chore: commit current workspace changes

2026-05-02 09:37:14 +02:00
parent 79235133f0
commit caf1464aa5
121 changed files with 485218 additions and 181663 deletions
--- a/app/Http/Controllers/Auth/PasswordResetLinkController.php
+++ b/app/Http/Controllers/Auth/PasswordResetLinkController.php
@@ -3,13 +3,21 @@
 namespace App\Http\Controllers\Auth;

 use App\Http\Controllers\Controller;
+use App\Models\User;
+use App\Services\Auth\AuthAuditLogger;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Password;
+use Illuminate\Support\Facades\Validator;
 use Illuminate\View\View;

 class PasswordResetLinkController extends Controller
 {
+    public function __construct(
+        private readonly AuthAuditLogger $authAuditLogger,
+    ) {
+    }
+
    /**
     * Display the password reset link request view.
     */
@@ -25,20 +33,45 @@ class PasswordResetLinkController extends Controller
     */
    public function store(Request $request): RedirectResponse
    {
-        $request->validate([
+        $validator = Validator::make($request->all(), [
            'email' => ['required', 'email'],
        ]);

-        // We will send the password reset link to this user. Once we have attempted
-        // to send the link, we will examine the response then see the message we
-        // need to show to the user. Finally, we'll send out a proper response.
+        if ($validator->fails()) {
+            $this->authAuditLogger->log(
+                eventType: 'forgot_password',
+                request: $request,
+                status: 'failed',
+                reason: 'validation_failed',
+                identifier: (string) $request->input('email'),
+                metadata: ['fields' => array_keys($validator->errors()->toArray())],
+            );
+
+            $validator->validate();
+        }
+
+        $validated = $validator->validated();
+        $email = strtolower(trim((string) $validated['email']));
+        $user = User::query()->whereRaw('LOWER(email) = ?', [$email])->first();
+
        $status = Password::sendResetLink(
-            $request->only('email')
+            ['email' => $email]
        );

-        return $status == Password::RESET_LINK_SENT
+        $success = $status === Password::RESET_LINK_SENT;
+
+        $this->authAuditLogger->log(
+            eventType: 'forgot_password',
+            request: $request,
+            status: $success ? 'success' : 'failed',
+            reason: strtolower((string) $status),
+            identifier: $email,
+            user: $user,
+        );
+
+        return $success
                    ? back()->with('status', __($status))
-                    : back()->withInput($request->only('email'))
+                    : back()->withInput(['email' => $email])
                        ->withErrors(['email' => __($status)]);
    }
 }