Merge remote-tracking branch 'origin/dev' into dev

# Conflicts:
#	app/Models/User.php

app/DTO/Api/Auth/Request/UserAuthDTO.php

@@ -0,0 +1,33 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\DTO\Api\Auth\Request;
+
+use Spatie\LaravelData\Support\Validation\ValidationContext;
+use Spatie\LaravelData\Data;
+
+class UserAuthDTO extends Data
+{
+    public function __construct(
+        public string $email,
+        public string $password,
+    ) {
+    }
+
+    public static function rules(ValidationContext $context): array
+    {
+        return [
+            'email'      => [
+                'required',
+                'max:255',
+                'email',
+            ],
+            'password'   => [
+                'required',
+                'max:255',
+                'min:8',
+            ],
+        ];
+    }
+}

app/DTO/Api/Auth/Request/UserRegisterDTO.php

@@ -0,0 +1,50 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\DTO\Api\Auth\Request;
+
+use Illuminate\Validation\Rule;
+use Spatie\LaravelData\Support\Validation\ValidationContext;
+use Spatie\LaravelData\Data;
+
+class UserRegisterDTO extends Data
+{
+    public function __construct(
+        public string $name,
+        public string $surname,
+        public string $email,
+        public string $password,
+        public string $patronymic,
+    ) {
+    }
+
+    public static function rules(ValidationContext $context): array
+    {
+        return [
+            'name' => [
+                'required',
+                'max:255',
+            ],
+            'surname' => [
+                'required',
+                'max:255',
+            ],
+            'email'      => [
+                'required',
+                'max:255',
+                'email',
+                Rule::unique('users', 'email'),
+            ],
+            'password'   => [
+                'required',
+                'max:255',
+                'min:8',
+            ],
+            'patronymic' => [
+                'required',
+                'max:255',
+            ]
+        ];
+    }
+}

app/DTO/Api/Auth/Response/UserAuthShowDTO.php

@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\DTO\Api\Auth\Response;
+
+use App\Models\User;
+use Spatie\LaravelData\Data;
+
+class UserAuthShowDTO extends Data
+{
+    public function __construct(
+        public User $user,
+        public string $token,
+    ) {
+    }
+
+    public static function fromMultiple(User $user, string $token): self
+    {
+        return new self(
+            $user,
+            $token
+        );
+    }
+}

app/DTO/Api/Auth/Response/UserRegisterShowDTO.php

@@ -0,0 +1,25 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\DTO\Api\Auth\Response;
+
+use App\Models\User;
+use Spatie\LaravelData\Data;
+
+class UserRegisterShowDTO extends Data
+{
+    public function __construct(
+      public User $user,
+      public string $token,
+    ) {
+    }
+
+    public static function fromMultiple(User $user, string $token): self
+    {
+        return new self(
+            $user,
+            $token
+        );
+    }
+}

app/Http/Controllers/Api/AuthController.php

@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Http\Controllers\Api;
+
+use App\DTO\Api\Auth\Request\UserAuthDTO;
+use App\DTO\Api\Auth\Request\UserRegisterDTO;
+use App\Models\User;
+use App\Services\Api\AuthService;
+use Illuminate\Http\JsonResponse;
+
+class AuthController extends Controller
+{
+    public function __construct(
+      protected AuthService $authService
+    ) {
+    }
+
+    public function auth(UserAuthDTO $userAuthDTO): array|JsonResponse
+    {
+        $user = User::query()->where('email', $userAuthDTO->email)->firstOrFail();
+
+        return $this->authService->auth($user, $userAuthDTO);
+    }
+
+    public function register(UserRegisterDTO $userRegisterDTO): array
+    {
+        return $this->authService->register($userRegisterDTO);
+    }
+}

app/Http/Controllers/Api/Controller.php

@@ -0,0 +1,15 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Http\Controllers\Api;
+
+use Illuminate\Foundation\Auth\Access\AuthorizesRequests;
+use Illuminate\Foundation\Validation\ValidatesRequests;
+use Illuminate\Routing\Controller as BaseController;
+
+class Controller extends BaseController
+{
+    use AuthorizesRequests;
+    use ValidatesRequests;
+}

app/Services/Api/AuthService.php

@@ -0,0 +1,35 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Services\Api;
+
+use App\DTO\Api\Auth\Request\UserAuthDTO;
+use App\DTO\Api\Auth\Request\UserRegisterDTO;
+use App\DTO\Api\Auth\Response\UserAuthShowDTO;
+use App\DTO\Api\Auth\Response\UserRegisterShowDTO;
+use Illuminate\Http\JsonResponse;
+use Illuminate\Support\Facades\Hash;
+use App\Models\User;
+
+class AuthService
+{
+    public function auth(User $user, UserAuthDTO $userAuthDTO): array|JsonResponse
+    {
+        if(Hash::check($userAuthDTO->password, $user->password)) {
+            $token = $user->createToken('token')->plainTextToken;
+
+            return UserAuthShowDTO::from($user, $token)->toArray();
+        }
+
+        return response()->json(['message' => 'bad creds'], 403);
+    }
+
+    public function register(UserRegisterDTO $userRegisterDTO): array
+    {
+        $user = User::query()->create($userRegisterDTO->toArray());
+        $token = $user->createToken('token')->plainTextToken;
+
+        return UserRegisterShowDTO::from($user, $token)->toArray();
+    }
+}

bootstrap/app.php

@@ -7,6 +7,7 @@
 return Application::configure(basePath: dirname(__DIR__))
     ->withRouting(
         web: __DIR__.'/../routes/web.php',
+        api: __DIR__.'/../routes/api.php',
         commands: __DIR__.'/../routes/console.php',
         health: '/up',
     )

composer.json

@@ -8,7 +8,9 @@
         "php": "^8.2",
         "filament/filament": "^3.2",
         "laravel/framework": "^11.9",
-        "laravel/tinker": "^2.9"
+        "laravel/sanctum": "^4.0",
+        "laravel/tinker": "^2.9",
+        "spatie/laravel-data": "^4.11"
     },
     "require-dev": {
         "fakerphp/faker": "^1.23",