App\Http\Controllers\Auth\LoginController

Complexity

Total Complexity

53

Size/Duplication

Total Lines	371
Duplicated Lines	0 %

Importance

Changes	2
Bugs	1	Features	0

16 Methods

Rating	Name	Duplication	Size	Complexity
A	unique_random()	0	36	4
C	loggableUser()	0	67	16
A	loggableSocialUser()	0	20	6
A	redirect()	0	3	1
A	authenticated()	0	6	1
A	needsToCreateSocial()	0	3	1
A	providerLogin()	0	5	1
A	validateProvider()	0	4	2
A	create_company()	0	26	1
B	handleProviderCallback()	0	79	9
A	validateLogin()	0	12	2
A	confirmSubscription()	0	6	1
A	attemptLogin()	0	15	3
A	redirectToProvider()	0	8	2
A	__construct()	0	5	1
A	sendLoginResponse()	0	19	2

<?php

namespace App\Http\Controllers\Auth;

use App\Http\Controllers\Controller;
use App\Jobs\Tenant\CreateDBs;
use App\Jobs\Tenant\Migration;
use App\Models\Company;
use App\Models\Person;
use App\Models\Tenant;
use App\Models\User;
use App\Models\UserSocial;
use App\Traits\Login;
use Exception;
use Illuminate\Foundation\Auth\AuthenticatesUsers;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\App;
use Illuminate\Support\Facades\Auth;
use Illuminate\Support\Str;
use Illuminate\Validation\ValidationException;
use Laravel\Socialite\Facades\Socialite;
use LaravelEnso\Core\Events\Login as Event;
use LaravelEnso\Core\Traits\Logout;
use LaravelEnso\Roles\Models\Role;
use LaravelEnso\UserGroups\Models\UserGroup;

class LoginController extends Controller
{
    /**
     * @var mixed
     */
    public $maxAttempts;
    use AuthenticatesUsers, Logout, Login {

The trait Illuminate\Foundation\Auth\AuthenticatesUsers requires some properties which are not provided by App\Http\Controllers\Auth\LoginController: $redirectTo, $decayMinutes

The trait App\Traits\Login requires the property $attributes which is not provided by App\Http\Controllers\Auth\LoginController.

The trait LaravelEnso\Core\Traits\Logout requires the property $attributes which is not provided by App\Http\Controllers\Auth\LoginController.

        Logout::logout insteadof AuthenticatesUsers;
        Login::login insteadof AuthenticatesUsers;
    }

    // protected $redirectTo = '/';

    private ?User $user = null;

    public function __construct()
    {
        $this->middleware('guest')->except('logout');

        $this->maxAttempts = config('enso.auth.maxLoginAttempts');
    }

    public function redirect($service)
    {
        return Socialite::driver($service)->redirect();
    }

    public function redirectToProvider($provider)
    {
        $validated = $this->validateProvider($provider);
        if (! is_null($validated)) {
            return $validated;
        }

        return Socialite::driver($provider)->stateless()->redirect();

The method stateless() does not exist on Laravel\Socialite\Contracts\Provider. It seems like you code against a sub-type of Laravel\Socialite\Contracts\Provider such as Laravel\Socialite\Two\AbstractProvider.

    }

    /**
     * Obtain the user information from Provider.
     *
     * @param  $provider
     * @return JsonResponse

The type App\Http\Controllers\Auth\JsonResponse was not found. Maybe you did not declare it correctly or list all dependencies?

     */
    public function handleProviderCallback($provider)
    {
        try {
            $user = Socialite::driver($provider)->stateless()->user();
        } catch (Exception) {
            return redirect(config('settings.clientBaseUrl').'/social-callback?token=&status=false&message=Invalid credentials provided!');

The expression return redirect(config('settings.clientBaseUrl') . '/social-callback?token=&status=false&message=Invalid credentials provided!') returns the type Illuminate\Http\RedirectResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

        }

        $curUser = User::where('email', $user->getEmail())->first();

        if (! $curUser) {
            try {
                // create person
                $person = new Person();
                $name = $user->getName();
                $person->name = $name;

The property name does not seem to exist on App\Models\Person. Are you sure there is no database migration missing?

                $person->email = $user->getEmail();

The property email does not seem to exist on App\Models\Person. Are you sure there is no database migration missing?

