/home/kueuepay/public_html/app/Http/Controllers/Api/V1/User/Auth/AuthorizationController.php
<?php
namespace App\Http\Controllers\Api\V1\User\Auth;
use Exception;
use Illuminate\Http\Request;
use App\Constants\GlobalConst;
use App\Http\Helpers\Response;
use App\Models\Admin\SetupKyc;
use Illuminate\Support\Carbon;
use App\Models\UserAuthorization;
use Illuminate\Support\Facades\DB;
use App\Http\Controllers\Controller;
use Illuminate\Support\Facades\Auth;
use App\Traits\ControlDynamicInputFields;
use Illuminate\Support\Facades\Validator;
use App\Providers\Admin\BasicSettingsProvider;
use App\Notifications\User\Auth\SendAuthorizationCode;
class AuthorizationController extends Controller
{
use ControlDynamicInputFields;
public static function sendCodeToMail($user = null) {
if(!$user && auth()->guard("api")->check() == false) throw new Exception(__("Access denied! Unauthenticated"));
if(!$user) $user = auth()->guard("api")->user();
$data = [
'user_id' => $user->id,
'code' => generate_random_code(),
'token' => generate_unique_string("user_authorizations","token",200),
'created_at' => now(),
];
DB::beginTransaction();
try{
UserAuthorization::where("user_id",$user->id)->delete();
DB::table("user_authorizations")->insert($data);
$user->notify(new SendAuthorizationCode((object) $data));
DB::commit();
}catch(Exception $e) {
DB::rollBack();
throw new Exception(__("Something went wrong! Please try again"));
}
return $data;
}
public function resendCodeToMail(Request $request) {
$validator = Validator::make($request->all(),[
'token' => "required|string|exists:user_authorizations,token"
]);
if($validator->fails()) return Response::error($validator->errors()->all(),[]);
$validated = $validator->validate();
$user_authorize = UserAuthorization::where("token",$validated['token'])->first();
if(!$user_authorize) return Response::error([__("Request token is invalid")],[],404);
if(Carbon::now() <= $user_authorize->created_at->addMinutes(GlobalConst::USER_PASS_RESEND_TIME_MINUTE)) {
return Response::error(['You can resend verification code after '.Carbon::now()->diffInSeconds($user_authorize->created_at->addMinutes(GlobalConst::USER_PASS_RESEND_TIME_MINUTE)). ' seconds'],['token' => $validated['token'], 'wait_time' => (string) Carbon::now()->diffInSeconds($user_authorize->created_at->addMinutes(GlobalConst::USER_PASS_RESEND_TIME_MINUTE))],400);
}
$resend_code = generate_random_code();
try{
$user_authorize->update([
'code' => $resend_code,
'created_at' => now(),
]);
$data = $user_authorize->toArray();
try{
$user_authorize->user->notify(new SendAuthorizationCode((object) $data));
}catch(Exception $e){}
}catch(Exception $e) {
return Response::error([__("Something went wrong! Please try again")],[],500);
}
return Response::success([__("Verification code resend successfully!")],['token' => $validated['token'],'wait_time' => ""],200);
}
public function verifyMailCode(Request $request) {
$validator = Validator::make($request->all(),[
'token' => "required|string|exists:user_authorizations,token",
'code' => "required|integer",
]);
if($validator->fails()) {
return Response::error($validator->errors()->all(),[],400);
}
$validated = $validator->validate();
if(!UserAuthorization::where("code",$request->code)->exists()) {
return Response::error([__("Invalid OTP. Please try again")],[],404);
}
$otp_exp_sec = BasicSettingsProvider::get()->otp_exp_seconds ?? GlobalConst::DEFAULT_TOKEN_EXP_SEC;
$auth_column = UserAuthorization::where("token",$request->token)->where("code",$request->code)->first();
if($auth_column->created_at->addSeconds($otp_exp_sec) < now()) {
$auth_column->delete();
$this->authLogout($request);
return Response::error([__("Session expired. Please try again")],[],440);
}
try{
$auth_column->user->update([
'email_verified' => true,
]);
$auth_column->delete();
}catch(Exception $e) {
$auth_column->delete();
$this->authLogout($request);
return Response::error([__("Something went wrong! Please try again")],[],500);
}
return Response::success([__("Account successfully verified")],[],200);
}
public function authLogout(Request $request) {
$user_token = Auth::guard(get_auth_guard())->user()->token();
$user_token->revoke();
}
// Get KYC Input Fields
public function getKycInputFields() {
$user = auth()->guard(get_auth_guard())->user();
$user_kyc = SetupKyc::userKyc()->first();
$kyc_data = $user_kyc->fields;
$kyc_fields = array_reverse($kyc_data);
