feature: optional username column to login and register (#6)

alfonsobries · web-flow · commit 1dd922d7af36 · 2020-10-22T05:01:34.000+03:00
diff --git a/README.md b/README.md
@@ -26,3 +26,19 @@
 Laravel\Fortify\FortifyServiceProvider::class,
 ARKEcosystem\Fortify\FortifyServiceProvider::class,
 ```
+
+5. Enable or disable the login/register with username or email by using the `username_alt` setting in the `config/fortify.php` file
+
+```php
+<?php
+
+return [
+    // ...
+    'username_alt' => 'username',
+    // Or set that setting to `null` so the user can only login/register with email:
+    // 'username_alt' => null,
+    // ...
+];
+```
+
+**Note:** If you use the `username_alt` setting, you need to ensure that your users table has that column.
diff --git a/config/fortify.php b/config/fortify.php
@@ -47,6 +47,8 @@
 
     'username' => 'email',
 
+    'username_alt' => 'username',
+
     'email' => 'email',
 
     /*
diff --git a/resources/views/auth/login.blade.php b/resources/views/auth/login.blade.php
@@ -35,13 +35,29 @@ class="flex flex-col p-8 mx-4 border rounded-lg border-theme-secondary-200 md:mx
 
                     <div class="mb-4">
                         <div class="flex flex-1">
+                            @php
+                                $username = \Laravel\Fortify\Fortify::username();
+                                $usernameAlt = Config::get('fortify.username_alt');
+                                $type = 'text';
+
+                                if ($usernameAlt) {
+                                    $label = __('fortify::forms.'.$username).' or '.__('fortify::forms.'.$usernameAlt);
+                                } else {
+                                    $label = __('fortify::forms.'.$username);
+                                    if ($username === 'email') {
+                                        $type = 'email';
+                                    }
+                                }
+                            @endphp
+
                             <x-ark-input
-                                name="email"
-                                label="Username or Email"
+                                :type="$type"
+                                :name="$username"
+                                :label="$label"
                                 autocomplete="email"
                                 class="w-full"
                                 :autofocus="true"
-                                :value="old('email')"
+                                :value="old($username)"
                                 :required="true"
                                 :errors="$errors"
                             />
@@ -53,7 +69,7 @@ class="w-full"
                             <x-ark-input
                                 type="password"
                                 name="password"
-                                label="Password"
+                                :label="__('fortify::forms.password')"
                                 autocomplete="password"
                                 class="w-full"
                                 :required="true"
diff --git a/resources/views/auth/register-form.blade.php b/resources/views/auth/register-form.blade.php
@@ -24,6 +24,7 @@ class="w-full"
         </div>
     @endif
 
+    @if(Config::get('fortify.username_alt'))
     <div class="mb-4">
         <div class="flex flex-1">
             <x-ark-input
@@ -38,6 +39,7 @@ class="w-full"
             />
         </div>
     </div>
+    @endif
 
     @if($invitation)
         <input type="hidden" name="email" value="{{ $invitation->email }}" />
diff --git a/src/Actions/AuthenticateUser.php b/src/Actions/AuthenticateUser.php
@@ -0,0 +1,64 @@
+<?php
+
+namespace ARKEcosystem\Fortify\Actions;
+
+use ARKEcosystem\Fortify\Models;
+use Carbon\Carbon;
+use Illuminate\Contracts\Auth\Authenticatable;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Config;
+use Illuminate\Support\Facades\Hash;
+use Laravel\Fortify\Fortify;
+
+class AuthenticateUser
+{
+    protected Request $request;
+
+    /**
+     * @var \Illuminate\Http\Request
+     */
+    public function __construct(Request $request)
+    {
+        $this->request     = $request;
+        $this->username    = Fortify::username();
+        $this->usernameAlt = Config::get('fortify.username_alt');
+    }
+
+    public function handle(): ?Authenticatable
+    {
+        /** @var \Illuminate\Database\Eloquent\Model */
+        $user = $this->fetchUser();
+
+        if (! $user) {
+            return null;
+        }
+
+        if (! Hash::check($this->request->password, $user->password)) {
+            return null;
+        }
+
