🚀 مُصادَق: تحديث برمجي جديد 2026-05-03 13:19

app/Modules/Auth/AuthController.php

@@ -53,4 +53,79 @@ final class AuthController
             'data' => $request->user
         ]);
     }
+
+    public function logout(Request $request): void
+    {
+        // Clear refresh token cookie
+        setcookie('refresh_token', '', [
+            'expires' => time() - 3600,
+            'path' => '/api/v1/auth/refresh',
+            'httponly' => true,
+            'samesite' => 'Strict',
+            'secure' => true
+        ]);
+
+        Response::json([
+            'success' => true,
+            'message' => 'تم تسجيل الخروج بنجاح'
+        ]);
+    }
+
+    public function refresh(Request $request): void
+    {
+        $refreshToken = $_COOKIE['refresh_token'] ?? null;
+
+        if (!$refreshToken) {
+            Response::error('رمز التجديد مفقود', 'UNAUTHORIZED', 401);
+            return;
+        }
+
+        try {
+            $result = $this->authService->refresh($refreshToken);
+            
+            // Set new refresh token in HttpOnly cookie
+            setcookie('refresh_token', $result['refresh_token'], [
+                'expires' => time() + (60 * 60 * 24 * 7),
+                'path' => '/api/v1/auth/refresh',
+                'httponly' => true,
+                'samesite' => 'Strict',
+                'secure' => true
+            ]);
+
+            unset($result['refresh_token']);
+
+            Response::json([
+                'success' => true,
+                'data' => $result,
+                'message' => 'تم تجديد الجلسة بنجاح'
+            ]);
+        } catch (Throwable $e) {
+            Response::error($e->getMessage(), 'REFRESH_FAILED', 401);
+        }
+    }
+    public function register(Request $request): void
+    {
+        try {
+            $result = $this->authService->register($request->getBody());
+            
+            // Set refresh token in HttpOnly cookie
+            setcookie('refresh_token', $result['refresh_token'], [
+                'expires' => time() + (60 * 60 * 24 * 7),
+                'path' => '/api/v1/auth/refresh',
+                'httponly' => true,
+                'samesite' => 'Strict',
+                'secure' => true
+            ]);
+
+            unset($result['refresh_token']);
+
+            Response::json([
+                'success' => true,
+                'data' => $result,
+                'message' => 'تم إنشاء الحساب وتسجيل الدخول بنجاح'
+            ]);
+        } catch (Throwable $e) {
+            Response::error($e->getMessage(), 'REGISTRATION_FAILED', 400);
+        }
+    }
 }