Implements login action

Mohammadreza-73 · Apr 29, 2023 · 2ebeb93 · 2ebeb93
1 parent bff8dd5
commit 2ebeb93
Show file tree

Hide file tree

Showing 4 changed files with 26 additions and 9 deletions.
diff --git a/app/Core/Authenticatable.php b/app/Core/Authenticatable.php
@@ -9,12 +9,16 @@ public function attemp(string $email, string $password)
         $user = $this->db()->query("SELECT * FROM `users` WHERE `email` = :email", [
             'email' => $email,
         ])->find();
-
+        
         if ($user) {
             if (password_verify($password, $user->password)) {
-                $this->login([
-                    'email' => $email,
+                // $this->login($user);
+                Session::put('user', [
+                    'email' => $user->email,
                 ]);
+
+                // Prevent Session Hijacking
+                session_regenerate_id(true);
 
                 return true;
             }
@@ -27,7 +31,9 @@ public function login(array|object $user)
     {
         $user = is_object($user) ? $user : (object) $user;
 
-        Session::flash('email', $user->email);
+        Session::put('user', [
+            'email' => $user->email,
+        ]);
 
         // Prevent Session Hijacking
         session_regenerate_id(true);

diff --git a/app/Http/Controllers/AuthController.php b/app/Http/Controllers/AuthController.php
@@ -32,11 +32,10 @@ public function verify()
         }
 
         if ($this->attemp($inputs['email'], $inputs['password'])) {
-            return redirect('/admin'); // Bug: to many redirects
-
-        } else {
-            return redirect('/login', 'error', 'Invalid email or password.');
+            return redirect('/admin');
         }
+
+        return redirect('/login', 'error', 'Invalid email or password.');
     }
 
     public function signup()

diff --git a/app/Http/Controllers/HomeController.php b/app/Http/Controllers/HomeController.php
@@ -13,6 +13,6 @@ public function index()
 
     public function dashboard()
     {
-        echo 'admin dashboard';
+        return view('dashboard');
     }
 }
diff --git a/resources/Views/dashboard.php b/resources/Views/dashboard.php
@@ -0,0 +1,12 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta http-equiv="X-UA-Compatible" content="IE=edge">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Dashboard</title>
+</head>
+<body>
+    <h1>Welcome to Dashboard</h1>
+</body>
+</html>