| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  | <?php | 
					
						
							| 
									
										
										
										
											2016-05-20 12:27:31 +02:00
										 |  |  | /** | 
					
						
							|  |  |  |  * AuthController.php | 
					
						
							|  |  |  |  * Copyright (C) 2016 thegrumpydictator@gmail.com | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * This software may be modified and distributed under the terms | 
					
						
							|  |  |  |  * of the MIT license.  See the LICENSE file for details. | 
					
						
							|  |  |  |  */ | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-02-05 12:08:25 +01:00
										 |  |  | declare(strict_types = 1); | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  | namespace FireflyIII\Http\Controllers\Auth; | 
					
						
							| 
									
										
										
										
											2015-02-06 04:39:52 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-06-11 21:19:40 +02:00
										 |  |  | use Auth; | 
					
						
							| 
									
										
										
										
											2016-03-28 19:50:24 +02:00
										 |  |  | use FireflyIII\Events\UserRegistration; | 
					
						
							| 
									
										
										
										
											2016-02-17 15:52:46 +01:00
										 |  |  | use FireflyIII\Exceptions\FireflyException; | 
					
						
							| 
									
										
										
										
											2015-02-06 04:52:16 +01:00
										 |  |  | use FireflyIII\Http\Controllers\Controller; | 
					
						
							| 
									
										
										
										
											2015-05-27 07:27:05 +02:00
										 |  |  | use FireflyIII\User; | 
					
						
							| 
									
										
										
										
											2015-02-06 04:39:52 +01:00
										 |  |  | use Illuminate\Foundation\Auth\AuthenticatesAndRegistersUsers; | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  | use Illuminate\Foundation\Auth\ThrottlesLogins; | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  | use Illuminate\Http\Request; | 
					
						
							| 
									
										
										
										
											2015-03-29 07:43:20 +02:00
										 |  |  | use Illuminate\Mail\Message; | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  | use Illuminate\Support\Facades\Lang; | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  | use Log; | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  | use Mail; | 
					
						
							|  |  |  | use Session; | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  | use Swift_TransportException; | 
					
						
							| 
									
										
										
										
											2015-06-11 21:19:40 +02:00
										 |  |  | use Validator; | 
					
						
							| 
									
										
										
										
											2015-02-06 04:39:52 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-09 08:20:55 +01:00
										 |  |  | /** | 
					
						
							|  |  |  |  * Class AuthController | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * @package FireflyIII\Http\Controllers\Auth | 
					
						
							|  |  |  |  */ | 
					
						
							| 
									
										
										
										
											2015-02-07 22:50:47 +01:00
										 |  |  | class AuthController extends Controller | 
					
						
							|  |  |  | { | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |     use AuthenticatesAndRegistersUsers, ThrottlesLogins; | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-11-01 08:03:41 +01:00
										 |  |  |     /** | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |      * Where to redirect users after login / registration. | 
					
						
							| 
									
										
										
										
											2015-11-01 08:03:41 +01:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |      * @var string | 
					
						
							| 
									
										
										
										
											2015-11-01 08:03:41 +01:00
										 |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |     protected $redirectTo = '/home'; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Create a new authentication controller instance. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function __construct() | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $this->middleware('guest', ['except' => 'logout']); | 
					
						
							| 
									
										
										
										
											2016-01-09 08:20:55 +01:00
										 |  |  |         parent::__construct(); | 
					
						
							| 
									
										
										
										
											2015-11-01 08:03:41 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * Handle a login request to the application. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param  \Illuminate\Http\Request $request | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return \Illuminate\Http\Response | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |     public function login(Request $request) | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-01-15 17:53:54 +01:00
										 |  |  |         $this->validate($request, [$this->loginUsername() => 'required', 'password' => 'required',]); | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |         $throttles = $this->isUsingThrottlesLoginsTrait(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         if ($throttles && $this->hasTooManyLoginAttempts($request)) { | 
					
						
							|  |  |  |             return $this->sendLockoutResponse($request); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $credentials            = $this->getCredentials($request); | 
					
						
							| 
									
										
										
										
											2015-07-25 07:03:50 +02:00
										 |  |  |         $credentials['blocked'] = 0; // most not be blocked.
 | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-08 18:29:47 +01:00
										 |  |  |         if (Auth::guard($this->getGuard())->attempt($credentials, $request->has('remember'))) { | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |             return $this->handleUserWasAuthenticated($request, $throttles); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |         // check if user is blocked:
 | 
					
						
							| 
									
										
										
										
											2016-03-18 11:22:58 +01:00
										 |  |  |         $errorMessage = ''; | 
					
						
							| 
									
										
										
										
											2015-07-26 07:39:21 +02:00
										 |  |  |         /** @var User $foundUser */ | 
					
						
							|  |  |  |         $foundUser = User::where('email', $credentials['email'])->where('blocked', 1)->first(); | 
					
						
							|  |  |  |         if (!is_null($foundUser)) { | 
					
						
							|  |  |  |             // if it exists, show message:
 | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  |             $code         = strlen(strval($foundUser->blocked_code)) > 0 ? $foundUser->blocked_code : 'general_blocked'; | 
					
						
							| 
									
										
										
