Security:3 Fix HMAC handshake, generate API keys in Google Login, and relax JWT issuer

2026-04-24 16:41:18 +03:00
parent 2540bef154
commit 5b5d97b1f3
4 changed files with 32 additions and 11 deletions
--- a/app/Http/Controllers/AuthController.php
+++ b/app/Http/Controllers/AuthController.php
@@ -933,13 +933,5 @@ class AuthController extends Controller
        ]);
    }

-    private function success(array $data, int $code = 200): JsonResponse
-    {
-        return response()->json(['status' => 'success', 'data' => $data], $code);
-    }
-
-    private function failure(string $message, int $code = 401): JsonResponse
-    {
-        return response()->json(['status' => 'failure', 'message' => $message], $code);
-    }
 }
+
--- a/app/Http/Controllers/Controller.php
+++ b/app/Http/Controllers/Controller.php
@@ -16,5 +16,5 @@ use Illuminate\Routing\Controller as BaseController;
 */
 abstract class Controller extends BaseController
 {
-    //
+    use \App\Traits\ApiResponses;
 }
--- a/app/Http/Controllers/OtpController.php
+++ b/app/Http/Controllers/OtpController.php
@@ -93,7 +93,6 @@ class OtpController extends Controller
                        'token' => $encOtp,
                        'expiration_time' => $expiration,
                        'verified' => 0,
-                        'datecreated' => now(), // V1 legacy style
                    ]);
                } catch (\Exception $e) {
                    \Log::error("OTP Send Error ($table): " . $e->getMessage());