57 lines
1.9 KiB
PHP
57 lines
1.9 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\Auth;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use Illuminate\Support\Facades\Auth;
|
|
use Laravel\Socialite\Facades\Socialite;
|
|
use Illuminate\Support\Str;
|
|
use App\Models\User;
|
|
|
|
class GoogleController extends Controller
|
|
{
|
|
/**
|
|
* Redirect the user to the Google authentication page.
|
|
*/
|
|
public function redirectToGoogle()
|
|
{
|
|
// Prefer to hint Google to show accounts from the somaiya.edu domain.
|
|
// This is only a UI hint — always validate the domain on the callback.
|
|
return Socialite::driver('google')->with(['hd' => 'somaiya.edu'])->redirect();
|
|
}
|
|
|
|
/**
|
|
* Obtain the user information from Google.
|
|
*/
|
|
public function handleGoogleCallback()
|
|
{
|
|
try {
|
|
$googleUser = Socialite::driver('google')->user();
|
|
|
|
// Validate that the user belongs to the somaiya.edu domain.
|
|
// Google may return a 'hd' (hosted domain) claim; fall back to parsing the email.
|
|
$email = $googleUser->getEmail();
|
|
$hostedDomain = data_get($googleUser->user, 'hd');
|
|
$domain = $hostedDomain ?: (strpos($email, '@') !== false ? substr(strrchr($email, "@"), 1) : null);
|
|
|
|
if ($domain !== 'somaiya.edu') {
|
|
return redirect()->route('login')->withErrors(['error' => 'Please sign in using a somaiya.edu account.']);
|
|
}
|
|
|
|
$user = User::firstOrCreate(
|
|
['email' => $email],
|
|
[
|
|
'name' => $googleUser->getName() ?: $email,
|
|
'password' => bcrypt(Str::random(16)), // Generate a random password
|
|
]
|
|
);
|
|
|
|
Auth::login($user);
|
|
|
|
return redirect()->route('dashboard');
|
|
} catch (\Exception $e) {
|
|
return redirect()->route('login')->withErrors(['error' => 'Unable to login using Google. Please try again.']);
|
|
}
|
|
}
|
|
}
|