me-io
diff --git a/‎.gitignore
+3-1 b/‎.gitignore
+3-1
diff --git a/‎app/Acme/Helpers/Mailer.php
+108 b/‎app/Acme/Helpers/Mailer.php
+108
diff --git a/‎app/Acme/Helpers/Str.php
+18 b/‎app/Acme/Helpers/Str.php
+18
diff --git a/‎app/Acme/JWT/JWT.php
+117 b/‎app/Acme/JWT/JWT.php
+117
diff --git a/‎app/Controllers/AuthController.php
+125 b/‎app/Controllers/AuthController.php
+125
@@ -4,7 +4,8 @@
 /dist
 /tmp
 /out-tsc
-
+/vendor
+/server/logs
 # dependencies
 /node_modules
 
@@ -41,3 +42,4 @@ testem.log
 #System Files
 .DS_Store
 Thumbs.db
+!.gitkeep
@@ -0,0 +1,108 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Acme\Helpers;
+
+use App\Exceptions\GenericException;
+use Swift_Mailer;
+use Swift_Message;
+use Swift_SmtpTransport;
+
+class Mailer
+{
+    /**
+     * @var string
+     */
+    private $host;
+    /**
+     * @var string
+     */
+    private $port;
+    /**
+     * @var string
+     */
+    private $encryption;
+    /**
+     * @var string
+     */
+    private $username;
+    /**
+     * @var string
+     */
+    private $password;
+    /**
+     * @var string
+     */
+    private $name;
+
+    /**
+     * Mailer constructor.
+     *
+     * @param string $host
+     * @param string $port
+     * @param string $encryption
+     * @param string $username
+     * @param string $password
+     * @param string $name
+     */
+    public function __construct(string $host, string $port, string $encryption, string $username, string $password, string $name)
+    {
+        $this->host       = $host;
+        $this->port       = $port;
+        $this->encryption = $encryption;
+        $this->username   = $username;
+        $this->password   = $password;
+        $this->name       = $name;
+    }
+
+    /**
+     * Return a Mailer from an array
+     *
+     * @param array $smtp
+     *
+     * @return Mailer
+     */
+    public static function fromArray(array $smtp): self
+    {
+        return new self(
+            $smtp['host'],
+            $smtp['port'],
+            $smtp['encryption'],
+            $smtp['username'],
+            $smtp['password'],
+            $smtp['name']
+        );
+    }
+
+    /**
+     * Send an email
+     *
+     * @param       $subject
+     * @param array $to
+     * @param array $cc
+     * @param       $body
+     *
+     * @return void
+     *
+     * @throws \App\Exceptions\GenericException
+     */
+    public function send($subject, array $to, array $cc, $body)
+    {
+        $transport = new Swift_SmtpTransport($this->host, $this->port, $this->encryption);
+        $transport->setUsername($this->username)
+                  ->setPassword($this->password);
+
+        $mailer = new Swift_Mailer($transport);
+
+        $message = new Swift_Message($subject);
+        $message->setFrom([$this->username => $this->name])
+                ->setTo($to)
+                ->setCc($cc)
+                ->setBody($body, 'text/html');
+
+        if ($mailer->send($message) === 0) {
+            throw new GenericException('Email not sent', '', 500);
+        }
+    }
+}
@@ -0,0 +1,18 @@
+<?php declare(strict_types=1);
+
+namespace App\Acme\Helpers;
+
+class Str
+{
+    /**
+     * Return a random string by a specific length
+     *
+     * @param int $length
+     *
+     * @return string
+     */
+    public static function random(int $length): string
+    {
+        return substr(md5((string)mt_rand()), 0, $length);
+    }
+}
@@ -0,0 +1,117 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Acme\JWT;
+
+use App\Exceptions\JWTException;
+use BadMethodCallException;
+use InvalidArgumentException;
+use Lcobucci\JWT\Builder;
+use Lcobucci\JWT\Parser;
+use Lcobucci\JWT\Signer\Hmac\Sha256;
+use Lcobucci\JWT\ValidationData;
+use RuntimeException;
+use Slim\Http\Request;
+
+class JWT
+{
+    /**
+     * @var string
+     */
+    private $token;
+    /**
+     * @var Sha256
+     */
+    private $sha256;
+    /**
+     * @var Parser
+     */
+    private $parser;
+    /**
+     * @var Builder
+     */
+    private $builder;
+    /**
+     * @var ValidationData
+     */
+    private $validator;
+    /**
+     * @var array
+     */
+    private $config = [];
+
+    /**
+     * JWT constructor.
