126 lines
3.8 KiB
PHP
126 lines
3.8 KiB
PHP
<?php
|
|
// app/Http/Controllers/Auth/AdminAuthController.php
|
|
|
|
namespace App\Http\Controllers\Auth;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Models\User;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\Hash;
|
|
use Illuminate\Validation\ValidationException;
|
|
use Illuminate\Auth\Events\Registered;
|
|
use Illuminate\Validation\Rules;
|
|
|
|
class AdminAuthController extends Controller
|
|
{
|
|
/**
|
|
* Tampilkan halaman login admin
|
|
*/
|
|
public function login()
|
|
{
|
|
return view('admin.auth.login');
|
|
}
|
|
|
|
/**
|
|
* Proses login admin dengan auto-clear session on failed
|
|
*/
|
|
public function authenticate(Request $request)
|
|
{
|
|
// Validasi input
|
|
$credentials = $request->validate([
|
|
'username' => ['required', 'string'],
|
|
'password' => ['required', 'string'],
|
|
]);
|
|
|
|
// Clear session lama sebelum login
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
// Start session baru
|
|
$request->session()->start();
|
|
|
|
// Coba login dengan username DAN role harus 'admin'
|
|
if (Auth::attempt([
|
|
'username' => $credentials['username'],
|
|
'password' => $credentials['password'],
|
|
'role' => 'admin'
|
|
], $request->boolean('remember'))) {
|
|
|
|
// Regenerate session untuk keamanan
|
|
$request->session()->regenerate();
|
|
|
|
return redirect()->intended(route('admin.dashboard'));
|
|
}
|
|
|
|
// Track failed attempts
|
|
$attempts = $request->session()->get('login_attempts', 0) + 1;
|
|
$request->session()->put('login_attempts', $attempts);
|
|
|
|
// Auto-flush setelah 3x gagal
|
|
if ($attempts >= 3) {
|
|
$request->session()->flush();
|
|
$request->session()->regenerate();
|
|
|
|
return redirect()->back()->withErrors([
|
|
'username' => 'Terlalu banyak percobaan login gagal. Session telah direset. Silakan coba lagi.'
|
|
])->withInput($request->except('password'));
|
|
}
|
|
|
|
throw ValidationException::withMessages([
|
|
'username' => "Login gagal (Percobaan ke-{$attempts}/3). Username/Password salah atau bukan akun Admin.",
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Logout admin
|
|
*/
|
|
public function logout(Request $request)
|
|
{
|
|
Auth::logout();
|
|
$request->session()->flush();
|
|
$request->session()->invalidate();
|
|
$request->session()->regenerateToken();
|
|
|
|
return redirect()->route('admin.login')
|
|
->with('success', 'Anda berhasil logout.');
|
|
}
|
|
|
|
/**
|
|
* Tampilkan halaman register admin
|
|
*/
|
|
public function register()
|
|
{
|
|
return view('admin.auth.register');
|
|
}
|
|
|
|
/**
|
|
* Proses register admin baru
|
|
*/
|
|
public function storeRegister(Request $request)
|
|
{
|
|
// Validasi hanya Email, Password, dan Konfirmasi Password
|
|
$request->validate([
|
|
'email' => 'required|string|email|max:255|unique:users,email',
|
|
'password' => ['required', 'confirmed', Rules\Password::defaults()],
|
|
], [
|
|
'email.unique' => 'Email ini sudah terdaftar sebagai Admin.',
|
|
'password.confirmed' => 'Konfirmasi password tidak cocok.'
|
|
]);
|
|
|
|
// Gunakan email sebagai username dan berikan nama default
|
|
$user = User::create([
|
|
'name' => 'Administrator',
|
|
'email' => $request->email,
|
|
'username' => $request->email, // WAJIB: Gunakan email sebagai username untuk login
|
|
'role' => 'admin',
|
|
'password' => Hash::make($request->password),
|
|
]);
|
|
|
|
event(new Registered($user));
|
|
Auth::login($user);
|
|
|
|
return redirect()->route('admin.dashboard')
|
|
->with('success', 'Akun admin berhasil dibuat!');
|
|
}
|
|
} |