$data = [
'status_info' => '0: Unverified, 1: Verified, 2: Pending, 3: Rejected',
'kyc_status' => $user->kyc_verified,
'input_fields' => $kyc_fields
];
if(!$user_kyc) return Response::success(['User KYC section is under maintenance'], $data);
if($user->kyc_verified == GlobalConst::VERIFIED) return Response::success(['You are already KYC Verified User'], $data);
if($user->kyc_verified == GlobalConst::PENDING) return Response::success(['Your KYC information is submitted. Please wait for admin confirmation'], $data);
return Response::success(['User KYC input fields fetch successfully!'], $data);
}
public function KycSubmit(Request $request) {
$user = auth()->guard(get_auth_guard())->user();
if($user->kyc_verified == GlobalConst::VERIFIED) return Response::warning(['You are already KYC Verified User']);
$user_kyc_fields = SetupKyc::userKyc()->first()->fields ?? [];
$validation_rules = $this->generateValidationRules($user_kyc_fields);
$validated = Validator::make($request->all(),$validation_rules)->validate();
$get_values = $this->placeValueWithFields($user_kyc_fields,$validated);
$create = [
'user_id' => auth()->guard(get_auth_guard())->user()->id,
'data' => json_encode($get_values),
'created_at' => now(),
];
DB::beginTransaction();
try{
DB::table('user_kyc_data')->updateOrInsert(["user_id" => $user->id],$create);
$user->update([
'kyc_verified' => GlobalConst::PENDING,
]);
DB::commit();
}catch(Exception $e) {
DB::rollBack();
$user->update([
'kyc_verified' => GlobalConst::DEFAULT,
]);
$this->generatedFieldsFilesDelete($get_values);
return Response::error(['KYC information successfully submitted']);
}
return Response::success(['KYC information successfully submitted'],[],200);
}
/**
* Google 2FA Verification
*
* @method GET
* @return \Illuminate\Http\Response
*/
public function verify2FACode(Request $request) {
$validator = Validator::make($request->all(), [
'otp' => 'required',
]);
if($validator->fails()){
$error = ['error'=>$validator->errors()->all()];
return Response::validation($error);
}
$code = $request->otp;
$user = auth()->guard(get_auth_guard())->user();
if(!$user->two_factor_secret) {
return Response::error(['Your secret key not stored properly. Please contact with system administrator']);
}
if(google_2fa_verify($user->two_factor_secret,$code)) {
$user->update([
'two_factor_verified' => true,
]);
return Response::success(['Two factor verified successfully!'],[],200);
}
return Response::error(['Failed to login. Please try again']);
}
}
Service
top
Our Services: Streamlining Your Payment Experience with Excellence
Discover how our services are designed to enhance your NFC Pay experience with convenience, security, and innovative solutions. From managing transactions to secure payments, we are dedicated to providing seamless support every step of the way.
Secure Card Storage
Easily save your credit and debit card details within our app for quick and secure transactions. This feature ensures that your payment information is protected with advanced encryption and can be used for future purchases with just a tap.
Effortless Money Transfers
Transfer funds quickly and securely between users with our streamlined money transfer service. Simply select the recipient, enter the amount, and authorize the transaction for instant, hassle-free transfers.
Merchant Account Setup
Activate your merchant account effortlessly to start receiving payments. Our intuitive setup process ensures that you can begin accepting transactions smoothly, helping your business thrive with minimal setup time.
Real-Time Transaction Tracking
Keep track of all your transactions in real time through our app. Monitor payment statuses, view transaction history, and manage your account efficiently, ensuring complete control over your financial activities.
Customer Support
Our dedicated support team is available to assist you with any queries or issues. Whether you need help with setting up your account or resolving transaction-related questions, we’re here to provide prompt and reliable assistance.
In the digital age, privacy concerns have become increasingly paramount, prompting the European Union to enact the General Data Protection Regulation (GDPR) in 2018. Among its many provisions, GDPR sets strict guidelines for the collection and processing of personal data, including the use of cookies on websites. Privacy Policy
Allow
Decline
