src/Account/AuthService.php

<?php

namespace Lucent\Account;

use Carbon\Carbon;
use Illuminate\Contracts\Session\Session;
use Illuminate\Support\Facades\Mail;
use Illuminate\Support\Str;
use Lucent\Channel\ChannelService;
use Lucent\LucentException;
use Lucent\Mail\LoginMail;

readonly class AuthService
{

    public function __construct(
        private ChannelService $channelService,
        private UserRepo       $userRepo,
        public Session         $session,
    )
    {

    }


    public function currentUserId(): ?string
    {

        if (app()->runningInConsole()) {
            return config("lucent.systemUserId");
        } elseif(request()->segment(1) !== "lucent") {
            return config("lucent.systemUserId");
        } else {
            return $this->session->get("user.id");
        }

    }

    public
    function currentUserRoles(): array
    {
        return $this->session->get("user.roles") ?? [];
    }

    public
    function isLoggedIn(): bool
    {
        return !empty($this->currentUserId());
    }

    /**
     * @throws LucentException
     */
    public
    function login(string $email, string $token): void
    {

        $user = $this->userRepo->findByEmail(new Email($email));

        if ($user->isEmpty()) {
            throw new LucentException("Your account was not found");
        }

        if ($user->get()->isRemoved()) {
            throw new LucentException("Your account is not active");
        }

        if ($user->get()->mailToken !== $token) {
            throw new LucentException("Token has expired or is invalid");
        }

        if (Carbon::parse($user->get()->loggedInAt)->lte(Carbon::now()->subHours(1))) {
            throw new LucentException("Token has expired.");
        }

        $newUser = $user->get();
        $newUser->updatedAt = Carbon::now()->toJson();
        $newUser->mailToken = null;
        $this->userRepo->update($newUser);
        $this->session->put(["user" => $user->get()->safe()]);
    }

    public
    function refreshSession()
    {


        $user = $this->userRepo->findById($this->currentUserId());

        if ($user->isEmpty()) {
            throw new LucentException("Your account was not found");
        }

        if ($user->get()->isRemoved()) {
            throw new LucentException("Your account is not active");
        }

        $newUser = $user->get();
        $this->session->put(["user" => $user->get()->safe()]);
    }


    public
    function create(string $name, string $email, array $roles): User
    {
        $user = new User(
            id: (string)Str::uuid(),
            name: new Name($name),
            email: new Email($email),
            roles: $this->validateRoles($roles),
            createdAt: Carbon::now()->toJson(),
            updatedAt: Carbon::now()->toJson(),
            loggedInAt: Carbon::now()->toJson(),
            mailToken: Token::new(32),
        );

        $this->userRepo->insert($user);
        return $user;
    }


    public function sendLoginEmail(string $email): void
    {
        $emailAddress = (new Email($email));
        $user = $this->userRepo->findByEmail($emailAddress);

        if ($user->isEmpty()) {
            return;
        }

        if ($user->get()->isRemoved()) {
            return;
        }

        $newToken = $this->userRepo->updateLoginToken($user->get()->id);

        Mail::to($email)->send(
            new LoginMail(
                $email,
                $newToken,
                $this->channelService->channel->lucentUrl
            )
        );
    }


    /**
     * @throws LucentException
     */
    public
    function changeRoles(string $userId, array $roles): void
    {
        $user = $this->userRepo->findById($userId);

        if ($user->isEmpty()) {
            throw new LucentException("User not found");
        }

        $newUser = $user->get();
        $newUser->roles = $this->validateRoles($roles);
        $newUser->updatedAt = Carbon::now()->toJson();
        $this->userRepo->update($newUser);
    }

    /**
     * @throws LucentException
     */
    public
    function updateName(string $name): void
    {
        $name = (new Name($name));
        $this->userRepo->updateName($this->currentUserId(), $name);
        $user = $this->userRepo->findById($this->currentUserId());
        $this->session->put(["user" => $user->get()->safe()]);
    }

    /**
     * @throws LucentException
     */
    public
    function updateEmail(string $email): void
    {
        $email = (new Email($email));
        $user = $this->userRepo->findByEmail($email);
        if ($user->isDefined()) {
            throw new LucentException("Email already assigned to user");
        }

        $this->userRepo->updateEmail($this->currentUserId(), $email);
        $user = $this->userRepo->findById($this->currentUserId());
        $this->session->put(["user" => $user->get()->safe()]);
    }


