Files
asset-management-system/app/Http/Controllers/ProfileController.php

109 lines
3.4 KiB
PHP

<?php
namespace App\Http\Controllers;
use App\Models\AssetLocation;
use App\Models\Department;
use App\Services\Security\TwoFactorService;
use Illuminate\Http\RedirectResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Hash;
use Illuminate\Validation\Rule;
use Illuminate\View\View;
class ProfileController extends Controller
{
public function __construct(private readonly TwoFactorService $twoFactor)
{
}
public function show(Request $request): View
{
$user = $request->user();
return view('profile.index', [
'user' => $user,
'departments' => Department::orderBy('name')->get(),
'locations' => AssetLocation::orderBy('name')->get(),
'otpUrl' => $user->two_factor_secret ? $this->twoFactor->buildOtpAuthUrl($user, $user->two_factor_secret) : null,
]);
}
public function updateProfile(Request $request): RedirectResponse
{
$user = $request->user();
$data = $request->validate([
'name' => ['required', 'string', 'max:255'],
'email' => ['required', 'email', Rule::unique('users', 'email')->ignore($user->id)],
'department_id' => ['nullable', 'uuid', 'exists:departments,id'],
'asset_location_id' => ['nullable', 'uuid', 'exists:asset_locations,id'],
]);
$user->update($data);
return back()->with('success', 'Profil berhasil diperbarui.');
}
public function updatePassword(Request $request): RedirectResponse
{
$user = $request->user();
$data = $request->validate([
'current_password' => ['required', 'current_password'],
'password' => ['required', 'confirmed', 'min:8'],
]);
$user->update(['password' => Hash::make($data['password'])]);
return back()->with('success', 'Kata sandi berhasil diperbarui.');
}
public function setup2fa(Request $request): RedirectResponse
{
$user = $request->user();
$secret = $this->twoFactor->generateSecret();
$recovery = $this->twoFactor->generateRecoveryCodes();
$user->update([
'two_factor_secret' => $secret,
'two_factor_recovery_codes' => $recovery,
'two_factor_enabled' => false,
'two_factor_confirmed_at' => null,
]);
return back()->with('success', '2FA disiapkan. Silakan konfirmasi kode.')->with('show2fa', true);
}
public function confirm2fa(Request $request): RedirectResponse
{
$user = $request->user();
$data = $request->validate([
'code' => ['required', 'digits:6'],
]);
if (!$user->two_factor_secret || !$this->twoFactor->verifyCode($user->two_factor_secret, $data['code'])) {
return back()->withErrors(['code' => 'Kode 2FA tidak valid.']);
}
$user->update([
'two_factor_enabled' => true,
'two_factor_confirmed_at' => now(),
]);
return back()->with('success', '2FA berhasil diaktifkan.');
}
public function disable2fa(Request $request): RedirectResponse
{
$user = $request->user();
$user->update([
'two_factor_enabled' => false,
'two_factor_secret' => null,
'two_factor_recovery_codes' => null,
'two_factor_confirmed_at' => null,
]);
return back()->with('success', '2FA dinonaktifkan.');
}
}