From 2ec789ca7ff6dc8b0562abdcf0118560674bf083 Mon Sep 17 00:00:00 2001
From: "DESKTOP-6RVDTCF\\Simran" <simran@codiksh.in>
Date: Sat, 20 May 2023 19:00:17 +0530
Subject: [PATCH] feat(api): Integrated Api for login, signUp and change
 password

---
 .../API/Auth/AccessTokenController.php        | 23 ++++++++
 .../API/Auth/ChangePasswordController.php     | 32 +++++++++++
 .../API/Auth/RegistrationController.php       | 55 +++++++++++++++++++
 .../Requests/Api/ChangePasswordRequest.php    | 33 +++++++++++
 app/Http/Requests/Api/RegistrationRequest.php | 28 ++++++++++
 app/Http/Resources/UserResource.php           | 33 +++++++++++
 app/Models/User.php                           |  2 +-
 app/MyClasses/ApiHelpers.php                  | 19 +++++++
 routes/api.php                                |  6 +-
 9 files changed, 228 insertions(+), 3 deletions(-)
 create mode 100644 app/Http/Controllers/API/Auth/AccessTokenController.php
 create mode 100644 app/Http/Controllers/API/Auth/ChangePasswordController.php
 create mode 100644 app/Http/Controllers/API/Auth/RegistrationController.php
 create mode 100644 app/Http/Requests/Api/ChangePasswordRequest.php
 create mode 100644 app/Http/Requests/Api/RegistrationRequest.php
 create mode 100644 app/Http/Resources/UserResource.php
 create mode 100644 app/MyClasses/ApiHelpers.php