    /**
     * @throws LucentException
     */
    public
    function invite(
        string $name,
        string $email,
        array  $roles
    ): User
    {
        $user = $this->create($name, $email, $roles);
        $this->sendLoginEmail($user->email);
        return $user;
    }

    /**
     * @throws LucentException
     */
    public
    function registerAdmin(
        string $name,
        string $email
    ): User
    {
        $user = $this->invite($name, $email, ["admin"]);
        $this->sendLoginEmail($user->email);
        return $user;
    }

    public
    function validateRoles(array $roles): array
    {
        return collect($roles)
            ->filter(fn(string $role) => in_array($role, $this->channelService->channel->roles))
            ->unique()
            ->values()
            ->toArray();
    }


}
init 2023-10-02 23:10:49 +03:00			`<?php`

			`namespace Lucent\Account;`

			`use Carbon\Carbon;`
			`use Illuminate\Contracts\Session\Session;`
			`use Illuminate\Support\Facades\Mail;`
			`use Illuminate\Support\Str;`
			`use Lucent\Channel\ChannelService;`
			`use Lucent\LucentException;`
			`use Lucent\Mail\LoginMail;`

			`readonly class AuthService`
			`{`

			`public function __construct(`
			`private ChannelService $channelService,`
			`private UserRepo $userRepo,`
			`public Session $session,`
			`)`
			`{`

			`}`

lucent config 2023-10-06 13:07:09 +03:00
init 2023-10-02 23:10:49 +03:00			`public function currentUserId(): ?string`
			`{`
fix auth 2024-01-15 16:32:24 +02:00
permissions 2023-10-17 22:57:25 +03:00			`if (app()->runningInConsole()) {`
lucent config 2023-10-06 13:07:09 +03:00			`return config("lucent.systemUserId");`
fix auth 2024-01-15 16:32:24 +02:00			`} elseif(request()->segment(1) !== "lucent") {`
			`return config("lucent.systemUserId");`
permissions 2023-10-17 22:57:25 +03:00			`} else {`
fix auth 2024-01-15 16:32:24 +02:00			`return $this->session->get("user.id");`
lucent config 2023-10-06 13:07:09 +03:00			`}`

init 2023-10-02 23:10:49 +03:00			`}`

fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function currentUserRoles(): array`
permissions 2023-10-17 22:57:25 +03:00			`{`
			`return $this->session->get("user.roles") ?? [];`
			`}`

fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function isLoggedIn(): bool`
init 2023-10-02 23:10:49 +03:00			`{`
			`return !empty($this->currentUserId());`
			`}`

			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function login(string $email, string $token): void`
init 2023-10-02 23:10:49 +03:00			`{`

			`$user = $this->userRepo->findByEmail(new Email($email));`

			`if ($user->isEmpty()) {`
permissions finito 2023-10-18 01:54:24 +03:00			`throw new LucentException("Your account was not found");`
init 2023-10-02 23:10:49 +03:00			`}`

permissions 2023-10-17 22:57:25 +03:00			`if ($user->get()->isRemoved()) {`
init 2023-10-02 23:10:49 +03:00			`throw new LucentException("Your account is not active");`
			`}`

			`if ($user->get()->mailToken !== $token) {`
			`throw new LucentException("Token has expired or is invalid");`
			`}`

			`if (Carbon::parse($user->get()->loggedInAt)->lte(Carbon::now()->subHours(1))) {`
			`throw new LucentException("Token has expired.");`
			`}`

			`$newUser = $user->get();`
			`$newUser->updatedAt = Carbon::now()->toJson();`
			`$newUser->mailToken = null;`
			`$this->userRepo->update($newUser);`
			`$this->session->put(["user" => $user->get()->safe()]);`
			`}`

fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function refreshSession()`
			`{`


permissions finito 2023-10-18 01:54:24 +03:00			`$user = $this->userRepo->findById($this->currentUserId());`

			`if ($user->isEmpty()) {`
			`throw new LucentException("Your account was not found");`
			`}`

			`if ($user->get()->isRemoved()) {`
			`throw new LucentException("Your account is not active");`
			`}`

			`$newUser = $user->get();`
			`$this->session->put(["user" => $user->get()->safe()]);`
			`}`

init 2023-10-02 23:10:49 +03:00
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function create(string $name, string $email, array $roles): User`
init 2023-10-02 23:10:49 +03:00			`{`
			`$user = new User(`
			`id: (string)Str::uuid(),`
			`name: new Name($name),`
			`email: new Email($email),`
permissions 2023-10-17 22:57:25 +03:00			`roles: $this->validateRoles($roles),`
init 2023-10-02 23:10:49 +03:00			`createdAt: Carbon::now()->toJson(),`
			`updatedAt: Carbon::now()->toJson(),`
			`loggedInAt: Carbon::now()->toJson(),`
			`mailToken: Token::new(32),`
			`);`

