whose-name/routes/api.php at main · makimo/whose-name · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
<?php

use Illuminate\Http\Request;
use Illuminate\Support\Facades\Route;
use Illuminate\Support\Facades\Auth;

use Domain\WhoseName\QueryService;

/*
|--------------------------------------------------------------------------
| API Routes
|--------------------------------------------------------------------------
|
| Here is where you can register API routes for your application. These
| routes are loaded by the RouteServiceProvider within a group which
| is assigned the "api" middleware group. Enjoy building your API!
|
*/


Route::post('/request-token', function(Request $request) {
    $validated = $request->validate([
        'email' => 'required|email',
        'password' => 'required',
        'title' => 'required',
        'abilities' => 'array',
        'abilities.*' => 'string|in:whose-name',
    ]);

    $credentials = [
        'email' => $validated['email'],
        'password' => $validated['password'],
    ];

    $tokenTitle = $validated['title'];
    $tokenAbilities = isset($validated['abilities'])
        ? $validated['abilities']
        : [];

    if (Auth::attempt($credentials)) {
        $user = Auth::user();

        $token = $user->createToken(
            $tokenTitle,
            $tokenAbilities
        );

        return response()->json([
            'token' => $token->plainTextToken,
            'title' => $tokenTitle,
            'abilities' => $tokenAbilities,
        ], 201);
    }

    return response()->json([
        'errors' => [
            'login' => [
                'Email and password does not match'
            ]
        ],
        'message' => 'Username and password does not match',
    ], 401);
});


Route::middleware('auth:sanctum', 'ability:whose-name')
    ->prefix('whose-name')
    ->group(function () {
        Route::get('/query', function(Request $request, QueryService $service) {
            $username = $service->whatIsTheNameOf(
                $request->input('u', ''),
                $request->input('s', ''),
                $request->input('q', '')
            );

            return response()->json(
                ['username' => $username],
                $username === null ? 404: 200
            );
        });
    });