3da1f5412a
Shop password reset:
- Configured 'shop_customers' password broker on the existing
password_reset_tokens table
- ShopCustomer::sendPasswordResetNotification overrides Laravel default to
send a ShopPasswordResetMail with a tenant-subdomain reset URL
- Routes /shop/password/forgot, /shop/password/email, /shop/password/reset/{token}
+ ShopAuthController showForgotPassword/sendResetLink/showResetPassword/
resetPassword. Forgot view stays generic ("if it exists, we sent…") to avoid
email enumeration. Login view links to "Am uitat parola".
Order confirmation email:
- ShopOrderConfirmationMail + nicely formatted HTML email template
- ShopOrderNotifier::placed now also emails customer_email (best-effort,
warning-only logged on failure) alongside existing Telegram + staff push
Multiple images per Part:
- Part media collection switched from singleFile to multiple (max 8 in form)
- imageUrls() helper for galleries; imageUrl() still returns first for cards
- PartResource form: reorderable multi-upload
- Shop part detail: vertical thumbnails switch the main image via vanilla JS
ShopCustomerResource (tenant Filament, "Magazin" nav group):
- List with name/phone/email/client_id/orders_count/last_login_at
- Edit (no password field exposed)
- "Trimite reset parolă" action uses the new broker
- OrdersRelationManager shows the customer's orders read-only
Tests (7 new):
- forgot sends mail; forgot doesn't disclose unknown email; reset with valid
token changes password; bad token rejected; order email when customer_email
set; email skipped without it; Part has imageUrls() collection
Full suite: 130 passed.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
72 lines
1.8 KiB
PHP
72 lines
1.8 KiB
PHP
<?php
|
|
|
|
use App\Models\Central\SuperAdmin;
|
|
use App\Models\Tenant\User;
|
|
|
|
return [
|
|
|
|
'defaults' => [
|
|
'guard' => env('AUTH_GUARD', 'web'),
|
|
'passwords' => env('AUTH_PASSWORD_BROKER', 'users'),
|
|
],
|
|
|
|
'guards' => [
|
|
// Tenant-side auth (per-company users on <slug>.service.mir.md).
|
|
'web' => [
|
|
'driver' => 'session',
|
|
'provider' => 'users',
|
|
],
|
|
|
|
// Central-side auth (super-admins on service.mir.md/admin).
|
|
'central' => [
|
|
'driver' => 'session',
|
|
'provider' => 'super_admins',
|
|
],
|
|
|
|
// Public storefront customer auth (per-tenant).
|
|
'shop' => [
|
|
'driver' => 'session',
|
|
'provider' => 'shop_customers',
|
|
],
|
|
],
|
|
|
|
'providers' => [
|
|
'users' => [
|
|
'driver' => 'eloquent',
|
|
'model' => env('AUTH_MODEL', User::class),
|
|
],
|
|
'super_admins' => [
|
|
'driver' => 'eloquent',
|
|
'model' => SuperAdmin::class,
|
|
],
|
|
'shop_customers' => [
|
|
'driver' => 'eloquent',
|
|
'model' => \App\Models\Tenant\ShopCustomer::class,
|
|
],
|
|
],
|
|
|
|
'passwords' => [
|
|
'users' => [
|
|
'provider' => 'users',
|
|
'table' => env('AUTH_PASSWORD_RESET_TOKEN_TABLE', 'password_reset_tokens'),
|
|
'expire' => 60,
|
|
'throttle' => 60,
|
|
],
|
|
'super_admins' => [
|
|
'provider' => 'super_admins',
|
|
'table' => 'password_reset_tokens',
|
|
'expire' => 60,
|
|
'throttle' => 60,
|
|
],
|
|
'shop_customers' => [
|
|
'provider' => 'shop_customers',
|
|
'table' => 'password_reset_tokens',
|
|
'expire' => 60,
|
|
'throttle' => 60,
|
|
],
|
|
],
|
|
|
|
'password_timeout' => env('AUTH_PASSWORD_TIMEOUT', 10800),
|
|
|
|
];
|