			`$this->userRepo->insert($user);`
			`return $user;`
			`}`


transition 2024-08-14 22:04:34 +03:00
			`public function sendLoginEmail(string $email): void`
init 2023-10-02 23:10:49 +03:00			`{`
			`$emailAddress = (new Email($email));`
			`$user = $this->userRepo->findByEmail($emailAddress);`

			`if ($user->isEmpty()) {`
transition 2024-08-14 22:04:34 +03:00			`return;`
init 2023-10-02 23:10:49 +03:00			`}`

permissions 2023-10-17 22:57:25 +03:00			`if ($user->get()->isRemoved()) {`
transition 2024-08-14 22:04:34 +03:00			`return;`
init 2023-10-02 23:10:49 +03:00			`}`

			`$newToken = $this->userRepo->updateLoginToken($user->get()->id);`

			`Mail::to($email)->send(`
			`new LoginMail(`
			`$email,`
			`$newToken,`
			`$this->channelService->channel->lucentUrl`
			`)`
			`);`
			`}`


			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function changeRoles(string $userId, array $roles): void`
init 2023-10-02 23:10:49 +03:00			`{`
			`$user = $this->userRepo->findById($userId);`

			`if ($user->isEmpty()) {`
			`throw new LucentException("User not found");`
			`}`

			`$newUser = $user->get();`
permissions 2023-10-17 22:57:25 +03:00			`$newUser->roles = $this->validateRoles($roles);`
init 2023-10-02 23:10:49 +03:00			`$newUser->updatedAt = Carbon::now()->toJson();`
			`$this->userRepo->update($newUser);`
			`}`

			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function updateName(string $name): void`
init 2023-10-02 23:10:49 +03:00			`{`
			`$name = (new Name($name));`
static 2023-10-04 23:48:12 +03:00			`$this->userRepo->updateName($this->currentUserId(), $name);`
account refactor 2023-10-17 18:30:41 +03:00			`$user = $this->userRepo->findById($this->currentUserId());`
			`$this->session->put(["user" => $user->get()->safe()]);`
			`}`
init 2023-10-02 23:10:49 +03:00
account refactor 2023-10-17 18:30:41 +03:00			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function updateEmail(string $email): void`
account refactor 2023-10-17 18:30:41 +03:00			`{`
			`$email = (new Email($email));`
			`$user = $this->userRepo->findByEmail($email);`
permissions 2023-10-17 22:57:25 +03:00			`if ($user->isDefined()) {`
account refactor 2023-10-17 18:30:41 +03:00			`throw new LucentException("Email already assigned to user");`
			`}`

			`$this->userRepo->updateEmail($this->currentUserId(), $email);`
			`$user = $this->userRepo->findById($this->currentUserId());`
			`$this->session->put(["user" => $user->get()->safe()]);`
init 2023-10-02 23:10:49 +03:00			`}`


			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function invite(`
init 2023-10-02 23:10:49 +03:00			`string $name,`
			`string $email,`
permissions 2023-10-17 22:57:25 +03:00			`array $roles`
init 2023-10-02 23:10:49 +03:00			`): User`
			`{`
permissions 2023-10-17 22:57:25 +03:00			`$user = $this->create($name, $email, $roles);`
init 2023-10-02 23:10:49 +03:00			`$this->sendLoginEmail($user->email);`
			`return $user;`
			`}`

lots 2023-10-04 13:32:30 +03:00			`/**`
			`* @throws LucentException`
			`*/`
fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function registerAdmin(`
lots 2023-10-04 13:32:30 +03:00			`string $name,`
			`string $email`
			`): User`
			`{`
permissions 2023-10-17 22:57:25 +03:00			`$user = $this->invite($name, $email, ["admin"]);`
lots 2023-10-04 13:32:30 +03:00			`$this->sendLoginEmail($user->email);`
			`return $user;`
			`}`

fix auth 2024-01-15 16:32:24 +02:00			`public`
			`function validateRoles(array $roles): array`
permissions 2023-10-17 22:57:25 +03:00			`{`
			`return collect($roles)`
			`->filter(fn(string $role) => in_array($role, $this->channelService->channel->roles))`
			`->unique()`
			`->values()`
			`->toArray();`
			`}`

init 2023-10-02 23:10:49 +03:00
			`}`