Hamza/intaleq_v3_pure_php
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a6a620f00299c865b63b148bb39871db8f764f06
intaleq_v3_pure_php/serviceapp/login.php
Hamza-Ayed a6a620f002 service 3
2026-05-02 14:39:50 +03:00

70 lines
2.6 KiB
PHP
Executable File
Raw Blame History

<?php
require_once __DIR__ . '/../core/bootstrap.php';
$fingerprint = filterRequest('fingerprint');
$password = filterRequest('password');
$audience = filterRequest('aud') ?? 'service';
if (empty($fingerprint) || empty($password)) {
jsonError("Fingerprint and password are required.");
exit();
}
try {
$con = Database::get('main');
// البحث بالبصمة للموظف
$fpHash = hash('sha256', $fingerprint);
$sql = "SELECT * FROM `users` WHERE `fingerprint_hash` = :fp AND `user_type` = 'service' LIMIT 1";
$stmt = $con->prepare($sql);
$stmt->execute([':fp' => $fpHash]);
$user = $stmt->fetch(PDO::FETCH_ASSOC);
if ($user) {
// التحقق من حالة الحساب
if ($user['status'] === 'pending') {
jsonError("حسابك قيد المراجعة حالياً. يرجى الانتظار للموافقة.");
exit();
} elseif ($user['status'] === 'suspended') {
jsonError("هذا الحساب معلق. يرجى التواصل مع الإدارة.");
exit();
} elseif ($user['status'] !== 'approved') {
jsonError("لم يتم تفعيل حسابك بعد.");
exit();
}
// التحقق من كلمة المرور
if (password_verify($password, $user['password'])) {
// فك تشفير البيانات للعرض في التطبيق
$user['first_name'] = $encryptionHelper->decryptData($user['first_name']) ?: $user['first_name'];
$user['last_name'] = $encryptionHelper->decryptData($user['last_name']) ?: $user['last_name'];
$user['email'] = $encryptionHelper->decryptData($user['email']) ?: $user['email'];
$user['phone'] = $encryptionHelper->decryptData($user['phone']) ?: $user['phone'];
unset($user['password']);
// توليد التوكن
$jwtService = new JwtService($redis);
$role = 'service';
$jwt = $jwtService->generateAccessToken($user['id'], $role, $audience);
printSuccess([
"message" => "Login successful",
"data" => $user,
"jwt" => $jwt,
"expires_in" => 3600
]);
} else {
jsonError("Incorrect password");
}
} else {
jsonError("الجهاز غير مسجل لموظف خدمة.");
}
} catch (Exception $e) {
error_log("[ServiceApp Login Error] " . $e->getMessage());
jsonError("Server error: " . $e->getMessage());
}
exit();
Reference in New Issue View Git Blame Copy Permalink