										
											2016-03-18 11:22:58 +01:00
										 |  |  |             $errorMessage = strval(trans('firefly.' . $code . '_error', ['email' => $credentials['email']])); | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  |             $this->reportBlockedUserLoginAttempt($foundUser, $code, $request->ip()); | 
					
						
							| 
									
										
										
										
											2015-07-25 07:03:50 +02:00
										 |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-07-14 22:48:34 +02:00
										 |  |  |         if ($throttles) { | 
					
						
							|  |  |  |             $this->incrementLoginAttempts($request); | 
					
						
							|  |  |  |         } | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-18 11:22:58 +01:00
										 |  |  |         return $this->sendFailedLoginResponse($request, $errorMessage); | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * Handle a registration request for the application. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |      * @param  \Illuminate\Http\Request $request | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  |      * @return \Illuminate\Http\Response | 
					
						
							| 
									
										
										
										
											2016-02-17 21:14:32 +01:00
										 |  |  |      * @throws FireflyException | 
					
						
							|  |  |  |      * @throws \Illuminate\Foundation\Validation\ValidationException | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-03-28 19:50:24 +02:00
										 |  |  |     public function register(Request $request) | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  |     { | 
					
						
							| 
									
										
										
										
											2015-06-11 21:19:40 +02:00
										 |  |  |         $validator = $this->validator($request->all()); | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |         if ($validator->fails()) { | 
					
						
							|  |  |  |             $this->throwValidationException( | 
					
						
							|  |  |  |                 $request, $validator | 
					
						
							|  |  |  |             ); | 
					
						
							|  |  |  |         } | 
					
						
							| 
									
										
										
										
											2015-12-03 11:17:48 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-03-29 21:27:51 +02:00
										 |  |  |         $data             = $request->all(); | 
					
						
							| 
									
										
										
										
											2015-03-25 22:29:32 +01:00
										 |  |  |         $data['password'] = bcrypt($data['password']); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-03 11:17:48 +01:00
										 |  |  |         // is user email domain blocked?
 | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |         if ($this->isBlockedDomain($data['email'])) { | 
					
						
							| 
									
										
										
										
											2016-01-27 18:31:44 +01:00
										 |  |  |             $validator->getMessageBag()->add('email', (string)trans('validation.invalid_domain')); | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |             $this->reportBlockedDomainRegistrationAttempt($data['email'], $request->ip()); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-03 11:17:48 +01:00
										 |  |  |             $this->throwValidationException( | 
					
						
							|  |  |  |                 $request, $validator | 
					
						
							|  |  |  |             ); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-08 16:01:21 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-03-28 19:50:24 +02:00
										 |  |  |         $user = $this->create($request->all()); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         // trigger user registration event:
 | 
					
						
							|  |  |  |         event(new UserRegistration($user, $request->ip())); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         Auth::login($user); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         Session::flash('success', strval(trans('firefly.registered'))); | 
					
						
							|  |  |  |         Session::flash('gaEventCategory', 'user'); | 
					
						
							|  |  |  |         Session::flash('gaEventAction', 'new-registration'); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return redirect($this->redirectPath()); | 
					
						
							| 
									
										
										
										
											2015-03-03 09:29:02 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * Show the application registration form. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return \Illuminate\Http\Response | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function showRegistrationForm() | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-04-29 11:34:48 +02:00
										 |  |  |         $showDemoWarning = env('SHOW_DEMO_WARNING', false); | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-04-29 11:34:48 +02:00
										 |  |  |         return view('auth.register', compact('showDemoWarning')); | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Create a new user instance after a valid registration. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param  array $data | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return User | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     protected function create(array $data) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return User::create( | 
					
						
							|  |  |  |             [ | 
					
						
							|  |  |  |                 'email'    => $data['email'], | 
					
						
							|  |  |  |                 'password' => bcrypt($data['password']), | 
					
						
							|  |  |  |             ] | 
					
						
							|  |  |  |         ); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * @return array | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2015-12-18 16:38:50 +01:00
										 |  |  |     protected function getBlockedDomains() | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2016-01-08 18:51:10 +01:00
										 |  |  |         $set     = explode(',', env('BLOCKED_DOMAINS', '')); | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |         $domains = []; | 
					
						
							| 
									
										
										
										
											2015-12-18 16:38:50 +01:00
										 |  |  |         foreach ($set as $entry) { | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |             $domain = trim($entry); | 
					
						
							| 
									
										
										
										
											2015-12-18 16:38:50 +01:00
										 |  |  |             if (strlen($domain) > 0) { | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |                 $domains[] = $domain; | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  |         } | 
					
						
							| 
									
										
										
										
											2015-12-18 16:38:50 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |         return $domains; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |     /** | 
					
						
							|  |  |  |      * Get the failed login message. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |      * @param string $message | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return string | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |     protected function getFailedLoginMessage(string $message) | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |     { | 
					
						
							|  |  |  |         if (strlen($message) > 0) { | 
					
						
							|  |  |  |             return $message; | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         return Lang::has('auth.failed') | 
					
						
							|  |  |  |             ? Lang::get('auth.failed') | 
					
						
							|  |  |  |             : 'These credentials do not match our records.'; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-28 07:55:09 +01:00
										 |  |  |     /** | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |      * @param string $email | 
					
						
							| 
									
										
										
