esoko/rvr-nextgen
esoko/rvr-nextgen
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 5 Wiki Activity

Compare commits

base: esoko:6d11be728e2c2939b9cd26e148bbe6a78ff52de7
Branches Tags
esoko:master
esoko:Release_2403.1
esoko:Release_2309.3
esoko:Release_2309.2.1
esoko:Release_2309.2
esoko:Release_2309.1
esoko:Release_2307.4.1
esoko:Release_2307.4
esoko:Release_2307.3
esoko:Release_2307.2
esoko:Release_2307.1
esoko:Release_2306.1
esoko:Release_2305.7.1
esoko:Release_2305.7
esoko:Release_2305.6
esoko:Release_2305.5
esoko:Release_2305.4.1
esoko:Release_2305.4
esoko:Release_2305.3
esoko:Release_2305.2
esoko:Release_2305.1
esoko:Release_2304.15
esoko:Release_2304.14
esoko:Release_2304.13
esoko:Release_2304.12
esoko:Release_2304.11
esoko:Release_2304.10
esoko:Release_2304.9
esoko:Release_2304.8
esoko:Release_2304.7
esoko:Release_2304.6
esoko:Release_2304.5
esoko:Release_2304.4
esoko:Release_2304.3
esoko:Release_2304.2
esoko:Release_2304.1
..
compare: esoko:862daea29c0042bd0908b09e016cd8acaf40380a
Branches Tags
esoko:master
esoko:Release_2403.1
esoko:Release_2309.3
esoko:Release_2309.2.1
esoko:Release_2309.2
esoko:Release_2309.1
esoko:Release_2307.4.1
esoko:Release_2307.4
esoko:Release_2307.3
esoko:Release_2307.2
esoko:Release_2307.1
esoko:Release_2306.1
esoko:Release_2305.7.1
esoko:Release_2305.7
esoko:Release_2305.6
esoko:Release_2305.5
esoko:Release_2305.4.1
esoko:Release_2305.4
esoko:Release_2305.3
esoko:Release_2305.2
esoko:Release_2305.1
esoko:Release_2304.15
esoko:Release_2304.14
esoko:Release_2304.13
esoko:Release_2304.12
esoko:Release_2304.11
esoko:Release_2304.10
esoko:Release_2304.9
esoko:Release_2304.8
esoko:Release_2304.7
esoko:Release_2304.6
esoko:Release_2304.5
esoko:Release_2304.4
esoko:Release_2304.3
esoko:Release_2304.2
esoko:Release_2304.1

No commits in common. "6d11be728e2c2939b9cd26e148bbe6a78ff52de7" and "862daea29c0042bd0908b09e016cd8acaf40380a" have entirely different histories.
6d11be728e ... 862daea29c

6 changed files with 32 additions and 44 deletions
Show Stats Expand all files Collapse all files

2
public/index.php
View File

@ -29,7 +29,7 @@ if ($match !== null) {
} }
if (!$authorized) { if (!$authorized) {
Container::$request->session()->set('redirect_after_login', '/' . $url); Container::$request->session()->set('redirect_after_login', $url);
$response = new Redirect(Container::$routeCollection->getRoute('login')->generateLink(), IRedirect::TEMPORARY); $response = new Redirect(Container::$routeCollection->getRoute('login')->generateLink(), IRedirect::TEMPORARY);
header('Location: ' . $response->getUrl(), true, $response->getHttpCode()); header('Location: ' . $response->getUrl(), true, $response->getHttpCode());
return; return;

