add backend auth web route & Controller

app/Http/Controllers/Backend/AuthController.php

@@ -0,0 +1,47 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use App\Models\User;
+use Illuminate\Http\Request;
+use Illuminate\Http\Response;
+use App\Http\Controllers\Controller;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Hash;
+use App\Http\Requests\Backend\Auth\LoginRequest;
+
+class AuthController extends Controller
+{
+    public function index()
+    {
+        return view('auth.login');
+    }
+
+    public function login(LoginRequest $request)
+    {
+        $user = User::where('email', $request->email)->first();
+
+        if (is_null($user)) {
+            abort(Response::HTTP_NOT_FOUND, config('response-message.login_failed'));
+        }
+
+        if (!Hash::check($request->password, $user->password)) {
+            abort(Response::HTTP_NOT_FOUND, config('response-message.login_failed'));
+        }
+
+        Auth::login($user);
+
+        return redirect()->route('backend.dashboard');
+    }
+
+    public function logout(Request $request)
+    {
+        Auth::logout();
+
+        $request->session()->invalidate();
+
+        $request->session()->regenerateToken();
+
+        return redirect()->route('login.index');
+    }
+}

app/Http/Controllers/Backend/DashboardController.php

@@ -0,0 +1,13 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use App\Http\Controllers\Controller;
+
+class DashboardController extends Controller
+{
+    public function __invoke()
+    {
+        return view('admin.index');
+    }
+}

app/Http/Controllers/Backend/FunmenusController.php

@@ -0,0 +1,92 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use Session;
+use Redirect;
+use Validator;
+use App\Models\FunMenu;
+use Illuminate\Http\Request;
+use App\Models\FunMenuDetail;
+use App\Http\Controllers\Controller;
+
+class FunmenusController extends Controller
+{
+    public function index()
+    {
+        $tables = FunMenu::All();
+
+        return view('admin.funmenus', [
+            'tables' => $tables,
+        ]);
+    }
+
+    public function create()
+    {
+        return view('admin.funmenusedit', [
+            'datas' => "",
+        ]);
+    }
+
+    public function edit($id)
+    {
+        $datas = FunMenu::find($id);
+        return view('admin.funmenusedit', [
+            'datas' => $datas,
+        ]);
+    }
+
+    public function store(Request $request)
+    {
+        $validator = Validator::make($request->all(), [
+            'MenuName' => 'required|max:255',
+            'Corder' => 'required'
+
+        ]);
+        if ($validator->fails()) {
+            return Redirect::back()
+                ->withErrors($validator);
+        } else {
+            if ($request->mode == "insert") {
+                $funmenu = new FunMenu;
+                $funmenu->icon = $request->icon;
+                $funmenu->MenuName = $request->MenuName;
+                $funmenu->Valid = ($request->Valid == "on") ? 1 : 0;
+                $funmenu->Corder = $request->Corder;
+                $funmenu->Oid = $request->user()->id;
+                $funmenu->save();
+            } else {
+                $funmenu = FunMenu::find($request->id);
+                $funmenu->icon = $request->icon;
+                $funmenu->MenuName = $request->MenuName;
+                $funmenu->Valid = ($request->Valid == "on") ? 1 : 0;
+                $funmenu->Corder = $request->Corder;
+                $funmenu->Oid = $request->user()->id;
+                $funmenu->save();
+            }
+        }
+
+        return Redirect::back();
+    }
+
+    public function delete($id)
+    {
+        if ($id == 1) {
+            Session::flash('msg', 'This can not be delete!!');
+        } else {
+            $funmenudetails = FunMenuDetail::where('FunMenuId', '=', $id);
+
+            if ($funmenudetails->count() > 0) {
+                Session::flash('msg', 'Must delete functions first!!');
+            } else {
+                $funmenu = FunMenu::find($id);
+                $funmenu->delete();
+
+
+                $funmenudetails->delete();
+            }
+        }
+
+        return Redirect::back();
+    }
+}

