chore: commit current workspace changes

2026-05-02 09:37:14 +02:00
parent 79235133f0
commit caf1464aa5
121 changed files with 485218 additions and 181663 deletions
--- a/app/Http/Requests/Auth/LoginRequest.php
+++ b/app/Http/Requests/Auth/LoginRequest.php
@@ -3,7 +3,9 @@
 namespace App\Http\Requests\Auth;

 use App\Models\User;
+use App\Services\Auth\AuthAuditLogger;
 use Illuminate\Auth\Events\Lockout;
+use Illuminate\Contracts\Validation\Validator;
 use Illuminate\Foundation\Http\FormRequest;
 use Illuminate\Support\Facades\Auth;
 use Illuminate\Support\Facades\Hash;
@@ -68,6 +70,16 @@ class LoginRequest extends FormRequest
        if (! $user || ! Hash::check($password, (string) $user->password)) {
            RateLimiter::hit($this->throttleKey());

+            app(AuthAuditLogger::class)->log(
+                eventType: 'login',
+                request: $this,
+                status: 'failed',
+                reason: 'invalid_credentials',
+                identifier: $identifier,
+                user: $user,
+                metadata: ['via' => $authenticatedVia]
+            );
+
            throw ValidationException::withMessages([
                'email' => trans('auth.failed'),
            ]);
@@ -90,6 +102,20 @@ class LoginRequest extends FormRequest
        return $this->authenticatedVia === 'username';
    }

+    protected function failedValidation(Validator $validator): void
+    {
+        app(AuthAuditLogger::class)->log(
+            eventType: 'login',
+            request: $this,
+            status: 'failed',
+            reason: 'validation_failed',
+            identifier: (string) $this->input('email'),
+            metadata: ['fields' => array_keys($validator->errors()->toArray())]
+        );
+
+        parent::failedValidation($validator);
+    }
+
    /**
     * Ensure the login request is not rate limited.
     *
@@ -105,6 +131,15 @@ class LoginRequest extends FormRequest

        $seconds = RateLimiter::availableIn($this->throttleKey());

+        app(AuthAuditLogger::class)->log(
+            eventType: 'login',
+            request: $this,
+            status: 'failed',
+            reason: 'rate_limited',
+            identifier: (string) $this->input('email'),
+            metadata: ['seconds' => $seconds]
+        );
+
        throw ValidationException::withMessages([
            'email' => trans('auth.throttle', [
                'seconds' => $seconds,