raise default auth events #45
Conversation
|
Hi @okaufmann , thanks for your contribution, can you add some tests case to cover your code? Doesn't need to be very complex, but let's keep the code coverage (or at least most of it). If it's not possible please let me know. Thank you, |
e476d91 to
85d452b
Compare
|
Hi @Messhias Thanks for your prompt response! Of course, I extended the tests for these events. Let me know if I forgot something. |
src/JWTGuard.php
Outdated
|
|
||
|
|
There was a problem hiding this comment.
Can you please remove those empty lines?
src/JWTGuard.php
Outdated
| @@ -167,6 +170,11 @@ public function login(JWTSubject $user) | |||
| $token = $this->jwt->fromUser($user); | |||
| $this->setToken($token)->setUser($user); | |||
|
|
|||
| // If we have an event dispatcher instance set we will fire an event so that | |||
There was a problem hiding this comment.
If we have an event dispatcher instance set
I don't read anything in the code where the event dispatcher is option; it's injected via DI and is required, so I think the comment isn't technically correct.
My other feedback here is: the method is called fireLoginEvent
The comment spawns 3 lines essentially telling us this.
My TL;DR feedback here would: method name is good and very clear, we don't need the comment at all
There was a problem hiding this comment.
Well, i did just copy this from the SessionGuard without thinking about it. I removed it ^^
src/JWTGuard.php
Outdated
| // If we have an event dispatcher instance, we can fire off the logout event | ||
| // so any further processing can be done. This allows the developer to be | ||
| // listening for anytime a user signs out of this application manually. | ||
| $this->events->dispatch(new Logout($this->name, $this->user)); |
There was a problem hiding this comment.
It feels inconsistent when all other events are wrapped in dedicated protected fire*Event methods but this one isn't.
My suggestion:
- remove the comment (same reason as with the other comment)
- add a dedicated
fireLogoutEvent
src/JWTGuard.php
Outdated
| @@ -501,6 +533,33 @@ protected function fireFailedEvent($user, array $credentials) | |||
| )); | |||
| } | |||
|
|
|||
| /** | |||
| * Fire the authenticated event if the dispatcher is set. | |||
There was a problem hiding this comment.
if the dispatcher is set.
This isn't correct: the dispatcher is always present
src/JWTGuard.php
Outdated
| } | ||
|
|
||
| /** | ||
| * Fire the login event if the dispatcher is set. |
There was a problem hiding this comment.
if the dispatcher is set.
This isn't correct: the dispatcher is always present
7281f7d to
c097cd9
Compare
|
@mfn Hi Markus, you are absolutely right! Thanks for your time and review. Sorry for the shitty PR, I cleaned up all the things you mentioned and hope it's now clean and correct. |
There was a problem hiding this comment.
Sorry for the shitty PR
FTR, I don't think so at all!
Also, thanks for initial version which prompted my code style comment; it prompted me to do #46 which was already accepted 😏
LGTM!
ps: I'm just a contributor like you, not a member, cannot merge stuff
src/JWTGuard.php
Outdated
| /** | ||
| * Set the current user. | ||
| * | ||
| * @param \Illuminate\Contracts\Auth\Authenticatable $user | ||
| * @return $this | ||
| */ | ||
| public function setUser(Authenticatable $user) | ||
| { | ||
| $this->user = $user; | ||
|
|
||
| $this->fireAuthenticatedEvent($user); | ||
|
|
||
| return $this; | ||
| } | ||
|
|
There was a problem hiding this comment.
Just a note for myself: setUser is part of the interface and was covered by a trait so far (that's why it's not in this class), this basically re-implements it and adds the event dispatch.
Technically we could still call the trait version via an alias to not have redundant code, but I guess for the user set this would take things to far 😄
There was a problem hiding this comment.
So it isn't better to move straight to trait and do everything in this PR?
There was a problem hiding this comment.
sorry, "parser error" 😬 Can you re-phrase maybe?
There was a problem hiding this comment.
Laravel also overwrites setUser for the same reason: https://github.com/laravel/framework/blob/8.x/src/Illuminate/Auth/SessionGuard.php#L923
That's why I did it the same way...
The goal was to raise the same events as SessionGuard where it is possible, and for setUser an Authenticated event should be raised.
There was a problem hiding this comment.
@mfn on that case it's seems we're facing a limitation of the Laravel framework for setUser since it's overridden.
@okaufmann does that would harm the library? As I far I did see any problem at all.
There was a problem hiding this comment.
Hmm you're right, this is a risk when Laravel changes the behaviour of setUser in its Auth Guards. But this is not a breaking change at all, as it does only raise an event now. When no one listens for this event, nothing happen. Maybe you should note it in the Release notes.
So I think we can risk it. What do you think?
There was a problem hiding this comment.
well yes, this is what I was insinuating with the alias; to be on the safe side we could do this (untested):
diff --git a/src/JWTGuard.php b/src/JWTGuard.php
index ba02510..b89a0ab 100644
--- a/src/JWTGuard.php
+++ b/src/JWTGuard.php
@@ -31,7 +31,10 @@ use PHPOpenSourceSaver\JWTAuth\Exceptions\UserNotDefinedException;
class JWTGuard implements Guard
{
- use GuardHelpers, Macroable {
+ use GuardHelpers {
+ setUser as guardHelperSetUser;
+ }
+ use Macroable {
__call as macroCall;
}
@@ -385,11 +388,11 @@ class JWTGuard implements Guard
*/
public function setUser(Authenticatable $user)
{
- $this->user = $user;
+ $result = $this->guardHelperSetUser($user);
$this->fireAuthenticatedEvent($user);
- return $this;
+ return $result;
}
/**WDYT?
There was a problem hiding this comment.
Great idea! Seems to work as well.
7ac7755 to
dd81b7d
Compare
|
@Messhias Please let me know if there is anything I can do so this can be merged and release 💪 |
All the tests failed, can you check that? |
dd81b7d to
dec077e
Compare
|
@Messhias Completed the tests and fixed duplicate Attempting event. Can you trigger the tests again? |
Great work, thanks :) |
|
@Messhias would you mind creating a new release containing these changes? |
No problem, me and @eschricker we'll do it. |
Hi,
The Laravel SessionGuard dispatches several events, which can be used to listen when a user logs in etc...
JWTGuard already dispatched some of these events and I just added the other ones, that make sense.