app/Http/Controllers/Backend/FunmenusDetailController.php

@@ -0,0 +1,100 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use Session;
+use Redirect;
+use App\Models\FunMenu;
+use App\Models\Functions;
+use Illuminate\Http\Request;
+use App\Models\FunMenuDetail;
+use App\Http\Controllers\Controller;
+
+class FunmenusDetailController extends Controller
+{
+    public function index($menuid)
+    {
+        $parentname = FunMenu::select('MenuName')->where('id', '=', $menuid)->get();
+        $funmenus = FunMenuDetail::select('FunId')->where('FunMenuId', '=', $menuid)->get();
+        $tables = Functions::whereIn('id', $funmenus)->get();
+
+        return view('admin.funmenusdetail', [
+            'parentname' => $parentname,
+            'tables' => $tables,
+            'id' => $menuid,
+        ]);
+    }
+
+    public function create($menuid)
+    {
+        return view('admin.funmenusdetailedit', [
+            'datas' => "",
+            'datas2' => "",
+            'id' => $menuid,
+        ]);
+    }
+
+    public function edit($menuid, $id)
+    {
+        $datas = Functions::find($id);
+        $datas2 = FunMenuDetail::select('id', 'Corder')->where('FunMenuId', '=', $menuid)->where('FunId', '=', $id)->get();
+
+        return view('admin.funmenusdetailedit', [
+            'datas' => $datas,
+            'datas2' => $datas2[0],
+            'id' => $menuid,
+        ]);
+    }
+
+    public function store(Request $request, $menuid)
+    {
+        if ($request->mode == "insert") {
+            $function = new Functions;
+            $function->FunName = $request->FunName;
+            $function->FunLink = $request->FunLink;
+            $function->FunDesc = $request->FunDesc;
+            $function->Valid = ($request->Valid == "on") ? 1 : 0;
+            $function->Oid = $request->user()->id;
+            $function->save();
+
+            $functiondetail = new FunMenuDetail;
+            $functiondetail->FunMenuId = $menuid;
+            $functiondetail->FunId = $function->id;
+            $functiondetail->Valid = ($request->Valid == "on") ? 1 : 0;
+            $functiondetail->Corder = $request->Corder;
+            $functiondetail->Oid = $request->user()->id;
+            $functiondetail->save();
+        } else {
+            $function = Functions::find($request->id);
+            $function->FunName = $request->FunName;
+            $function->FunLink = $request->FunLink;
+            $function->FunDesc = $request->FunDesc;
+            $function->Valid = ($request->Valid == "on") ? 1 : 0;
+            $function->Oid = $request->user()->id;
+            $function->save();
+
+            $functiondetail = FunMenuDetail::find($request->detailid);
+            $functiondetail->Valid = ($request->Valid == "on") ? 1 : 0;
+            $functiondetail->Corder = $request->Corder;
+            $functiondetail->Oid = $request->user()->id;
+            $functiondetail->save();
+        }
+
+        return Redirect::back();
+    }
+
+    public function delete($menuid, $id)
+    {
+        if ($menuid == 1) {
+            Session::flash('msg', 'This can not be delete!!');
+        } else {
+            $function = Functions::find($id);
+            $function->delete();
+
+            $funmenudetail = FunMenuDetail::where('FunId', '=', $id);
+            $funmenudetail->delete();
+        }
+
+        return Redirect::back();
+    }
+}

app/Http/Controllers/Backend/PasswordController.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use App\Models\User;
+use Illuminate\Http\Request;
+use App\Http\Controllers\Controller;
+use Illuminate\Support\Facades\Session;
+
+class PasswordController extends Controller
+{
+    public function index()
+    {
+        return view('admin.password');
+    }
+
+    public function update(Request $request)
+    {
+        $this->validate($request, [
+            'qpwd1' => 'required|max:255',
+        ]);
+
+        $user = User::find($request->user()->id);
+        $user->password = bcrypt($request->qpwd1);
+        $user->save();
+
+        Session::flash('msg', 'Update Success!');
+
+        return redirect()->back();
+    }
+}