54
src/Controller/LoginController.php
View File

@ -41,7 +41,7 @@ class LoginController
return new Redirect(\Container::$routeCollection->getRoute('index')->generateLink(), IRedirect::TEMPORARY); return new Redirect(\Container::$routeCollection->getRoute('index')->generateLink(), IRedirect::TEMPORARY);
} }
return new HtmlContent('login/login', ['redirectUrl' => $this->getRedirectUrl()]); return new HtmlContent('login/login');
} }
public function getGoogleLoginRedirect(): IRedirect public function getGoogleLoginRedirect(): IRedirect
@ -91,13 +91,12 @@ class LoginController
$user = $this->userRepository->getById($resetter->getUserId()); $user = $this->userRepository->getById($resetter->getUserId());
return new HtmlContent('login/reset_password', ['success' => true, 'token' => $token, 'email' => $user->getEmail(), 'redirectUrl' => $this->getRedirectUrl()]); return new HtmlContent('login/reset_password', ['success' => true, 'token' => $token, 'email' => $user->getEmail()]);
} }
public function login(): IContent public function login(): IContent
{ {
if ($this->request->user() !== null) { if ($this->request->user() !== null) {
$this->deleteRedirectUrl();
return new JsonContent(['success' => true]); return new JsonContent(['success' => true]);
} }
@ -113,21 +112,23 @@ class LoginController
$this->request->setUser($user); $this->request->setUser($user);
$this->deleteRedirectUrl();
return new JsonContent(['success' => true]); return new JsonContent(['success' => true]);
} }
public function loginWithGoogle() public function loginWithGoogle()
{ {
$defaultError = 'Authentication with Google failed. Please <a href="/login/google" title="Login with Google">try again</a>!'; $redirectUrl = $this->request->session()->get('redirect_after_login');
if ($redirectUrl === null) {
$redirectUrl = \Container::$routeCollection->getRoute('index')->generateLink();
}
if ($this->request->user() !== null) { if ($this->request->user() !== null) {
$this->deleteRedirectUrl(); $this->request->session()->delete('redirect_after_login');
return new Redirect($this->getRedirectUrl(), IRedirect::TEMPORARY); return new Redirect($redirectUrl, IRedirect::TEMPORARY);
} }
if ($this->request->query('state') !== $this->request->session()->get('oauth_state')) { if ($this->request->query('state') !== $this->request->session()->get('oauth_state')) {
return new HtmlContent('login/google_login_error', ['error' => $defaultError]); return new HtmlContent('login/google_login');
} }
$oAuth = new GoogleOAuth(new Request()); $oAuth = new GoogleOAuth(new Request());
@ -137,29 +138,33 @@ class LoginController
); );
if (!isset($tokenData['id_token'])) { if (!isset($tokenData['id_token'])) {
return new HtmlContent('login/google_login_error', ['error' => $defaultError]); return new HtmlContent('login/google_login');
} }
$jwtParser = new JwtParser($tokenData['id_token']); $jwtParser = new JwtParser($tokenData['id_token']);
$idToken = $jwtParser->getPayload(); $idToken = $jwtParser->getPayload();
if ($idToken['nonce'] !== $this->request->session()->get('oauth_nonce')) { if ($idToken['nonce'] !== $this->request->session()->get('oauth_nonce')) {
return new HtmlContent('login/google_login_error', ['error' => $defaultError]); return new HtmlContent('login/google_login');
} }
if (!$idToken['email_verified']) { if (!$idToken['email_verified']) {
return new HtmlContent('login/google_login_error', ['error' => $defaultError]); return new HtmlContent('login/google_login');
} }
$user = $this->userRepository->getByGoogleSub($idToken['sub']); $user = $this->userRepository->getByGoogleSub($idToken['sub']);
if ($user === null) { if ($user === null) {
return new HtmlContent('login/google_login_error', ['error' => 'No user found for this Google account.']); return new JsonContent([
'error' => [
'errorText' => 'No user found for this Google account.'
]
]);
} }
$this->request->setUser($user); $this->request->setUser($user);
$this->deleteRedirectUrl(); $this->request->session()->delete('redirect_after_login');
return new Redirect($this->getRedirectUrl(), IRedirect::TEMPORARY); return new Redirect($redirectUrl, IRedirect::TEMPORARY);
} }
public function logout(): IRedirect public function logout(): IRedirect
@ -172,10 +177,9 @@ class LoginController
public function requestPasswordReset(): IContent public function requestPasswordReset(): IContent
{ {
if ($this->request->user() !== null) { if ($this->request->user() !== null) {
$this->deleteRedirectUrl();
return new JsonContent([ return new JsonContent([
'redirect' => [ 'redirect' => [
'target' => $this->getRedirectUrl() 'target' => '/' . \Container::$routeCollection->getRoute('home')->generateLink()
] ]
]); ]);
} }
@ -236,10 +240,9 @@ class LoginController
public function resetPassword(): IContent public function resetPassword(): IContent
{ {
if ($this->request->user() !== null) { if ($this->request->user() !== null) {
$this->deleteRedirectUrl();
return new JsonContent([ return new JsonContent([
'redirect' => [ 'redirect' => [
'target' => $this->getRedirectUrl() 'target' => '/' . \Container::$routeCollection->getRoute('home')->generateLink()
] ]
]); ]);
} }
@ -280,7 +283,6 @@ class LoginController
$this->request->setUser($user); $this->request->setUser($user);
$this->deleteRedirectUrl();
return new JsonContent(['success' => true]); return new JsonContent(['success' => true]);
} }
@ -297,18 +299,4 @@ class LoginController
]); ]);
$mail->send(); $mail->send();
} }
private function getRedirectUrl(): string
{
$redirectUrl = $this->request->session()->get('redirect_after_login');
if ($redirectUrl === null) {
return \Container::$routeCollection->getRoute('index')->generateLink();
}
return $redirectUrl;
}
private function deleteRedirectUrl(): void
{
$this->request->session()->delete('redirect_after_login');
}
} }