+        $user->update(['last_login_at' => Carbon::now()]);
+
+        return $user;
+    }
+
+    private function fetchUser(): ?Authenticatable
+    {
+        $username = $this->getUsername();
+
+        $query = Models::user()::query();
+
+        $query->where(Fortify::username(), $username);
+
+        if ($usernameAlt = Config::get('fortify.username_alt')) {
+            $query->orWhere($usernameAlt, $username);
+        }
+
+        return $query->first();
+    }
+
+    private function getUsername(): ?string
+    {
+        return $this->request->get($this->username);
+    }
+}
diff --git a/src/Actions/CreateNewUser.php b/src/Actions/CreateNewUser.php
@@ -3,9 +3,12 @@
 namespace ARKEcosystem\Fortify\Actions;
 
 use ARKEcosystem\Fortify\Models;
+use Illuminate\Support\Facades\Config;
 use Illuminate\Support\Facades\Hash;
 use Illuminate\Support\Facades\Validator;
+use Illuminate\Validation\Validator as ValidationValidator;
 use Laravel\Fortify\Contracts\CreatesNewUsers;
+use Laravel\Fortify\Fortify;
 
 class CreateNewUser implements CreatesNewUsers
 {
@@ -20,19 +23,50 @@ class CreateNewUser implements CreatesNewUsers
      */
     public function create(array $input)
     {
-        Validator::make($input, [
-            'name'     => ['required', 'string', 'max:255'],
-            'username' => ['required', 'string', 'max:255', 'unique:users'],
-            'email'    => ['required', 'string', 'email', 'max:255', 'unique:users'],
-            'password' => $this->passwordRules(),
-            'terms'    => ['required', 'accepted'],
-        ])->validate();
-
-        return Models::user()::create([
-            'name'     => $input['name'],
-            'username' => $input['username'],
-            'email'    => $input['email'],
-            'password' => Hash::make($input['password']),
-        ]);
+        $input = $this->buildValidator($input)->validate();
+
+        return Models::user()::create($this->getUserData($input));
+    }
+
+    private function buildValidator(array $input): ValidationValidator
+    {
+        $rules = [
+            'name'              => ['required', 'string', 'max:255'],
+            Fortify::username() => $this->usernameRules(),
+            'password'          => $this->passwordRules(),
+            'terms'             => ['required', 'accepted'],
+        ];
+
+        if ($usernameAlt = Config::get('fortify.username_alt')) {
+            $rules[$usernameAlt] = ['required', 'string', 'max:255', 'unique:users'];
+        }
+
+        return Validator::make($input, $rules);
+    }
+
+    private function getUserData(array $input): array
+    {
+        $userData = [
+            'name'              => $input['name'],
+            Fortify::username() => $input[Fortify::username()],
+            'password'          => Hash::make($input['password']),
+        ];
+
+        if ($usernameAlt = Config::get('fortify.username_alt')) {
+            $userData[$usernameAlt] = $input[$usernameAlt];
+        }
+
+        return $userData;
+    }
+
+    private function usernameRules(): array
+    {
+        $rules = ['required', 'string', 'max:255', 'unique:users'];
+
+        if (Fortify::username() === 'email') {
+            $rules[] = 'email';
+        }
+
+        return $rules;
     }
 }
diff --git a/src/FortifyServiceProvider.php b/src/FortifyServiceProvider.php
@@ -2,6 +2,7 @@
 
 namespace ARKEcosystem\Fortify;
 
+use ARKEcosystem\Fortify\Actions\AuthenticateUser;
 use ARKEcosystem\Fortify\Actions\CreateNewUser;
 use ARKEcosystem\Fortify\Actions\ResetUserPassword;
 use ARKEcosystem\Fortify\Actions\UpdateUserPassword;
@@ -17,9 +18,7 @@
 use ARKEcosystem\Fortify\Components\UpdateTimezoneForm;
 use ARKEcosystem\Fortify\Responses\FailedTwoFactorLoginResponse;
 use ARKEcosystem\Fortify\Responses\TwoFactorLoginResponse;
-use Carbon\Carbon;
 use Illuminate\Http\Request;
-use Illuminate\Support\Facades\Hash;
 use Illuminate\Support\ServiceProvider;
 use Laravel\Fortify\Contracts\FailedTwoFactorLoginResponse as FailedTwoFactorLoginResponseContract;
 use Laravel\Fortify\Contracts\TwoFactorLoginResponse as TwoFactorLoginResponseContract;
@@ -80,8 +79,9 @@ public function registerPublishers(): void
         ], 'config');
 
         $this->publishes([
-            __DIR__.'/../resources/views/auth'     => resource_path('views/auth'),
-            __DIR__.'/../resources/views/livewire' => resource_path('views/livewire'),
+            __DIR__.'/../resources/views/auth'          => resource_path('views/auth'),
+            __DIR__.'/../resources/views/components'    => resource_path('views/components'),
+            __DIR__.'/../resources/views/profile'       => resource_path('views/profile'),
         ], 'views');
     }
 
