Added API
This commit is contained in:
@@ -1,15 +0,0 @@
|
|||||||
<?php
|
|
||||||
|
|
||||||
namespace App\Http\Controllers;
|
|
||||||
|
|
||||||
use App\Models\User;
|
|
||||||
use App\Models\UserFlight;
|
|
||||||
use Illuminate\Http\Request;
|
|
||||||
use Illuminate\Support\Facades\Cache;
|
|
||||||
use Illuminate\Support\Facades\Gate;
|
|
||||||
|
|
||||||
class UserFlightController extends Controller
|
|
||||||
{
|
|
||||||
|
|
||||||
|
|
||||||
}
|
|
||||||
@@ -37,6 +37,7 @@ class HandleInertiaRequests extends Middleware
|
|||||||
'user' => $request->user(),
|
'user' => $request->user(),
|
||||||
'roles' => $request->user()?->getRoleNames() ?? [],
|
'roles' => $request->user()?->getRoleNames() ?? [],
|
||||||
'permissions' => $request->user()?->getAllPermissions()->pluck('name') ?? [],
|
'permissions' => $request->user()?->getAllPermissions()->pluck('name') ?? [],
|
||||||
|
'apiToken' => session('api_token'),
|
||||||
],
|
],
|
||||||
'achievement_notifications' => fn() => $request->user()
|
'achievement_notifications' => fn() => $request->user()
|
||||||
? $request->user()
|
? $request->user()
|
||||||
|
|||||||
@@ -4,6 +4,7 @@ namespace App\Http\Middleware;
|
|||||||
|
|
||||||
use Closure;
|
use Closure;
|
||||||
use Illuminate\Http\Request;
|
use Illuminate\Http\Request;
|
||||||
|
use Illuminate\Support\Facades\Auth;
|
||||||
use Symfony\Component\HttpFoundation\Response;
|
use Symfony\Component\HttpFoundation\Response;
|
||||||
|
|
||||||
class SanctumOrTrustedOrigin
|
class SanctumOrTrustedOrigin
|
||||||
@@ -11,7 +12,8 @@ class SanctumOrTrustedOrigin
|
|||||||
public function handle(Request $request, Closure $next): Response
|
public function handle(Request $request, Closure $next): Response
|
||||||
{
|
{
|
||||||
// Authenticated via Sanctum (cookie or token) — let it through, auth()->user() is set.
|
// Authenticated via Sanctum (cookie or token) — let it through, auth()->user() is set.
|
||||||
if ($request->user('sanctum')) {
|
if ($user = $request->user('sanctum')) {
|
||||||
|
Auth::setUser($user);
|
||||||
return $next($request);
|
return $next($request);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@@ -0,0 +1,23 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
namespace App\Listeners;
|
||||||
|
|
||||||
|
use App\Models\User;
|
||||||
|
use Illuminate\Auth\Events\Login;
|
||||||
|
|
||||||
|
class IssueApiToken
|
||||||
|
{
|
||||||
|
public function handle(Login $event): void
|
||||||
|
{
|
||||||
|
/** @var User $user */
|
||||||
|
$user = $event->user;
|
||||||
|
$user->tokens()->where('name', 'frontend')->delete();
|
||||||
|
$token = $user->createToken(
|
||||||
|
'frontend',
|
||||||
|
['*'],
|
||||||
|
now()->addHours(4)
|
||||||
|
)->plainTextToken;
|
||||||
|
|
||||||
|
session(['api_token' => $token]);
|
||||||
|
}
|
||||||
|
}
|
||||||
@@ -0,0 +1,23 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
namespace App\Listeners;
|
||||||
|
|
||||||
|
use Illuminate\Contracts\Queue\ShouldQueue;
|
||||||
|
use Illuminate\Queue\InteractsWithQueue;
|
||||||
|
|
||||||
|
namespace App\Listeners;
|
||||||
|
|
||||||
|
use App\Models\User;
|
||||||
|
use Illuminate\Auth\Events\Logout;
|
||||||
|
|
||||||
|
class RevokeApiToken
|
||||||
|
{
|
||||||
|
public function handle(Logout $event): void
|
||||||
|
{
|
||||||
|
/** @var User $user */
|
||||||
|
$user = $event->user;
|
||||||
|
