crocodicstudio\crudbooster\Modules\AuthModule\AuthController

Complexity

Total Complexity

15

Size/Duplication

Total Lines	90
Duplicated Lines	0 %

Importance

Changes

0

9 Methods

Rating	Name	Duplication	Size	Complexity
A	getForgot()	0	7	2
A	getLogin()	0	7	2
A	postForgot()	0	15	1
A	table()	0	4	2
A	postUnlockScreen()	0	10	2
A	getLockscreen()	0	9	2
A	getIndex()	0	3	1
A	validateForgotPass()	0	7	2
A	getLogout()	0	6	1

<?php

namespace crocodicstudio\crudbooster\Modules\AuthModule;

use crocodicstudio\crudbooster\CBCoreModule\CbUsersRepo;
use crocodicstudio\crudbooster\controllers\Controller;
use crocodicstudio\crudbooster\helpers\Mailer;
use Illuminate\Support\Facades\Request;
use Illuminate\Support\Facades\Session;
use Illuminate\Support\Facades\Validator;
use crocodicstudio\crudbooster\helpers\CRUDBooster, CB;

class AuthController extends Controller
{
    /**
     * @param string $tableName
     * @return mixed
     */
    public function table($tableName = null)
    {
        $tableName = $tableName ?: $this->table;

The property table does not exist on crocodicstudio\crudbooster\Modules\AuthModule\AuthController. Did you maybe forget to declare it?

        return \DB::table($tableName);
    }

    function getIndex()

It is generally recommended to explicitly declare the visibility for methods.

    {
        return view('CbAuth::home', ['page_title' => '<strong>Dashboard</strong>']);
    }

    public function getLockscreen()
    {
        if (! CRUDBooster::myId()) {
            Session::flush();
            return redirect()->route('getLogin')->with('message', cbTrans('alert_session_expired'));
        }

        Session::put('admin_lock', 1);
        return view('CbAuth::lockscreen');
    }

    public function postUnlockScreen()
    {
        $user = CbUsersRepo::find(CRUDBooster::myId());

        if (\Hash::check(request('password'), $user->password)) {

It seems like request('password') can also be of type array; however, parameter $value of Illuminate\Support\Facades\Hash::check() does only seem to accept string, maybe add an additional type check?

            Session::put('admin_lock', 0);

            return redirect()->route('AuthControllerGetIndex');
        }
        echo "<script>alert('".cbTrans('alert_password_wrong')."');history.go(-1);</script>";
    }

    public function getLogin()
    {
        if (CRUDBooster::myId()) {
            return redirect(cbAdminPath());
        }

        return view('CbAuth::login');
    }

    public function getForgot()
    {
        if (CRUDBooster::myId()) {
            return redirect()->action('\\'.AuthController::class.'@getIndex');
        }

        return view('CbAuth::forgot');
    }

    public function postForgot()
    {
        $this->validateForgotPass();

        $randString = str_random(5);
        CbUsersRepo::updateByMail(request('email'), ['password' => \Hash::make($randString)]);

        //$appname = cbGetsetting('appname');
        $user = CbUsersRepo::findByMail(request('email'));
        $user->password = $randString;
        (new Mailer())->send(['to' => $user->email, 'data' => $user, 'template' => 'forgot_password_backend']);

        CRUDBooster::insertLog(cbTrans('log_forgot', ['email' => request('email'), 'ip' => Request::server('REMOTE_ADDR')]));

        return redirect()->route('getLogin')->with('message', cbTrans('message_forgot_password'));
    }

    public function getLogout()
    {
        CRUDBooster::insertLog(cbTrans('log_logout', ['email' => CRUDBooster::me()->email]));
        Session::flush();

        return redirect()->route('getLogin')->with('message', cbTrans('message_after_logout'));
    }

    private function validateForgotPass()
    {
        $validator = Validator::make(request()->all(), ['email' => 'required|email|exists:cms_users',]);

        if ($validator->fails()) {
            $message = $validator->errors()->all();
            backWithMsg(implode(', ', $message), 'danger');
        }
    }
}