8
views/login/google_login.php Normal file
View File

@ -0,0 +1,8 @@
@extends(templates/layout_normal)
@section(main)
<h2>Login up with Google</h2>
<div class="box">
<p class="error justify">Authentication with Google failed. Please <a href="/login/google" title="Login with Google">try again</a>!</p>
</div>
@endsection

8
views/login/google_login_error.php
View File

@ -1,8 +0,0 @@
@extends(templates/layout_normal)
@section(main)
<h2>Login up with Google</h2>
<div class="box">
<p class="error justify"><?= $error ?></p>
</div>
@endsection

2
views/login/login.php
View File

@ -3,7 +3,7 @@
@section(main) @section(main)
<h2>Login</h2> <h2>Login</h2>
<div class="box"> <div class="box">
<form id="loginForm" action="/login" method="post" data-redirect-on-success="<?= $redirectUrl ?>"> <form id="loginForm" action="/login" method="post" data-redirect-on-success="/">
<input type="email" class="text big fullWidth" name="email" placeholder="Email address" required autofocus> <input type="email" class="text big fullWidth" name="email" placeholder="Email address" required autofocus>
<input type="password" class="text big fullWidth marginTop" name="password" placeholder="Password" required minlength="6"> <input type="password" class="text big fullWidth marginTop" name="password" placeholder="Password" required minlength="6">
<p id="loginFormError" class="formError justify marginTop"></p> <p id="loginFormError" class="formError justify marginTop"></p>

2
views/login/reset_password.php
View File

@ -4,7 +4,7 @@
<h2>Reset password</h2> <h2>Reset password</h2>
<div class="box"> <div class="box">
<?php if ($success) : ?> <?php if ($success) : ?>
<form id="resetPasswordForm" action="/password/reset/<?= $token ?>" method="post" data-redirect-on-success="<?= $redirectUrl ?>"> <form id="resetPasswordForm" action="/password/reset/<?= $token ?>" method="post" data-redirect-on-success="/">
<input type="email" class="text big fullWidth" name="email" placeholder="Email address" value="<?= $email ?>" disabled> <input type="email" class="text big fullWidth" name="email" placeholder="Email address" value="<?= $email ?>" disabled>
<input type="password" class="text big fullWidth marginTop" name="password" placeholder="Password" required minlength="6" autofocus> <input type="password" class="text big fullWidth marginTop" name="password" placeholder="Password" required minlength="6" autofocus>
<input type="password" class="text big fullWidth marginTop" name="password_confirm" placeholder="Password confirmation" required minlength="6"> <input type="password" class="text big fullWidth marginTop" name="password_confirm" placeholder="Password confirmation" required minlength="6">