										
											2015-12-28 07:55:09 +01:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return bool | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |     protected function isBlockedDomain(string $email) | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |     { | 
					
						
							|  |  |  |         $parts   = explode('@', $email); | 
					
						
							|  |  |  |         $blocked = $this->getBlockedDomains(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         if (isset($parts[1]) && in_array($parts[1], $blocked)) { | 
					
						
							|  |  |  |             return true; | 
					
						
							|  |  |  |         } | 
					
						
							| 
									
										
										
										
											2015-12-18 16:38:50 +01:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2015-12-18 07:31:36 +01:00
										 |  |  |         return false; | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Get the failed login response instance. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param \Illuminate\Http\Request $request | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |      * @param string                   $message | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return \Illuminate\Http\Response | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2016-02-05 09:25:15 +01:00
										 |  |  |     protected function sendFailedLoginResponse(Request $request, string $message) | 
					
						
							| 
									
										
										
										
											2016-01-19 18:10:07 +01:00
										 |  |  |     { | 
					
						
							|  |  |  |         return redirect()->back() | 
					
						
							|  |  |  |                          ->withInput($request->only($this->loginUsername(), 'remember')) | 
					
						
							|  |  |  |                          ->withErrors( | 
					
						
							|  |  |  |                              [ | 
					
						
							|  |  |  |                                  $this->loginUsername() => $this->getFailedLoginMessage($message), | 
					
						
							|  |  |  |                              ] | 
					
						
							|  |  |  |                          ); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Get a validator for an incoming registration request. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param  array $data | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @return \Illuminate\Contracts\Validation\Validator | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     protected function validator(array $data) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return Validator::make( | 
					
						
							|  |  |  |             $data, [ | 
					
						
							|  |  |  |                      'email'    => 'required|email|max:255|unique:users', | 
					
						
							|  |  |  |                      'password' => 'required|confirmed|min:6', | 
					
						
							|  |  |  |                  ] | 
					
						
							|  |  |  |         ); | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2016-03-18 20:29:51 +01:00
										 |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Send a message home about a blocked domain and the address attempted to register. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param string $registrationMail | 
					
						
							|  |  |  |      * @param string $ipAddress | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     private function reportBlockedDomainRegistrationAttempt(string $registrationMail, string $ipAddress) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         try { | 
					
						
							|  |  |  |             $email  = env('SITE_OWNER', false); | 
					
						
							|  |  |  |             $parts  = explode('@', $registrationMail); | 
					
						
							|  |  |  |             $domain = $parts[1]; | 
					
						
							|  |  |  |             $fields = [ | 
					
						
							|  |  |  |                 'email_address'  => $registrationMail, | 
					
						
							|  |  |  |                 'blocked_domain' => $domain, | 
					
						
							|  |  |  |                 'ip'             => $ipAddress, | 
					
						
							|  |  |  |             ]; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             Mail::send( | 
					
						
							|  |  |  |                 ['emails.blocked-registration-html', 'emails.blocked-registration'], $fields, function (Message $message) use ($email, $domain) { | 
					
						
							|  |  |  |                 $message->to($email, $email)->subject('Blocked a registration attempt with domain ' . $domain . '.'); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  |             ); | 
					
						
							|  |  |  |         } catch (Swift_TransportException $e) { | 
					
						
							|  |  |  |             Log::error($e->getMessage()); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Send a message home about the  blocked attempt to login. | 
					
						
							|  |  |  |      * Perhaps in a later stage, simply log these messages. | 
					
						
							|  |  |  |      * | 
					
						
							|  |  |  |      * @param User   $user | 
					
						
							|  |  |  |      * @param string $code | 
					
						
							|  |  |  |      * @param string $ipAddress | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     private function reportBlockedUserLoginAttempt(User $user, string $code, string $ipAddress) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         try { | 
					
						
							|  |  |  |             $email  = env('SITE_OWNER', false); | 
					
						
							|  |  |  |             $fields = [ | 
					
						
							|  |  |  |                 'user_id'      => $user->id, | 
					
						
							|  |  |  |                 'user_address' => $user->email, | 
					
						
							|  |  |  |                 'code'         => $code, | 
					
						
							|  |  |  |                 'ip'           => $ipAddress, | 
					
						
							|  |  |  |             ]; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             Mail::send( | 
					
						
							|  |  |  |                 ['emails.blocked-login-html', 'emails.blocked-login'], $fields, function (Message $message) use ($email, $user) { | 
					
						
							|  |  |  |                 $message->to($email, $email)->subject('Blocked a login attempt from ' . trim($user->email) . '.'); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  |             ); | 
					
						
							|  |  |  |         } catch (Swift_TransportException $e) { | 
					
						
							|  |  |  |             Log::error($e->getMessage()); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  |     } | 
					
						
							| 
									
										
										
										
											2015-02-06 04:39:52 +01:00
										 |  |  | } |