mirror of
https://github.com/pelican-dev/panel.git
synced 2025-05-20 00:34:44 +02:00
e1308cb04d
* update scramble * cleanup application api endpoints * cleanup client api endpoints * fix security schema and make docs homepage nicer * remove duplicate myclabs/deep-copy * style(api-docs): use Blade template and Tailwind for styling * Publish scramble view * Use localStorage theme instead of config * Update routes/docs.php Co-authored-by: Lance Pioch <git@lance.sh> --------- Co-authored-by: Quinten <67589015+QuintenQVD0@users.noreply.github.com> Co-authored-by: RMartinOscar <40749467+RMartinOscar@users.noreply.github.com> Co-authored-by: Lance Pioch <git@lance.sh>
83 lines
2.5 KiB
PHP
83 lines
2.5 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Api\Client;
|
|
|
|
use Illuminate\Auth\SessionGuard;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Http\Response;
|
|
use Illuminate\Auth\AuthManager;
|
|
use Illuminate\Http\JsonResponse;
|
|
use App\Facades\Activity;
|
|
use App\Services\Users\UserUpdateService;
|
|
use App\Http\Requests\Api\Client\Account\UpdateEmailRequest;
|
|
use App\Http\Requests\Api\Client\Account\UpdatePasswordRequest;
|
|
use App\Transformers\Api\Client\UserTransformer;
|
|
|
|
class AccountController extends ClientApiController
|
|
{
|
|
/**
|
|
* AccountController constructor.
|
|
*/
|
|
public function __construct(private AuthManager $manager, private UserUpdateService $updateService)
|
|
{
|
|
parent::__construct();
|
|
}
|
|
|
|
/**
|
|
* View account
|
|
*/
|
|
public function index(Request $request): array
|
|
{
|
|
return $this->fractal->item($request->user())
|
|
->transformWith($this->getTransformer(UserTransformer::class))
|
|
->toArray();
|
|
}
|
|
|
|
/**
|
|
* Update email
|
|
*
|
|
* Update the authenticated user's email address.
|
|
*/
|
|
public function updateEmail(UpdateEmailRequest $request): JsonResponse
|
|
{
|
|
$original = $request->user()->email;
|
|
$this->updateService->handle($request->user(), $request->validated());
|
|
|
|
if ($original !== $request->input('email')) {
|
|
Activity::event('user:account.email-changed')
|
|
->property(['old' => $original, 'new' => $request->input('email')])
|
|
->log();
|
|
}
|
|
|
|
return new JsonResponse([], Response::HTTP_NO_CONTENT);
|
|
}
|
|
|
|
/**
|
|
* Update password
|
|
*
|
|
* Update the authenticated user's password. All existing sessions will be logged
|
|
* out immediately.
|
|
*
|
|
* @throws \Throwable
|
|
*/
|
|
public function updatePassword(UpdatePasswordRequest $request): JsonResponse
|
|
{
|
|
$user = $this->updateService->handle($request->user(), $request->validated());
|
|
|
|
$guard = $this->manager->guard();
|
|
// If you do not update the user in the session you'll end up working with a
|
|
// cached copy of the user that does not include the updated password. Do this
|
|
// to correctly store the new user details in the guard and allow the logout
|
|
// other devices functionality to work.
|
|
$guard->setUser($user);
|
|
|
|
if ($guard instanceof SessionGuard) {
|
|
$guard->logoutOtherDevices($request->input('password'));
|
|
}
|
|
|
|
Activity::event('user:account.password-changed')->log();
|
|
|
|
return new JsonResponse([], Response::HTTP_NO_CONTENT);
|
|
}
|
|
}
|