|
2 | 2 |
|
3 | 3 | namespace App\Http\Controllers; |
4 | 4 |
|
| 5 | +use Illuminate\Foundation\Auth\ThrottlesLogins; |
5 | 6 | use Illuminate\Http\Request; |
| 7 | +use Illuminate\Http\Response; |
6 | 8 | use Auth; |
7 | | -use JWTException; |
| 9 | +use Lang; |
8 | 10 |
|
9 | 11 | class LoginController extends Controller |
10 | 12 | { |
| 13 | + use ThrottlesLogins; |
| 14 | + |
11 | 15 | public function login(Request $request) |
12 | 16 | { |
13 | | - // grab credentials from the request |
| 17 | + if ($this->hasTooManyLoginAttempts($request)) { |
| 18 | + $this->fireLockoutEvent($request); |
| 19 | + |
| 20 | + return $this->sendLockoutResponse($request); |
| 21 | + } |
| 22 | + |
14 | 23 | $credentials = $request->only('email', 'password'); |
15 | 24 |
|
16 | | - try { |
17 | | - // attempt to verify the credentials and create a token for the user |
18 | | - if (!$token = Auth::guard('api')->attempt($credentials)) { |
19 | | - return response()->json(['messages' => ['E-mail ou senha não conferem']], 401); |
20 | | - } |
21 | | - } catch (JWTException $e) { |
22 | | - // something went wrong whilst attempting to encode the token |
23 | | - return response()->json(['messages' => ['Não foi possível gerar o token']], 500); |
| 25 | + if ($token = Auth::guard('api')->attempt($credentials)) { |
| 26 | + return $this->sendLoginResponse($request, $token); |
24 | 27 | } |
25 | 28 |
|
| 29 | + $this->incrementLoginAttempts($request); |
| 30 | + |
| 31 | + return $this->sendFailedLoginResponse($request); |
| 32 | + } |
| 33 | + |
| 34 | + protected function sendLoginResponse(Request $request, $token) |
| 35 | + { |
| 36 | + $this->clearLoginAttempts($request); |
| 37 | + |
26 | 38 | $user = Auth::guard('api')->user(); |
27 | 39 |
|
28 | | - // all good so return the token |
29 | 40 | return response()->json(compact('token', 'user')); |
30 | 41 | } |
| 42 | + |
| 43 | + protected function sendFailedLoginResponse(Request $request) |
| 44 | + { |
| 45 | + $message = Lang::get('auth.failed'); |
| 46 | + |
| 47 | + return response()->json(['messages' => [$message]], 401); |
| 48 | + } |
| 49 | + |
| 50 | + public function sendLockoutResponse(Request $request) |
| 51 | + { |
| 52 | + $seconds = $this->limiter()->availableIn( |
| 53 | + $this->throttleKey($request) |
| 54 | + ); |
| 55 | + |
| 56 | + $message = Lang::get('auth.throttle', ['seconds' => $seconds]); |
| 57 | + |
| 58 | + return response()->json(['messages' => [$message]], Response::HTTP_TOO_MANY_REQUESTS); |
| 59 | + } |
| 60 | + |
| 61 | + public function username() |
| 62 | + { |
| 63 | + return 'email'; |
| 64 | + } |
31 | 65 | } |
0 commit comments