                $person->save();
                // get user_group_id
                $user_group = UserGroup::where('name', 'Administrators')->first();
                if ($user_group === null) {
                    // create user_group
                    $user_group = UserGroup::create(['name' => 'Administrators', 'description' => 'Administrator users group']);
                }

                // get role_id
                $role = Role::where('name', 'free')->first();
                if ($role === null) {
                    $role = Role::create(['menu_id' => 1, 'name' => 'supervisor', 'display_name' => 'Supervisor', 'description' => 'Supervisor role.']);
                }

                $curUser = User::create(
                    [
                        'email' => $user->getEmail(),
                        'person_id' => $person->id,
                        'group_id' => $user_group->id,
                        'role_id' => $role->id,
                        'email_verified_at' => now(),
                        'is_active' => 1,
                    ],
                );

                $random = $this->unique_random('companies', 'name', 5);
                $company = Company::create([
                    'name' => 'company'.$random,
                    'email' => $user->getEmail(),
                    'is_tenant' => 1,
                    'status' => 1,
                ]);

                $person->companies()->attach($company->id, ['person_id' => $person->id, 'is_main' => 1, 'is_mandatary' => 1, 'company_id' => $company->id]);

                // Dispatch Tenancy Jobs
                CreateDBs::dispatch($company);
                Migration::dispatch($company, $user->name, $user->email, $user->password);
            } catch (Exception) {
                return redirect(config('settings.clientBaseUrl').'/social-callback?token=&status=false&message=Something went wrong!');

The expression return redirect(config('settings.clientBaseUrl') . '/social-callback?token=&status=false&message=Something went wrong!') returns the type Illuminate\Http\RedirectResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

            }
        }

        try {
            if ($this->needsToCreateSocial($curUser, $provider)) {
                UserSocial::create([
                    'user_id' => $curUser->id,
                    'social_id' => $user->getId(),
                    'service' => $provider,
                ]);
            }
        } catch (Exception) {
            return redirect(config('settings.clientBaseUrl').'/social-callback?token=&status=false&message=Something went wrong!');

The expression return redirect(config('settings.clientBaseUrl') . '/social-callback?token=&status=false&message=Something went wrong!') returns the type Illuminate\Http\RedirectResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

        }

        if ($this->loggableSocialUser($curUser)) {
            Auth::guard('web')->login($curUser, true);

            return redirect(config('settings.clientBaseUrl').'/social-callback?token='.csrf_token().'&status=success&message=success');

The expression return redirect(config('settings.clientBaseUrl') . '/social-callback?token=' . csrf_token() . '&status=success&message=success') returns the type Illuminate\Http\RedirectResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

        }

            return redirect(config('settings.clientBaseUrl').'/social-callback?token=&status=false&message=Something went wrong while we processing the login. Please try again!');

The expression return redirect(config('settings.clientBaseUrl') . '/social-callback?token=&status=false&message=Something went wrong while we processing the login. Please try again!') returns the type Illuminate\Http\RedirectResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

    }

    public function needsToCreateSocial(User $user, $service)
    {
        return ! $user->hasSocialLinked($service);
    }

    public function unique_random($table, $col, $chars = 16)

The parameter $table is not used and could be removed.

    {
        $unique = false;

        // Store tested results in array to not test them again
        $tested = [];

        do {
            // Generate random string of characters
            $random = Str::random($chars);

            // Check if it's already testing
            // If so, don't query the database again
            if (in_array($random, $tested)) {
                continue;
            }

            // Check if it is unique in the database
            $count = Company::where($col, '=', $random)->count();

            // Store the random character in the tested array
            // To keep track which ones are already tested
            $tested[] = $random;

            // String appears to be unique
            if ($count === 0) {
                // Set unique to true to break the loop
                $unique = true;
            }

            // If unique is still false at this point
            // it will just repeat all the steps until
            // it has generated a random string of characters
        } while (! $unique);

        return $random;
    }

    public function providerLogin(Request $request, $provider)

The parameter $provider is not used and could be removed.

    {
        $data = $request->all();

        return response()->json($data);
    }

    public function confirmSubscription(Request $request)
    {
        $request->all();
        $user = $this->loggableUser($request);

        return response()->json($user);
    }

    protected function attemptLogin(Request $request): bool
    {
        $this->user = $this->loggableUser($request);

        if (! $this->user) {
            return false;
        }

        if ($request->attributes->get('sanctum')) {
            Auth::guard('web')->login($this->user, $request->input('remember'));
        }

        Event::dispatch($this->user, $request->ip(), $request->header('User-Agent'));

        return true;
    }

    protected function sendLoginResponse(Request $request)
    {
        $this->clearLoginAttempts($request);

        if ($request->attributes->get('sanctum')) {
            $request->session()->regenerate();

            return [
                'auth' => Auth::check(),
                'csrfToken' => csrf_token(),
                'role_id' => Auth::user()->role_id,

Accessing role_id on the interface Illuminate\Contracts\Auth\Authenticatable suggest that you code against a concrete implementation. How about adding an instanceof check?

            ];
        }

        $token = $this->user->createToken($request->get('device_name'));

The method createToken() does not exist on null.

        return response()->json(['token' => $token->plainTextToken])
            ->cookie('webview', true)
            ->cookie('Authorization', $token->plainTextToken);
    }

    protected function authenticated(Request $request, $user)

The parameter $request is not used and could be removed.