diff --git a/app/Http/Controllers/API/Auth/AccessTokenController.php b/app/Http/Controllers/API/Auth/AccessTokenController.php
new file mode 100644
index 0000000..9d27c8f
--- /dev/null
+++ b/app/Http/Controllers/API/Auth/AccessTokenController.php
@@ -0,0 +1,23 @@
+<?php
+
+namespace App\Http\Controllers\API\Auth;
+
+use App\Models\User;
+use Laravel\Passport\Http\Controllers\AccessTokenController as ATC;
+use Psr\Http\Message\ServerRequestInterface;
+
+class AccessTokenController extends ATC
+{
+    /**
+     * Check username and password and redirect to dashboard also update user device
+     * @param ServerRequestInterface $request
+     * @return \Illuminate\Http\Response|never
+     */
+    public function issueToken(ServerRequestInterface $request) {
+        $requestUsername = request()->input('username');
+        $user = User::where('email', $requestUsername)->orWhere('mobile', $requestUsername)->first();
+        if(!$user)  return abort(422, "The credentials are incorrect");
+
+        return parent::issueToken($request);
+    }
+}
diff --git a/app/Http/Controllers/API/Auth/ChangePasswordController.php b/app/Http/Controllers/API/Auth/ChangePasswordController.php
new file mode 100644
index 0000000..bfe0a74
--- /dev/null
+++ b/app/Http/Controllers/API/Auth/ChangePasswordController.php
@@ -0,0 +1,32 @@
+<?php
+
+namespace App\Http\Controllers\API\Auth;
+
+use App\Http\Controllers\Controller;
+use App\Http\Requests\Api\ChangePasswordRequest;
+use App\Models\User;
+use App\MyClasses\ApiHelpers;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Hash;
+
+class ChangePasswordController extends Controller{
+
+    /**
+     * Changes the user password
+     *
+     * @param ChangePasswordRequest $request
+     * @return JsonResponse
+     * @throws \Throwable
+     */
+    public function changePassword(ChangePasswordRequest $request){
+
+        $user = Auth::user();
+
+        if (! Hash::check($request->input('current_password'), $user->password)) {
+            return ApiHelpers::response('Current Password is incorrect', [], 422);
+        }
+        $user->update(['password' => Hash::make($request->input('new_password'))]);
+        return ApiHelpers::response('Password has been updated successfully!');
+    }
+}
diff --git a/app/Http/Controllers/API/Auth/RegistrationController.php b/app/Http/Controllers/API/Auth/RegistrationController.php
new file mode 100644
index 0000000..f884405
--- /dev/null
+++ b/app/Http/Controllers/API/Auth/RegistrationController.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace App\Http\Controllers\API\Auth;
+
+use App\Http\Controllers\Controller;
+use App\Http\Requests\Api\RegistrationRequest;
+use App\Http\Resources\UserResource;
+use App\Models\User;
+use App\MyClasses\ApiHelpers;
+use App\Repositories\Admin\UserRepository;
+use Carbon\Carbon;
+use Illuminate\Auth\Events\Registered;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Support\Facades\DB;
+use Response;
+
+class RegistrationController extends Controller {
+
+    public function __construct(UserRepository $userRepo) {
+        $this->userRepository = $userRepo;
+    }
+
+    /**
+     * Register api
+     *
+     * @param RegistrationRequest $request
+     * @return JsonResponse
+     * @throws \Throwable
+     */
+    public function register(RegistrationRequest $request) {
+        DB::beginTransaction();
+
+        $user = User::create($request->validated());
+        $user->assignRole('Super Admin');
+        $this->userRepository->updateOrCreate_avatar($user, $request);
+        $objToken = $user->createToken($user->name);
+        $strToken = $objToken->accessToken;
+        $expiration = $objToken->token->expires_at->diffInSeconds(Carbon::now());
+
+        DB::commit();
+
+        event(new Registered($user));
+
+        return ApiHelpers::response('User Registered Registered Successfully try to login', [
+            'user' => new UserResource($user),
+            'token' => [
+                'access_token' => $strToken,
+                'expires_in' => $expiration,
+                'token_type' => 'Bearer',
+            ]
+        ]);
+    }
+
+
+}
diff --git a/app/Http/Requests/Api/ChangePasswordRequest.php b/app/Http/Requests/Api/ChangePasswordRequest.php
new file mode 100644
index 0000000..bc72b13
--- /dev/null
+++ b/app/Http/Requests/Api/ChangePasswordRequest.php
@@ -0,0 +1,33 @@
+<?php
+
+namespace App\Http\Requests\Api;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+class ChangePasswordRequest extends FormRequest
+{
+    /**
+     * Determine if the user is authorized to make this request.
+     *
+     * @return bool
+     */
+    public function authorize()
+    {
+        return true;
+    }
+
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, mixed>
+     */
+    public function rules()
+    {
+        return [
+            'current_password' => 'required',
+            'new_password' => 'required',
+            'confirm_password' => 'required|same:new_password'
+        ];
+
+    }
+}
diff --git a/app/Http/Requests/Api/RegistrationRequest.php b/app/Http/Requests/Api/RegistrationRequest.php
new file mode 100644
index 0000000..b52b805
--- /dev/null
+++ b/app/Http/Requests/Api/RegistrationRequest.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Http\Requests\Api;
+
+use App\Http\Requests\BaseRequest;
+use App\Models\User;
+use App\Repositories\Admin\UserRepository;
+
+class RegistrationRequest extends BaseRequest
+{
+    /**
+     * Get the validation rules that apply to the request.
+     *
+     * @return array<string, mixed>
+     */
+    public function rules()
+    {
+        $rules = User::$rules;
+        unset($rules['role']);
+        unset($rules['role.*']);
+        return $rules;
+    }
+
+    protected function prepareForValidation()
+    {
+        $this->merge(UserRepository::requestHandler($this));
+    }
+}
diff --git a/app/Http/Resources/UserResource.php b/app/Http/Resources/UserResource.php
new file mode 100644
index 0000000..e5108bb
--- /dev/null
+++ b/app/Http/Resources/UserResource.php
@@ -0,0 +1,33 @@
+<?php
+
+namespace App\Http\Resources;
+
+use App\Models\User;
+use Illuminate\Contracts\Support\Arrayable;
+use Illuminate\Http\Request;
+use Illuminate\Http\Resources\Json\JsonResource;
+use JsonSerializable;
+
+/**
+ * Class StickerResource
+ * @mixin User
+ * @package App\Http\Resources
+ */
+class UserResource extends JsonResource {
+    /**
+     * Transform the resource into an array.
+     *
+     * @param Request $request
+     * @return array|Arrayable|JsonSerializable
+     */
+    public function toArray($request) {
+        return array_merge($this->only([
+            'name',
+            'email',
+            'mobile',
+            'uuid',
+        ]), [
+            'roles' => $this->getRoleNames()->join(', '),
+        ]);
+    }
+}
diff --git a/app/Models/User.php b/app/Models/User.php
index dbef2a9..b240002 100644
--- a/app/Models/User.php
+++ b/app/Models/User.php
@@ -14,7 +14,7 @@
 use Spatie\MediaLibrary\MediaCollections\File;
 use Spatie\MediaLibrary\MediaCollections\Models\Media;
 use Spatie\Permission\Traits\HasRoles;
-use Laravel\Sanctum\HasApiTokens;
+use Laravel\Passport\HasApiTokens;
 
 /**
  * App\Models\User
diff --git a/app/MyClasses/ApiHelpers.php b/app/MyClasses/ApiHelpers.php
new file mode 100644
index 0000000..b2aca12
--- /dev/null
+++ b/app/MyClasses/ApiHelpers.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace App\MyClasses;
+
+use Illuminate\Http\Response;
+
+class ApiHelpers {
+
+    /**
+     * @param string $message
+     * @param array $payload
+     * @param int $status
+     * @return \Illuminate\Http\JsonResponse
+     * @throws \Throwable
+     */
+    public static function response(string $message, array $payload = [], int $status = Response::HTTP_OK) {
+        return response()->json(['message' => $message, 'payload' => $payload, 'datetime' => now()->toDateTimeString(),], $status);
+    }
+}
diff --git a/routes/api.php b/routes/api.php
index bcb8b18..92360fd 100644
--- a/routes/api.php
+++ b/routes/api.php
@@ -14,6 +14,8 @@
 |
 */
 
-Route::middleware('auth:api')->get('/user', function (Request $request) {
-    return $request->user();
+Route::post('register', [\App\Http\Controllers\API\Auth\RegistrationController::class, 'register']);
+
+Route::group(['middleware' => ['auth:api']], function(){
+    Route::post('change-password', [\App\Http\Controllers\API\Auth\ChangePasswordController::class, 'changePassword']);
 });