65 lines
1.6 KiB
PHP
65 lines
1.6 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Admin;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use Illuminate\Http\Request;
|
|
use Inertia\Inertia;
|
|
|
|
class AdminAuthController extends Controller
|
|
{
|
|
/**
|
|
* Show the admin login page.
|
|
*/
|
|
public function showLogin()
|
|
{
|
|
return Inertia::render('Admin/Auth/Login');
|
|
}
|
|
|
|
/**
|
|
* Handle an admin login attempt.
|
|
*/
|
|
public function login(Request $request)
|
|
{
|
|
$credentials = $request->validate([
|
|
'email' => ['required', 'email'],
|
|
'password' => ['required'],
|
|
]);
|
|
|
|
// Database-backed authentication check
|
|
$user = \App\Models\User::where('email', $credentials['email'])->first();
|
|
|
|
if ($user && \Illuminate\Support\Facades\Hash::check($credentials['password'], $user->password) && $user->role === 'admin') {
|
|
$request->session()->regenerate();
|
|
|
|
auth()->login($user);
|
|
|
|
session(['user' => (object)[
|
|
'id' => $user->id,
|
|
'name' => $user->name,
|
|
'email' => $user->email,
|
|
'role' => $user->role,
|
|
]]);
|
|
|
|
return redirect()->intended('/admin/dashboard');
|
|
}
|
|
|
|
return back()->withErrors([
|
|
'email' => 'The provided credentials do not match our records. (Use admin@example.com / password)',
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Log the admin out of the application.
|
|
*/
|
|
public function logout(Request $request)
|
|
{
|
|
session()->forget('user');
|
|
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
return redirect()->route('admin.login');
|
|
}
|
|
}
|