feat: add token expiration handling and update login request validation

aspirantzhang · aspirantzhang · commit 7ac3fcc98cf8 · 2025-04-05T11:32:48.000+08:00
diff --git a/contexts/Authorization/Application/Coordinators/AuthenticationCoordinator.php b/contexts/Authorization/Application/Coordinators/AuthenticationCoordinator.php
@@ -5,6 +5,7 @@
 namespace Contexts\Authorization\Application\Coordinators;
 
 use Contexts\Authorization\Application\DTOs\Authentication\LoginDTO;
+use Contexts\Authorization\Domain\Policies\TokenExpirationPolicy;
 use Contexts\Authorization\Domain\Repositories\UserRepository;
 use Contexts\Shared\Application\BaseCoordinator;
 
@@ -19,7 +20,8 @@ public function login(LoginDTO $dto)
         $user = $this->userRepository->getByEmailOrThrowAuthFailure($dto->email);
         $user->authenticate($dto->password);
 
-        $token = $this->userRepository->generateLoginToken($user);
+        $expiresAt = TokenExpirationPolicy::resolveExpiration($dto->remember);
+        $token = $this->userRepository->generateLoginToken($user, $expiresAt);
 
         $this->dispatchDomainEvents($user);
 
diff --git a/contexts/Authorization/Application/DTOs/Authentication/LoginDTO.php b/contexts/Authorization/Application/DTOs/Authentication/LoginDTO.php
@@ -9,13 +9,15 @@ class LoginDTO
     public function __construct(
         public readonly string $email,
         public readonly string $password,
+        public readonly bool $remember,
     ) {}
 
     public static function fromRequest(array $data): self
     {
         return new self(
             $data['email'],
             $data['password'],
+            $data['remember'] ?? false,
         );
     }
 }
diff --git a/contexts/Authorization/Domain/Policies/TokenExpirationPolicy.php b/contexts/Authorization/Domain/Policies/TokenExpirationPolicy.php
@@ -0,0 +1,17 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Contexts\Authorization\Domain\Policies;
+
+use Carbon\CarbonImmutable;
+
+class TokenExpirationPolicy
+{
+    public static function resolveExpiration(bool $remember): CarbonImmutable
+    {
+        return $remember ?
+            CarbonImmutable::now()->addWeeks(2) :
+            CarbonImmutable::now()->addDay();
+    }
+}
diff --git a/contexts/Authorization/Presentation/Requests/Authentication/LoginRequest.php b/contexts/Authorization/Presentation/Requests/Authentication/LoginRequest.php
@@ -13,6 +13,7 @@ public function rules(): array
         return [
             'email' => ['required', 'email', 'max:255'],
             'password' => ['required', 'string', 'max:255'],
+            'remember' => ['boolean'],
         ];
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -9,13 +9,15 @@ class LoginDTO`
`9`	`9`	`public function __construct(`
`10`	`10`	`public readonly string $email,`
`11`	`11`	`public readonly string $password,`
	`12`	`+ public readonly bool $remember,`
`12`	`13`	`) {}`
`13`	`14`
`14`	`15`	`public static function fromRequest(array $data): self`
`15`	`16`	`{`
`16`	`17`	`return new self(`
`17`	`18`	`$data['email'],`
`18`	`19`	`$data['password'],`
	`20`	`+ $data['remember'] ?? false,`
`19`	`21`	`);`
`20`	`22`	`}`
`21`	`23`	`}`
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@ public function rules(): array`
`13`	`13`	`return [`
`14`	`14`	`'email' => ['required', 'email', 'max:255'],`
`15`	`15`	`'password' => ['required', 'string', 'max:255'],`
	`16`	`+ 'remember' => ['boolean'],`
`16`	`17`	`];`
`17`	`18`	`}`
`18`	`19`	`}`