From 8eeae58f98d094fc87d8157d27a9495df92b528a Mon Sep 17 00:00:00 2001
From: Youssef Echaouqui <mr.echaouqui@gmail.com>
Date: Wed, 23 Oct 2024 13:00:15 +0100
Subject: [PATCH] Basic Authentication Test all 8 tasks

---
 .../Auth/RegisteredUserController.php         |  2 +-
 app/Http/Controllers/ProfileController.php    |  8 ++++++
 app/Models/User.php                           |  2 +-
 phpunit.xml                                   |  4 +--
 resources/views/auth/profile.blade.php        |  4 +--
 resources/views/layouts/navigation.blade.php  |  2 ++
 routes/web.php                                | 28 +++++++++++--------
 7 files changed, 32 insertions(+), 18 deletions(-)

diff --git a/app/Http/Controllers/Auth/RegisteredUserController.php b/app/Http/Controllers/Auth/RegisteredUserController.php
index d8d29eb5..64a2b2a6 100644
--- a/app/Http/Controllers/Auth/RegisteredUserController.php
+++ b/app/Http/Controllers/Auth/RegisteredUserController.php
@@ -37,7 +37,7 @@ public function store(Request $request)
         $request->validate([
             'name' => ['required', 'string', 'max:255'],
             'email' => ['required', 'string', 'email', 'max:255', 'unique:users'],
-            'password' => ['required', 'confirmed', Rules\Password::defaults()],
+            'password' => ['required', 'confirmed', Rules\Password::defaults()->letters()],
         ]);
 
         $user = User::create([
diff --git a/app/Http/Controllers/ProfileController.php b/app/Http/Controllers/ProfileController.php
index e0093a49..a7fe3eeb 100644
--- a/app/Http/Controllers/ProfileController.php
+++ b/app/Http/Controllers/ProfileController.php
@@ -16,6 +16,14 @@ public function update(ProfileUpdateRequest $request)
         // Task: fill in the code here to update name and email
         // Also, update the password if it is set
 
+        $user = auth()->user();
+        $user->name = $request->name;
+        $user->email = $request->email;
+        if($request->password){
+            $user->password = bcrypt($request->password);
+        }
+        $user->save();
+
         return redirect()->route('profile.show')->with('success', 'Profile updated.');
     }
 }
diff --git a/app/Models/User.php b/app/Models/User.php
index e23e0905..12a2354b 100644
--- a/app/Models/User.php
+++ b/app/Models/User.php
@@ -8,7 +8,7 @@
 use Illuminate\Notifications\Notifiable;
 use Laravel\Sanctum\HasApiTokens;
 
-class User extends Authenticatable
+class User extends Authenticatable implements MustVerifyEmail
 {
     use HasApiTokens, HasFactory, Notifiable;
 
diff --git a/phpunit.xml b/phpunit.xml
index a4178248..18fa97ab 100644
--- a/phpunit.xml
+++ b/phpunit.xml
@@ -18,8 +18,8 @@
         <env name="APP_ENV" value="testing"/>
         <env name="BCRYPT_ROUNDS" value="4"/>
         <env name="CACHE_DRIVER" value="array"/>
-        <env name="DB_CONNECTION" value="sqlite"/>
-        <env name="DB_DATABASE" value=":memory:"/>
+        <env name="DB_CONNECTION" value="mysql"/>
+        <env name="DB_DATABASE" value="laravel"/>
         <env name="MAIL_MAILER" value="array"/>
         <env name="QUEUE_CONNECTION" value="sync"/>
         <env name="SESSION_DRIVER" value="array"/>
diff --git a/resources/views/auth/profile.blade.php b/resources/views/auth/profile.blade.php
index 70e8a8e1..c16e6902 100644
--- a/resources/views/auth/profile.blade.php
+++ b/resources/views/auth/profile.blade.php
@@ -29,7 +29,7 @@
                                      class="block mt-1 w-full"
                                      type="text"
                                      name="name"
-                                     value="???"
+                                     value="{{ auth()->user()->name }}"
                                      required />
                         </div>
 
@@ -40,7 +40,7 @@ class="block mt-1 w-full"
                                      class="block mt-1 w-full"
                                      type="email"
                                      name="email"
-                                     value="???"
+                                     value="{{ auth()->user()->email }}"
                                      required />
                         </div>
 
diff --git a/resources/views/layouts/navigation.blade.php b/resources/views/layouts/navigation.blade.php
index 785936e7..40042594 100644
--- a/resources/views/layouts/navigation.blade.php
+++ b/resources/views/layouts/navigation.blade.php
@@ -16,9 +16,11 @@
                         {{ __('Users') }}
                     </x-nav-link>
                     {{-- Task: this "Profile" link should be visible only to logged-in users --}}
+                    @auth()
                     <x-nav-link href="/profile" :active="request()->routeIs('profile.show')">
                         {{ __('Profile') }}
                     </x-nav-link>
+                    @endauth
                 </div>
             </div>
 
diff --git a/routes/web.php b/routes/web.php
index 71d04297..ab622388 100644
--- a/routes/web.php
+++ b/routes/web.php
@@ -20,17 +20,21 @@
 Route::get('users', [\App\Http\Controllers\UserController::class, 'index'])->name('users.index');
 
 // Task: profile functionality should be available only for logged-in users
-Route::get('profile', [\App\Http\Controllers\ProfileController::class, 'show'])->name('profile.show');
-Route::put('profile', [\App\Http\Controllers\ProfileController::class, 'update'])->name('profile.update');
-
-// Task: this "/secretpage" URL should be visible only for those who VERIFIED their email
-// Add some middleware here, and change some code in app/Models/User.php to enable this
-Route::view('/secretpage', 'secretpage')
-    ->name('secretpage');
-
-// Task: this "/verysecretpage" URL should ask user for verifying their password once again
-// You need to add some middleware here
-Route::view('/verysecretpage', 'verysecretpage')
-    ->name('verysecretpage');
+Route::middleware('auth')->group(function () {
+    Route::get('profile', [\App\Http\Controllers\ProfileController::class, 'show'])->name('profile.show');
+    Route::put('profile', [\App\Http\Controllers\ProfileController::class, 'update'])->name('profile.update');
+
+    // Task: this "/secretpage" URL should be visible only for those who VERIFIED their email
+    // Add some middleware here, and change some code in app/Models/User.php to enable this
+    Route::view('/secretpage', 'secretpage')
+        ->name('secretpage')->middleware('verified');
+
+    // Task: this "/verysecretpage" URL should ask user for verifying their password once again
+    // You need to add some middleware here
+    Route::view('/verysecretpage', 'verysecretpage')
+        ->name('verysecretpage')->middleware('password.confirm');
+});
+
+
 
 require __DIR__.'/auth.php';