Home Explore Help
Register Sign In
TooEasy
/
backend-php
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 163a07984f
Branches Tags
backend-php
/
controllers
/
LoginController.php

LoginController.php 5.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 
  1. <?php
    2. 

  2. 

  3. namespace Controllers;
    4. 

  4. 

  5. use Firebase\JWT\JWT;
    6. 

  6. use Libs\ResponseLib;
    7. 

  7. use Models\UserModel;
    8. 

  8. use Services\TshieldService;
    9. 

  9. use Psr\Http\Message\ServerRequestInterface;
    10. 

  10. use Respect\Validation\Validator as val;
    11. 

  11. use Respect\Validation\Exceptions\ValidationException;
    12. 

  12. 

  13. class LoginController
    14. 

  14. {
    15. 

  15.     private UserModel $userModel;
    16. 

  16.     private TshieldService $tshieldService;
    17. 

  17. 

  18.     public function __construct()
    19. 

  19.     {
    20. 

  20.         $this->userModel = new UserModel();
    21. 

  21.         $this->tshieldService = new TshieldService();
    22. 

  22.     }
    23. 

  23. 

  24.     public function __invoke(ServerRequestInterface $request)
    25. 

  25.     {
    26. 

  26.         $body = json_decode((string) $request->getBody(), true) ?? [];
    27. 

  27. 

  28.         try {
    29. 

  29.             val::key('email', val::email())
    30. 

  30.                 ->key('password', val::stringType()->notEmpty()->length(8, null))
    31. 

  31.                 ->assert($body);
    32. 

  32.         } catch (ValidationException $e) {
    33. 

  33.             return ResponseLib::sendFail("Validation failed: " . $e->getFullMessage(), [], "E_VALIDATE")->withStatus(401);
    34. 

  34.         }
    35. 

  35. 

  36.         $email = $body['email'];
    37. 

  37.         $password = $body['password'];
    38. 

  38. 

  39.         $user = $this->userModel->validateLogin($email, $password);
    40. 

  40. 

  41.         if (!$user) {
    42. 

  42.             return ResponseLib::sendFail("Invalid credentials", [], "E_VALIDATE")->withStatus(401);
    43. 

  43.         }
    44. 

  44. 

  45.         $kycStatus = (int)($user['user_kyc'] ?? 0);
    46. 

  46.         $roleId = (int)($user['role_id'] ?? 0);
    47. 

  47. 

  48.         if ($kycStatus === 0) {
    49. 

  49.             if ($roleId === 1) {
    50. 

  50.                 return ResponseLib::sendFail(
    51. 

  51.                     'Necessário finalizar análise PJ ou contatar o suporte.',
    52. 

  52.                     ['reason' => 'KYC_PJ_PENDING'],
    53. 

  53.                     'E_KYC'
    54. 

  54.                 )->withStatus(403);
    55. 

  55.             }
    56. 

  56. 

  57.             $analysisPayload = [
    58. 

  58.                 'name' => $user['user_name'] ?? $user['user_email'],
    59. 

  59.                 'document' => $this->buildDocumentPayload($user['user_cpf'] ?? ''),
    60. 

  60.                 'email' => $user['user_email'],
    61. 

  61.                 'phone' => $user['user_phone'] ?? '',
    62. 

  62.                 'birthdate' => $this->formatBirthdate($user['user_birthdate'] ?? null),
    63. 

  63.             ];
    64. 

  64. 

  65.             if (empty($analysisPayload['document']['documentNumber'])) {
    66. 

  66.                 return ResponseLib::sendFail(
    67. 

  67.                     'CPF não cadastrado. Contate o suporte para concluir a verificação.',
    68. 

  68.                     ['reason' => 'KYC_PF_MISSING_DOCUMENT'],
    69. 

  69.                     'E_KYC'
    70. 

  70.                 )->withStatus(403);
    71. 

  71.             }
    72. 

  72. 

  73.             try {
    74. 

  74.                 $tshield = $this->tshieldService->generateIndividualLink(
    75. 