|
||||||
|
$user?->tokens()->where('name', 'frontend')->delete();
|
||||||
|
session()->forget('api_token');
|
||||||
|
}
|
||||||
|
}
|
||||||
@@ -31,8 +31,8 @@ class AppServiceProvider extends ServiceProvider
|
|||||||
UserFlight::observe(FlightObserver::class);
|
UserFlight::observe(FlightObserver::class);
|
||||||
Airline::observe(AirlineObserver::class);
|
Airline::observe(AirlineObserver::class);
|
||||||
RateLimiter::for('api', function (Request $request) {
|
RateLimiter::for('api', function (Request $request) {
|
||||||
return $request->user()
|
return $request->user('sanctum')
|
||||||
? Limit::perMinute(60)->by($request->user()->id)
|
? Limit::perMinute(60)->by($request->user('sanctum')->id)
|
||||||
: Limit::perMinute(10)->by($request->ip());
|
: Limit::perMinute(10)->by($request->ip());
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
@@ -1,6 +1,7 @@
|
|||||||
<?php
|
<?php
|
||||||
|
|
||||||
use App\Http\Middleware\HandleInertiaRequests;
|
use App\Http\Middleware\HandleInertiaRequests;
|
||||||
|
use App\Http\Middleware\SanctumOrTrustedOrigin;
|
||||||
use Illuminate\Database\Eloquent\ModelNotFoundException;
|
use Illuminate\Database\Eloquent\ModelNotFoundException;
|
||||||
use Illuminate\Foundation\Application;
|
use Illuminate\Foundation\Application;
|
||||||
use Illuminate\Foundation\Configuration\Exceptions;
|
use Illuminate\Foundation\Configuration\Exceptions;
|
||||||
@@ -32,6 +33,7 @@ return Application::configure(basePath: dirname(__DIR__))
|
|||||||
'role' => RoleMiddleware::class,
|
'role' => RoleMiddleware::class,
|
||||||
'permission' => PermissionMiddleware::class,
|
'permission' => PermissionMiddleware::class,
|
||||||
'role_or_permission' => RoleOrPermissionMiddleware::class,
|
'role_or_permission' => RoleOrPermissionMiddleware::class,
|
||||||
|
'sanctum.or.trusted' => SanctumOrTrustedOrigin::class,
|
||||||
]);
|
]);
|
||||||
//
|
//
|
||||||
})
|
})
|
||||||
|
|||||||
@@ -0,0 +1,42 @@
|
|||||||
|
import { ref, onMounted, onUnmounted, type Ref } from 'vue'
|
||||||
|
import axios from 'axios'
|
||||||
|
import { api } from '@/api'
|
||||||
|
|
||||||
|
interface UseApiResourceReturn<T> {
|
||||||
|
data: Ref<T | null>
|
||||||
|
loading: Ref<boolean>
|
||||||
|
error: Ref<string | null>
|
||||||
|
refresh: () => Promise<void>
|
||||||
|
}
|
||||||
|
|
||||||
|
export function useApiResource<T>(url: string, immediate = true): UseApiResourceReturn<T> {
|
||||||
|
const data = ref<T | null>(null) as Ref<T | null>
|
||||||
|
const loading = ref(true)
|
||||||
|
const error = ref<string | null>(null)
|
||||||
|
|
||||||
|
let controller = new AbortController()
|
||||||
|
|
||||||
|
async function refresh() {
|
||||||
|
controller.abort()
|
||||||
|
controller = new AbortController()
|
||||||
|
loading.value = true
|
||||||
|
error.value = null
|
||||||
|
|
||||||
|
try {
|
||||||
|
const response = await api.get<T>(url, { signal: controller.signal })
|
||||||
|
data.value = response.data
|
||||||
|
} catch (e) {
|
||||||
|
if (!axios.isCancel(e)) {
|
||||||
|
error.value = 'Failed to load data'
|
||||||
|
console.error(e)
|
||||||
|
}
|
||||||
|
} finally {
|
||||||
|
loading.value = false
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
if (immediate) onMounted(refresh)
|
||||||
|
onUnmounted(() => controller.abort())
|
||||||
|
|
||||||
|
return { data, loading, error, refresh }
|
||||||
