refactor: use form requests in auth controllers, remove double hashing

2026-03-19 23:14:52 +01:00
parent da97c45dd4
commit 44c1cbe5f6
5 changed files with 41 additions and 93 deletions
--- a/app/Http/Controllers/Auth/CompleteProfileController.php
+++ b/app/Http/Controllers/Auth/CompleteProfileController.php
@@ -3,13 +3,12 @@
 namespace App\Http\Controllers\Auth;

 use App\Http\Controllers\Controller;
+use App\Http\Requests\Auth\CompleteProfileRequest;
 use App\Models\User;
 use Illuminate\Auth\Events\Registered;
 use Illuminate\Http\RedirectResponse;
 use Illuminate\Http\Request;
 use Illuminate\Support\Facades\Auth;
-use Illuminate\Support\Facades\Hash;
-use Illuminate\Support\Str;
 use Inertia\Inertia;
 use Inertia\Response;

@@ -34,35 +33,23 @@ class CompleteProfileController extends Controller
    /**
     * Handle the complete profile request.
     */
-    public function store(Request $request): RedirectResponse
+    public function store(CompleteProfileRequest $request): RedirectResponse
    {
        $socialiteUser = session('socialite_user');
-
-        if (! $socialiteUser) {
-            return redirect()->route('login');
-        }
-
-        $request->validate([
-            'username' => [
-                'required', 'string', 'max:255', 'alpha_dash',
-                function ($attribute, $value, $fail) {
-                    $exists = User::whereRaw('LOWER(username) = ?', [strtolower($value)])->exists();
-                    if ($exists) {
-                        $fail('The username has already been taken.');
-                    }
-                },
-            ],
-            'first_name' => ['required', 'string', 'max:255'],
-            'last_name' => ['required', 'string', 'max:255'],
-        ]);
+        $validated = $request->validated();

        $user = User::create([
-            'username' => $request->username,
-            'first_name' => $request->first_name,
-            'last_name' => $request->last_name,
+            'username' => $validated['username'],
+            'first_name' => $validated['first_name'],
+            'last_name' => $validated['last_name'],
            'email' => $socialiteUser['email'],
-            'password' => Hash::make(Str::random(24)),
-            'email_verified_at' => now(),
+        ]);
+
+        $user->forceFill(['email_verified_at' => now()])->save();
+
+        $user->socialAccounts()->create([
+            'provider' => $socialiteUser['provider'],
+            'provider_id' => $socialiteUser['provider_id'],
        ]);

        session()->forget('socialite_user');