bert.hausmans
b6ef6ec383
LoginController used UserResource (returns `roles`) but the frontend authStore.setUser() expects MeResponse format with `app_roles`. After login, appRoles was set to undefined, making isSuperAdmin always false. Combined with isInitialized staying true after the initial failed /auth/me call, the correct /auth/me was never re-fetched after login. Fix: use MeResource in LoginController (same as MeController) so the login response includes app_roles, permissions, and portal_events. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
47 lines
1.4 KiB
PHP
47 lines
1.4 KiB
PHP
<?php
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace App\Http\Controllers\Api\V1;
|
|
|
|
use App\Http\Controllers\Api\V1\Traits\SetAuthCookie;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Requests\Api\V1\LoginRequest;
|
|
use App\Http\Resources\Api\V1\MeResource;
|
|
use Illuminate\Http\JsonResponse;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Illuminate\Support\Facades\Log;
|
|
|
|
final class LoginController extends Controller
|
|
{
|
|
use SetAuthCookie;
|
|
|
|
public function __invoke(LoginRequest $request): JsonResponse
|
|
{
|
|
if (!Auth::attempt($request->only('email', 'password'))) {
|
|
Log::warning('Failed login attempt', [
|
|
'email' => $request->validated('email'),
|
|
'ip' => $request->ip(),
|
|
'user_agent' => $request->userAgent(),
|
|
]);
|
|
|
|
return $this->unauthorized('Invalid credentials');
|
|
}
|
|
|
|
$user = Auth::user()->load([
|
|
'organisations',
|
|
'roles',
|
|
'permissions',
|
|
'persons' => fn ($q) => $q->with(['event:id,name,slug,start_date,end_date,organisation_id', 'event.organisation:id,name']),
|
|
]);
|
|
|
|
$token = $user->createToken('auth-token')->plainTextToken;
|
|
$cookieName = $this->resolveCookieName($request);
|
|
|
|
return $this->success([
|
|
'user' => new MeResource($user),
|
|
], 'Login successful')
|
|
->withCookie($this->makeAuthCookie($cookieName, $token));
|
|
}
|
|
}
|