    {
        return response()->json([
            'auth' => Auth::check(),
            'csrfToken' => csrf_token(),
            'role_id' => $user->role_id,
        ]);
    }

    protected function validateLogin(Request $request)
    {
        $attributes = [
            $this->username() => 'required|string',
            'password' => 'required|string',
        ];

        if (! $request->attributes->get('sanctum')) {
            $attributes['device_name'] = 'required|string';
        }

        $request->validate($attributes);
    }

    /**
     * @param  $provider
     * @return JsonResponse
     */
    protected function validateProvider($provider)
    {
        if (! in_array($provider, ['facebook', 'google', 'github'])) {
            return response()->json(['error' => 'Please login using facebook or google or github'], 422);

The expression return response()->json(array('error' => 'Please login using facebook or google or github'), 422) returns the type Illuminate\Http\JsonResponse which is incompatible with the documented return type App\Http\Controllers\Auth\JsonResponse.

        }
    }

    private function create_company($user)
    {
        $company_count = Company::count();

        $company = Company::create([
            'name' => $user->email.($company_count + 1),
            'email' => $user->email,
            // 'is_active' => 1,
            'is_tenant' => 1,
            'status' => 1,
        ]);

        $user->person->companies()->attach($company->id, ['person_id' => $user->person->id, 'is_main' => 1, 'is_mandatary' => 1, 'company_id' => $company->id]);

        /**            Tree::create([
         * 'name' => 'Default Tree',
         * 'description' => 'Automatically created tree as only tree remaining was deleted.',
         * 'user_id' => $user->id,
         * 'company_id' => $company->id,
         * ]);.
         */
        $company_id = $company->id;

The assignment to $company_id is dead and can be removed.

        //                \Log::debug('CreateDBs----------------------'.$company);
        CreateDBs::dispatch($company);
        //                \Log::debug('Migration----------------------'.$company);
        Migration::dispatch($company, $user->name, $user->email, $user->password);
    }

    private function loggableUser(Request $request)
    {
        $user = User::whereEmail($request->input('email'))->first();

        if (! optional($user)->currentPasswordIs($request->input('password'))) {
            return;
        }

        if (! $user->email) {
            throw ValidationException::withMessages([
                'email' => 'Email does not exist.',
            ]);
        }

        if ($user->passwordExpired()) {
            throw ValidationException::withMessages([
                'email' => 'Password expired. Please set a new one.',
            ]);
        }
        if ($user->isInactive()) {
            throw ValidationException::withMessages([
                'email' => 'Account disabled. Please contact the administrator.',
            ]);
        }

        if (! App::runningUnitTests()) {
            $company = $user->person->company();
            //            \Log::debug('Login----------------------'.$company);
            $tenant = false;

The assignment to $tenant is dead and can be removed.

            if ($company) {
                $tenant = true;
            }
            // set company id as default
            $main_company = $user->person->company();
            if ($main_company !== null && ! $user->isAdmin()) {
                $c_id = $main_company->id;

The assignment to $c_id is dead and can be removed.

            }
            if (! $user->isAdmin()) {
                $tenants = Tenant::find($main_company->id);
            }
            if ($user->isAdmin()) {
                $tenants = null;
            }
            if ($main_company === null && ! $user->isAdmin()) {
                //   if (($main_company == null||$tenants=='') && ! $user->isAdmin()) {
                //   if ($main_company == null) {
                $this->create_company($user);
            } elseif ($tenants && ! $user->isAdmin()) {

The variable $tenants does not seem to be defined for all execution paths leading up to this point.

                //                    $c = DB::connection('tenantdb',$tenants->tenancy_db_name)->table('users')->count();
                $company = \App\Models\Company::find($main_company->id);
                //                    \Log::debug('Database----------------------'.$main_company->id);
                tenancy()->initialize($tenants);
                $tenants->run(function () use ($company, $user) {
                    //  $company->save();
                    $c = User::count();
                    if ($c === 0) {
                        //  \Log::debug('Run Migration----------------------');
                        return Migration::dispatch($company, $user->name, $user->email, $user->password);
                    }
                    // \Log::debug($company->id.-'users----------------------'.$c);
                });
                tenancy()->end();
                return $user;
            }
        }

        return $user;
    }

    private function loggableSocialUser($user): bool
    {
        $company = $user->person->company();
        $tenant = false;

The assignment to $tenant is dead and can be removed.

        if ($company) {
            $tenant = true;
        }
        // set company id as default
        $main_company = $user->person->company();
        if ($main_company !== null && ! $user->isAdmin()) {
            $c_id = $main_company->id.$user->id;

The assignment to $c_id is dead and can be removed.

        }

        if ($main_company === null && ! $user->isAdmin()) {
            //          if ($main_company == null) {
            $this->create_company($user);
        }

        return true;
    }
}