password'], 400);
|
|
|
|
|
}
|
|
|
|
|
|
2026-02-19 23:14:00 -06:00
|
|
|
public function login(LoginRequest $request): JsonResponse
|
|
|
|
|
{
|
|
|
|
|
if (! Auth::attempt($request->validated())) {
|
|
|
|
|
return response()->json(['message' => 'Invalid credentials.'], 401);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$request->session()->regenerate();
|
2026-04-03 00:39:37 -05:00
|
|
|
$user = Auth::user();
|
|
|
|
|
$this->processAcceptedInvitations($user);
|
2026-02-19 23:14:00 -06:00
|
|
|
|
2026-04-03 00:39:37 -05:00
|
|
|
return response()->json($user);
|
2026-02-19 23:14:00 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function logout(Request $request): JsonResponse
|
|
|
|
|
{
|
|
|
|
|
Auth::guard('web')->logout();
|
|
|
|
|
|
|
|
|
|
$request->session()->invalidate();
|
|
|
|
|
|
|
|
|
|
return response()->json(['message' => 'Logged out.']);
|
|
|
|
|
}
|
|
|
|
|
}
|