@@ -181,23 +181,9 @@ private function registerViews(): void
     private function registerAuthentication(): void
     {
         Fortify::authenticateUsing(function (Request $request) {
-            try {
-                $username = $request->get('email');
+            $authenticator = new AuthenticateUser($request);
 
-                if (\filter_var($username, \FILTER_VALIDATE_EMAIL)) {
-                    $user = Models::user()::where('email', $username)->firstOrFail();
-                } else {
-                    $user = Models::user()::where('username', $username)->firstOrFail();
-                }
-
-                if ($user && Hash::check($request->password, $user->password)) {
-                    $user->update(['last_login_at' => Carbon::now()]);
-
-                    return $user;
-                }
-            } catch (\Throwable $th) {
-                return;
-            }
+            return (new AuthenticateUser($request))->handle($request);
         });
     }
 
diff --git a/src/Models/User.php b/src/Models/User.php
@@ -11,6 +11,7 @@
 use Laravel\Fortify\TwoFactorAuthenticatable;
 use Spatie\PersonalDataExport\ExportsPersonalData;
 use Spatie\PersonalDataExport\PersonalDataSelection;
+use Tests\Database\Factories\UserFactory;
 
 class User extends Authenticatable implements ExportsPersonalData, MustVerifyEmail
 {
@@ -47,6 +48,16 @@ class User extends Authenticatable implements ExportsPersonalData, MustVerifyEma
         'email_verified_at' => 'datetime',
     ];
 
+    /**
+     * Create a new factory instance for the model.
+     *
+     * @return \Illuminate\Database\Eloquent\Factories\Factory
+     */
+    protected static function newFactory()
+    {
+        return new UserFactory();
+    }
+
     /**
      * @codeCoverageIgnore
      */
diff --git a/tests/Actions/AuthenticateUserTest.php b/tests/Actions/AuthenticateUserTest.php
@@ -0,0 +1,84 @@
+<?php
+
+use ARKEcosystem\Fortify\Actions\AuthenticateUser;
+use ARKEcosystem\Fortify\Models\User;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Config;
+
+it('login the user by default username (email)', function () {
+    Config::set('fortify.models.user', \ARKEcosystem\Fortify\Models\User::class);
+
+    $user = User::factory()->create();
+
+    $request = new Request();
+
+    $request->replace([
+        'email'    => $user->email,
+        'password' => 'password',
+    ]);
+
+    $authenticator = new AuthenticateUser($request);
+    $loggedUser = $authenticator->handle();
+
+    $this->assertNotNull($loggedUser);
+    $this->assertTrue($user->is($loggedUser));
+});
+
+it('login the user by the email when alt username is set', function () {
+    Config::set('fortify.models.user', \ARKEcosystem\Fortify\Models\User::class);
+    Config::set('fortify.username_alt', 'username');
+
+    $user = User::factory()->withUsername()->create();
+
+    $request = new Request();
+
+    $request->replace([
+        'email'    => $user->email,
+        'password' => 'password',
+    ]);
+
+    $authenticator = new AuthenticateUser($request);
+    $loggedUser = $authenticator->handle();
+
+    $this->assertNotNull($loggedUser);
+    $this->assertTrue($user->is($loggedUser));
+});
+
+it('login the user by the alt username (username)', function () {
+    Config::set('fortify.models.user', \ARKEcosystem\Fortify\Models\User::class);
+    Config::set('fortify.username_alt', 'username');
+
+    $user = User::factory()->withUsername()->create();
+
+    $request = new Request();
+
+    $request->replace([
+        'email'    => $user->username,
+        'password' => 'password',
+    ]);
+
+    $authenticator = new AuthenticateUser($request);
+    $loggedUser = $authenticator->handle();
+
+    $this->assertNotNull($loggedUser);
+    $this->assertTrue($user->is($loggedUser));
+});
+
+it('doesnt login the user by the alt username if not set (username)', function () {
+    Config::set('fortify.models.user', \ARKEcosystem\Fortify\Models\User::class);
+    Config::set('fortify.username_alt', null);
+
+    $user = User::factory()->withUsername()->create();
+
+    $request = new Request();
+
+    $request->replace([
+        'email'    => $user->username,
+        'password' => 'password',
+    ]);
+
+    $authenticator = new AuthenticateUser($request);
+    $loggedUser = $authenticator->handle();
+
+    $this->assertNull($loggedUser);
+});
diff --git a/tests/Actions/CreateNewUserTest.php b/tests/Actions/CreateNewUserTest.php
diff --git a/tests/database/factories/UserFactory.php b/tests/database/factories/UserFactory.php
diff --git a/tests/database/migrations/2014_10_12_000000_create_users_table.php b/tests/database/migrations/2014_10_12_000000_create_users_table.php