+     *
+     * @param Request $request
+     * @param Builder $builder
+     * @param Sha256 $sha256
+     * @param Parser $parser
+     * @param ValidationData $validator
+     * @param array $config
+     */
+    public function __construct(Request $request, Builder $builder, Sha256 $sha256, Parser $parser, ValidationData $validator, array $config)
+    {
+        $this->config = $config;
+        $this->sha256 = $sha256;
+        $this->parser = $parser;
+        $this->builder = $builder;
+        $this->token = $request->getHeaderLine($this->config['header-param']);
+        $this->validator = $validator;
+    }
+
+    /**
+     * Return an encoded jwt
+     *
+     * @param array $data
+     *
+     * @return string
+     */
+    public function encode(array $data): string
+    {
+        $token = $this->builder->setIssuer($this->config['issuer'])
+            ->setAudience($this->config['audience'])
+            ->setId($this->config['id'], true)
+            ->setIssuedAt(time())
+            ->setNotBefore(time())
+            ->setExpiration(time() + 3600);
+        foreach ($data as $key => $value) {
+            $token->set($key, $value);
+        }
+        $token->sign($this->sha256, $this->config['sign']);
+
+        return $token->getToken()->__toString();
+    }
+
+    /**
+     * Decode the token and return its content
+     *
+     * @return array
+     *
+     * @throws JWTException
+     */
+    public function decode(): array
+    {
+        try {
+            $token = $this->parser->parse($this->token);
+            $this->validator->setIssuer($this->config['issuer']);
+            $this->validator->setAudience($this->config['audience']);
+            $this->validator->setId($this->config['id']);
+            if (!$token->validate($this->validator)) {
+                throw new JWTException('Invalid Token', 'Error validating the token');
+            }
+            if (!$token->verify($this->sha256, $this->config['sign'])) {
+                throw new JWTException('Invalid Token', 'The token is empty or not encrypted correctly');
+            }
+
+            return $token->getClaims();
+        } catch (InvalidArgumentException $e) {
+            throw new JWTException('Invalid Token', $e->getMessage(), $e->getCode());
+        } catch (BadMethodCallException $e) {
+            throw new JWTException('Parsing Error', $e->getMessage(), $e->getCode());
+        } catch (RuntimeException $e) {
+            throw new JWTException('Parsing Error', $e->getMessage(), $e->getCode());
+        }
+    }
+}
@@ -0,0 +1,125 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Controllers;
+
+use App\Acme\Helpers\Mailer;
+use App\Acme\JWT\JWT;
+use App\Exceptions\GenericException;
+use App\Responses\ApiResponse;
+use App\Services\AuthService;
+use App\Transformers\Users\UserTransformer;
+use App\Validators\Auth\LoginAuthValidator;
+use App\Validators\Auth\RecoveryAuthValidator;
+use App\Validators\Auth\ResetAuthValidator;
+use Illuminate\Database\Connection;
+use Slim\Http\Request;
+use Slim\Http\Response;
+
+class AuthController
+{
+    /**
+     * @var JWT
+     */
+    private $jwt;
+    /**
+     * @var ApiResponse
+     */
+    private $apiResponse;
+    /**
+     * @var AuthService
+     */
+    private $authService;
+
+    public function __construct(ApiResponse $apiResponse, AuthService $authService, JWT $jwt)
+    {
+        $this->jwt = $jwt;
+        $this->apiResponse = $apiResponse;
+        $this->authService = $authService;
+    }
+
+    /**
+     * Return the logged user
+     *
+     * @param UserTransformer $userTransformer
+     *
+     * @return Response
+     */
+    public function logged(UserTransformer $userTransformer): Response
+    {
+        $user = $this->jwt->decode();
+
+        $data = $userTransformer->item($user);
+
+        return $this->apiResponse->success($data);
+    }
+
+    /**
+     * Authenticate the user and return a JWT
+     *
+     * @param Request $request
+     * @param LoginAuthValidator $validator
+     *
+     * @return Response
+     */
+    public function login(Request $request, LoginAuthValidator $validator): Response
+    {
+        if (!$validator->validate()) {
+            return $this->apiResponse->errorValidation($validator->errors());
+        }
+
+        $user = $this->authService->login($request->getParams());
+
+        return $this->apiResponse->success($this->jwt->encode($user));
+    }
+
+    /**
+     * Recover password
+     *
+     * @param Request $request
+     * @param RecoveryAuthValidator $validator
+     * @param Connection $db
+     * @param Mailer $mailer
+     *
+     * @return Response
+     *
+     * @throws GenericException
+     */
+    public function recovery(Request $request, RecoveryAuthValidator $validator, Connection $db, Mailer $mailer): Response
+    {
+        if (!$validator->validate()) {
+            return $this->apiResponse->errorValidation($validator->errors());
+        }
+
+        try {
+            $db->beginTransaction();
+            $this->authService->recovery($request->getParam('email'), $mailer);
+            $db->commit();
+        } catch (GenericException $e) {
+            $db->rollBack();
+            throw $e;
+        }
+
+        return $this->apiResponse->success(['title' => 'Email sent']);
+    }
+
+    /**
+     * Reset user password
+     *
+     * @param Request $request
+     * @param ResetAuthValidator $validator
+     *
+     * @return Response
+     */
+    public function reset(Request $request, ResetAuthValidator $validator): Response
+    {
+        if (!$validator->validate()) {
+            return $this->apiResponse->errorValidation($validator->errors());
+        }
+
+        $this->authService->reset($request->getParams());
+
+        return $this->apiResponse->success(['title' => 'Password updated']);
+    }
+}