token support, api fixes and security, dark mode

2024-12-07 01:58:27 -05:00
parent b93d0259e4
commit 485d85cb0a
26 changed files with 934 additions and 85 deletions
--- a/app/controllers/api/auth.php
+++ b/app/controllers/api/auth.php
@ -0,0 +1,38 @@
+<?php
+/**
+ * app/controllers/api/auth.php
+ *
+ * This is the api authentication controller.
+ *
+ * @version 3.0
+ * @author  Joey Kimsey <Joey@thetempusproject.com>
+ * @link    https://TheTempusProject.com
+ * @license https://opensource.org/licenses/MIT [MIT LICENSE]
+ */
+namespace TheTempusProject\Controllers\Api;
+
+use TheTempusProject\Models\User;
+use TheTempusProject\Classes\ApiController;
+use TheTempusProject\Houdini\Classes\Views;
+use TheTempusProject\Models\Token;
+
+class Auth extends ApiController {
+    public static $tokens;
+
+    public function __construct() {
+        parent::__construct();
+        self::$tokens = new Token;
+    }
+
+    public function refresh() {
+        $token = self::$tokens->refresh( self::$authToken->ID );
+        if ( empty( $token ) ) {
+            $responseType = 'error';
+            $response = 'IRDK';
+        } else {
+            $responseType = 'token';
+            $response = $token;
+        }
+        Views::view( 'api.response', ['response' => json_encode( [ $responseType => $response ], true )]);
+    }
+}
--- a/app/controllers/api/login.php
+++ b/app/controllers/api/login.php
@ -0,0 +1,51 @@
+<?php
+/**
+ * app/controllers/api/auth.php
+ *
+ * This is the api authentication controller.
+ *
+ * @version 3.0
+ * @author  Joey Kimsey <Joey@thetempusproject.com>
+ * @link    https://TheTempusProject.com
+ * @license https://opensource.org/licenses/MIT [MIT LICENSE]
+ */
+namespace TheTempusProject\Controllers\Api;
+
+use TheTempusProject\Classes\ApiController;
+use TheTempusProject\Houdini\Classes\Views;
+use TheTempusProject\Models\Token;
+use TheTempusProject\Models\User;
+use TheTempusProject\Houdini\Classes\Template;
+use TheTempusProject\Classes\Forms;
+use TheTempusProject\Bedrock\Functions\Input;
+
+class Login extends ApiController {
+    public static $tokens;
+    public static $user;
+
+    public function __construct() {
+        parent::__construct( false );
+        self::$tokens = new Token;
+        self::$user = new User;
+        // Template::addHeader( 'Access-Control-Allow-Origin: *' );
+        // Template::addHeader( 'Content-Type: application/json; charset=utf-8' );
+    }
+
+    public function index() {
+        header('Access-Control-Allow-Origin: *');
+        if ( !Forms::check( 'apiLogin' ) ) {
+            $responseType = 'error';
+            $response = 'malformed input1';
+            return Views::view( 'api.response', ['response' => json_encode( [ $responseType => $response ], true )]);
+        }
+        $user = self::$user->authorize( Input::post( 'username' ), Input::post( 'password' ) );
+        if ( ! $user ) {
+            $responseType = 'error';
+            $response = 'bad credentials';
+            return Views::view( 'api.response', ['response' => json_encode( [ $responseType => $response ], true )]);
+        }
+        $responseType = 'token';
+        $token = self::$tokens->findOrCreateUserToken( $user->ID );
+        return Views::view( 'api.response', ['response' => json_encode( [ $responseType => $token ], true )]);
+    }
+}