ibrahim
/
BAGETWEBPANEL
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
2 Branches
0 Tags
42 MiB
 
 
Tag: Branch: Tree: 5502e10312
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5502e10312'
${ noResults }
BAGETWEBPANEL/app/Http/Controllers/Api/V1/Auth/VendorPasswordResetControll...

178 lines
7.5 KiB
Raw Blame History

<?php
namespace App\Http\Controllers\Api\V1\Auth;
use App\Models\Vendor;
use Illuminate\Http\Request;
use App\CentralLogics\Helpers;
use Illuminate\Support\Carbon;
use App\Models\BusinessSetting;
use Illuminate\Support\Facades\DB;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Mail;
use Illuminate\Support\Facades\Validator;
class VendorPasswordResetController extends Controller
{
public function reset_password_request(Request $request)
{
$validator = Validator::make($request->all(), [
'email' => 'required',
]);
if ($validator->fails()) {
return response()->json(['errors' => Helpers::error_processor($validator)], 403);
}
$vendor = Vendor::Where(['email' => $request['email']])->first();
if (isset($vendor)) {
$token = rand(1000,9999);
DB::table('password_resets')->updateOrInsert(['email' => $vendor['email']],
[
'token' => $token,
'created_at' => now(),
]);
try{
if (config('mail.status')) {
Mail::to($vendor['email'])->send(new \App\Mail\PasswordResetMail($token, $vendor->f_name));
}
}catch(\Exception $ex){
info($ex);
}
return response()->json(['message' => 'Email sent successfully.'], 200);
}
return response()->json(['errors' => [
['code' => 'not-found', 'message' => 'Email not found!']
]], 404);
}
public function verify_token(Request $request)
{
$validator = Validator::make($request->all(), [
'email' => 'required|exists:vendors,email',
'reset_token'=> 'required'
]);
if ($validator->fails()) {
return response()->json(['errors' => Helpers::error_processor($validator)], 403);
}
$data = DB::table('password_resets')->where(['token' => $request['reset_token'],'email'=>$request->email])->first();
if (isset($data) || (env('APP_MODE') == 'demo' && $request['reset_token'] == '1234' )) {
return response()->json(['message'=> translate("OTP found, you can proceed")], 200);
} else{
// $otp_hit = BusinessSetting::where('key', 'max_otp_hit')->first();
// $max_otp_hit =isset($otp_hit) ? $otp_hit->value : 5 ;
$max_otp_hit = 5;
// $otp_hit_time = BusinessSetting::where('key', 'max_otp_hit_time')->first();
// $max_otp_hit_time = isset($otp_hit_time) ? $otp_hit_time->value : 30 ;
$max_otp_hit_time = 60; // seconds
$temp_block_time = 600; // seconds
$verification_data= DB::table('password_resets')->where('email', $request->email)->first();
if(isset($verification_data)){
$time= $temp_block_time - Carbon::parse($verification_data->temp_block_time)->DiffInSeconds();
if(isset($verification_data->temp_block_time ) && Carbon::parse($verification_data->temp_block_time)->DiffInSeconds() <= $temp_block_time){
$time= $temp_block_time - Carbon::parse($verification_data->temp_block_time)->DiffInSeconds();
$errors = [];
array_push($errors, ['code' => 'otp_block_time', 'message' => translate('messages.please_try_again_after_').CarbonInterval::seconds($time)->cascade()->forHumans()
]);
return response()->json([
'errors' => $errors
], 405);
}
if($verification_data->is_temp_blocked == 1 && Carbon::parse($verification_data->created_at)->DiffInSeconds() >= $max_otp_hit_time){
DB::table('password_resets')->updateOrInsert(['email' => $request->email],
[
'otp_hit_count' => 0,
'is_temp_blocked' => 0,
'temp_block_time' => null,
'created_at' => now(),
]);
}
if($verification_data->otp_hit_count >= $max_otp_hit && Carbon::parse($verification_data->created_at)->DiffInSeconds() < $max_otp_hit_time && $verification_data->is_temp_blocked == 0){
DB::table('password_resets')->updateOrInsert(['email' => $request->email],
[
'is_temp_blocked' => 1,
'temp_block_time' => now(),
'created_at' => now(),
]);
$errors = [];
array_push($errors, ['code' => 'otp_temp_blocked', 'message' => translate('messages.Too_many_attemps') ]);
return response()->json([
'errors' => $errors
], 405);
}
}
DB::table('password_resets')->updateOrInsert(['email' => $request->email],
[
'otp_hit_count' => DB::raw('otp_hit_count + 1'),
'created_at' => now(),
'temp_block_time' => null,
]);
}
return response()->json(['errors' => [
['code' => 'reset_token', 'message' => 'Invalid OTP.']
]], 400);
}
public function reset_password_submit(Request $request)
{
$validator = Validator::make($request->all(), [
'email' => 'required|exists:vendors,email',
'reset_token'=> 'required',
'password'=> 'required|min:6',
'confirm_password'=> 'required|same:password',
]);
if ($validator->fails()) {
return response()->json(['errors' => Helpers::error_processor($validator)], 403);
}
if(env('APP_MODE') == 'demo') {
if ($request['reset_token'] != '1234') {
return response()->json(['errors' => [
['code' => 'invalid', 'message' => translate('messages.invalid_otp')]
]], 400);
}
if ($request['password'] == $request['confirm_password']) {
DB::table('vendors')->where(['email' => $request->email])->update([
'password' => bcrypt($request['confirm_password'])
]);
DB::table('password_resets')->where(['token' => $request['reset_token']])->delete();
return response()->json(['message' => translate('Password changed successfully.')], 200);
}
return response()->json(['errors' => [
['code' => 'mismatch', 'message' => translate('messages.password_mismatch')]
]], 401);
}
$data = DB::table('password_resets')->where(['email'=>$request['email'],'token' => $request['reset_token']])->first();
if (isset($data)) {
if ($request['password'] == $request['confirm_password']) {
DB::table('vendors')->where(['email' => $data->email])->update([
'password' => bcrypt($request['confirm_password'])
]);
DB::table('password_resets')->where(['token' => $request['reset_token']])->delete();
return response()->json(['message' => translate('Password changed successfully.')], 200);
}
return response()->json(['errors' => [
['code' => 'mismatch', 'message' => translate('messages.password_mismatch')]
]], 401);
}
return response()->json(['errors' => [
['code' => 'invalid', 'message' => translate('messages.invalid_otp')]
]], 400);
}
}