|
}
|
||||||
@@ -1,21 +1,12 @@
|
|||||||
// useFlights.ts
|
import { computed } from 'vue'
|
||||||
import {onMounted, ref} from "vue";
|
import { useApiResource } from '@/Composables/useApiResource'
|
||||||
import {Flight} from "@/Types/types";
|
import type { Flight } from '@/Types/types'
|
||||||
import axios from "axios";
|
|
||||||
|
|
||||||
export function useFlights(url: string, departedOnly: boolean = false) {
|
export function useFlights(url: string, departedOnly: boolean = false) {
|
||||||
const flights = ref<Flight[]>([])
|
|
||||||
const flightsLoading = ref(true)
|
|
||||||
|
|
||||||
onMounted(async () => {
|
|
||||||
try {
|
|
||||||
const requestUrl = departedOnly ? `${url}/departed` : url
|
const requestUrl = departedOnly ? `${url}/departed` : url
|
||||||
const response = await axios.get(requestUrl)
|
const { data, loading, error } = useApiResource<Flight[]>(requestUrl)
|
||||||
flights.value = response.data
|
|
||||||
} finally {
|
|
||||||
flightsLoading.value = false
|
|
||||||
}
|
|
||||||
})
|
|
||||||
|
|
||||||
return { flights, flightsLoading }
|
const flights = computed(() => data.value ?? [])
|
||||||
|
|
||||||
|
return { flights, flightsLoading: loading, error }
|
||||||
}
|
}
|
||||||
|
|||||||
Vendored
+1
@@ -97,6 +97,7 @@ export type SharedProps = import('@inertiajs/core').PageProps & {
|
|||||||
isLoggedIn: boolean
|
isLoggedIn: boolean
|
||||||
roles: string[];
|
roles: string[];
|
||||||
permissions: string[];
|
permissions: string[];
|
||||||
|
apiToken: string | null;
|
||||||
},
|
},
|
||||||
logo_api_url: string
|
logo_api_url: string
|
||||||
achievement_notifications: Notification[]
|
achievement_notifications: Notification[]
|
||||||
|
|||||||
@@ -0,0 +1,17 @@
|
|||||||
|
import axios from 'axios'
|
||||||
|
import { usePage } from '@inertiajs/vue3'
|
||||||
|
import {SharedProps} from "@/Types/types";
|
||||||
|
|
||||||
|
export const api = axios.create({
|
||||||
|
baseURL: import.meta.env.VITE_API_URL,
|
||||||
|
withCredentials: true,
|
||||||
|
headers: { Accept: 'application/json' },
|
||||||
|
})
|
||||||
|
|
||||||
|
api.interceptors.request.use((config) => {
|
||||||
|
const token = usePage<SharedProps>().props.auth?.apiToken
|
||||||
|
if (token) {
|
||||||
|
config.headers.Authorization = `Bearer ${token}`
|
||||||
|
}
|
||||||
|
return config
|
||||||
|
})
|
||||||
+3
-2
@@ -12,9 +12,10 @@ Route::domain(config('app.api_domain'))->group(function () {
|
|||||||
return response()->json(['message' => 'Welcome to the FlightsGoneBy API']);
|
return response()->json(['message' => 'Welcome to the FlightsGoneBy API']);
|
||||||
});
|
});
|
||||||
|
|
||||||
Route::prefix('user')->controller(UserApiController::class)->group(function () {
|
Route::prefix('user')->controller(UserApiController::class)->middleware('sanctum.or.trusted')->group(function () {
|
||||||
Route::get('{user}/flights', 'viewableFlights')->name('api.user.flights');
|
Route::get('{user}/flights', 'viewableFlights')->name('api.user.flights');
|
||||||
Route::get('{user}/flights/departed', 'viewableDepartedFlights')->name('api.user.flights');
|
Route::get('{user}/flights/departed', 'viewableDepartedFlights')->name('api.user.flights.departed');
|
||||||
|
Route::get('{user}/flights/upcoming', 'viewableUpcomingFlights')->name('api.user.flights.departed');
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user