  75.                     (int)$user['user_id'],
    76. 

  76.                     $analysisPayload
    77. 

  77.                 );
    78. 

  78.             } catch (\Throwable $e) {
    79. 

  79.                 return ResponseLib::sendFail(
    80. 

  80.                     'Não foi possível gerar o link de verificação: ' . $e->getMessage(),
    81. 

  81.                     [],
    82. 

  82.                     'E_EXTERNAL'
    83. 

  83.                 )->withStatus(502);
    84. 

  84.             }
    85. 

  85. 

  86.             return ResponseLib::sendFail(
    87. 

  87.                 'KYC pendente. Conclua a verificação pelo link disponibilizado.',
    88. 

  88.                 [
    89. 

  89.                     'link' => $tshield['link'],
    90. 

  90.                     'numberToken' => $tshield['number'],
    91. 

  91.                 ],
    92. 

  92.                 'E_KYC'
    93. 

  93.             )->withStatus(403);
    94. 

  94.         }
    95. 

  95. 

  96.         $payload = [
    97. 

  97.             'sub' => $user['user_id'],
    98. 

  98.             'email' => $user['user_email'],
    99. 

  99.             'iat' => time(),
    100. 

  100.             'exp' => time() + 3600
    101. 

  101.         ];
    102. 

  102.         $jwt = JWT::encode($payload, $_ENV['JWT_SECRET'], 'HS256');
    103. 

  103. 

  104.         return ResponseLib::sendOk(['token' => $jwt, 'user_id' => $user['user_id'], 'company_id' => $user['company_id']]);
    105. 

  105.     }
    106. 

  106. 

  107.     private function buildDocumentPayload(?string $cpf): array
    108. 

  108.     {
    109. 

  109.         $number = preg_replace('/\D+/', '', (string)$cpf);
    110. 

  110.         return [
    111. 

  111.             'documentNumber' => $number,
    112. 

  112.             'documentType' => 'CPF',
    113. 

  113.         ];
    114. 

  114.     }
    115. 

  115. 

  116.     private function formatBirthdate($value): ?string
    117. 

  117.     {
    118. 

  118.         if ($value === null || $value === '') {
    119. 

  119.             return null;
    120. 

  120.         }
    121. 

  121. 

  122.         if (is_numeric($value)) {
    123. 

  123.             $timestamp = (int)$value;
    124. 

  124.             if ($timestamp > 0) {
    125. 

  125.                 if (strlen((string)$timestamp) === 8) {
    126. 

  126.                     $formatted = \DateTimeImmutable::createFromFormat('Ymd', (string)$timestamp);
    127. 

  127.                     if ($formatted) {
    128. 

  128.                         return $formatted->format('Y-m-d');
    129. 

  129.                     }
    130. 

  130.                 }
    131. 

  131.                 if ($timestamp >= 1000000000) {
    132. 

  132.                     $dt = (new \DateTimeImmutable())->setTimestamp($timestamp);
    133. 

  133.                     return $dt->format('Y-m-d');
    134. 

  134.                 }
    135. 

  135.             }
    136. 

  136.         }
    137. 

  137. 

  138.         if (is_string($value) && preg_match('/^\d{4}-\d{2}-\d{2}$/', $value)) {
    139. 

  139.             return $value;
    140. 

  140.         }
    141. 

  141. 

  142.         return (string)$value;
    143. 

  143.     }
    144. 

  144. 

  145.     private function formatAddress(array $user): ?string
    146. 

  146.     {
    147. 

  147.         $parts = array_filter([
    148. 

  148.             $user['user_address'] ?? null,
    149. 

  149.             $user['user_city'] ?? null,
    150. 

  150.             $user['user_state'] ?? null,
    151. 

  151.             $user['user_zip'] ?? null,
    152. 

  152.             $user['user_country'] ?? null,
    153. 

  153.         ]);
    154. 

  154. 

  155.         return empty($parts) ? null : implode(', ', $parts);
    156. 

  156.     }
    157. 

  157. }
    158.