app/Http/Controllers/Backend/UsergroupsController.php

@@ -0,0 +1,111 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use Illuminate\Http\Request;
+
+use App\Models\FunMenu;
+use App\Models\FunUserGroups;
+use App\Http\Controllers\Controller;
+use Redirect;
+
+class UsergroupsController extends Controller
+{
+    public function index()
+    {
+        $tables = FunUserGroups::all();
+
+        return view('admin.usergroups', [
+            'tables' => $tables,
+        ]);
+    }
+
+    public function delete(Request $request, FunUserGroups $id)
+    {
+        if ($id->id == 1) {
+            return Redirect::back()->withErrors("Admin group can not be delete!");
+        } else {
+            $id->delete();
+        }
+        return Redirect::back();
+    }
+
+    public function create(Request $request)
+    {
+        $user_name = $request->user()->name;
+        $user_id = $request->user()->id;
+
+        $funmenu = new FunMenu;
+        $result = $funmenu->leftmenu($user_id);
+
+        $usergroup = new FunUserGroups;
+        $seleted_usrlist = $usergroup->selectedUsrList(9999);
+        $unseleted_usrlist = $usergroup->unseletedUsrList(9999);
+        $seleted_funlist = $usergroup->seletedFunList(9999);
+        $unseleted_funlist = $usergroup->unseletedFunList(9999);
+
+        return view('admin.usergroupsedit', [
+            'leftmenu' => $result,
+            'username' => $user_name,
+            'seleted_usrlist' => $seleted_usrlist,
+            'unseleted_usrlist' => $unseleted_usrlist,
+            'seleted_funlist' => $seleted_funlist,
+            'unseleted_funlist' => $unseleted_funlist,
+            'operdata' => "",
+
+        ]);
+    }
+
+    public function edit(Request $request, $id)
+    {
+        $user_name = $request->user()->name;
+        $user_id = $request->user()->id;
+        $fun_id = $id;
+
+        $funmenu = new FunMenu;
+        $result = $funmenu->leftmenu($user_id);
+
+        $usergroup = new FunUserGroups;
+        $seleted_usrlist = $usergroup->selectedUsrList($fun_id);
+        $unseleted_usrlist = $usergroup->unseletedUsrList($fun_id);
+        $seleted_funlist = $usergroup->seletedFunList($fun_id);
+        $unseleted_funlist = $usergroup->unseletedFunList($fun_id);
+        $operdata = $usergroup->operData($fun_id);
+
+        return view('admin.usergroupsedit', [
+            'leftmenu' => $result,
+            'username' => $user_name,
+            'seleted_usrlist' => $seleted_usrlist,
+            'unseleted_usrlist' => $unseleted_usrlist,
+            'seleted_funlist' => $seleted_funlist,
+            'unseleted_funlist' => $unseleted_funlist,
+            'operdata' => $operdata,
+
+        ]);
+    }
+
+    public function store(Request $request)
+    {
+        if ($request->mode == "insert") {
+            $usergroup = new FunUserGroups;
+            $usergroup->Name = $request->Name;
+            $usergroup->FunList = $request->hidfunlist;
+            $usergroup->UsrList = $request->hidusrlist;
+            $usergroup->Valid = ($request->Valid == "on") ? 1 : 0;
+            $usergroup->Oid = $request->user()->id;
+            $usergroup->save();
+
+            return redirect('/backend/Usergroups');
+        } else {
+            $usergroup = FunUserGroups::find($request->id);
+            $usergroup->Name = $request->Name;
+            $usergroup->FunList = $request->hidfunlist;
+            $usergroup->UsrList = $request->hidusrlist;
+            $usergroup->Valid = ($request->Valid == "on") ? 1 : 0;
+            $usergroup->Oid = $request->user()->id;
+            $usergroup->save();
+
+            return redirect('/backend/Usergroups');
+        }
+    }
+}

app/Http/Controllers/Backend/UsersController.php

@@ -0,0 +1,73 @@
+<?php
+
+namespace App\Http\Controllers\Backend;
+
+use Redirect;
+use App\Models\User;
+use Illuminate\Http\Request;
+use App\Http\Controllers\Controller;
+
+class UsersController extends Controller
+{
+    public function index()
+    {
+        $tables = User::all();
+
+        return view('admin.users', [
+            'tables' => $tables,
+        ]);
+    }
+
+    public function create(Request $request)
+    {
+        return view('admin.usersedit', [
+            'operdata' => "",
+        ]);
+    }
+
+    public function edit($id)
+    {
+        $usr_id = $id;
+        $operdata = User::find($usr_id);
+
+        return view('admin.usersedit', [
+            'operdata' => $operdata,
+        ]);
+    }
+
+    public function store(Request $request)
+    {
+        //$role = \App\Role::where('name', 'admin')->first();
+
+        if ($request->mode == "insert") {
+            $user = new User;
+            $user->name = $request->name;
+            $user->email = $request->email;
+            $user->password = bcrypt($request->password);
+            $user->save();
+
+            //$user->attachRole($role);
+            return redirect('/backend/Users');
+        } else {
+            $user = User::find($request->id);
+            $user->name = $request->name;
+            if ($request->password != "") {
+                $user->password = bcrypt($request->password);
+            }
+            $user->save();
+
+            return redirect('/backend/Users');
+        }
+    }
+
+    public function delete(Request $request, User $id)
+    {
+        if ($id->email == "admin@gmail.com") {
+            return Redirect::back()->withErrors("Administrator can not be delete!");
+        } else {
+            $id->delete();
+        }
+
+        return Redirect::back();
+    }
+}

routes/web.php

@@ -1,18 +1,79 @@
 <?php
 
-use Illuminate\Support\Facades\Route;
-
-/*
-|--------------------------------------------------------------------------
-| Web Routes
-|--------------------------------------------------------------------------
-|
-| Here is where you can register web routes for your application. These
-| routes are loaded by the RouteServiceProvider within a group which
-| contains the "web" middleware group. Now create something great!
-|
-*/
-
-Route::get('/', function () {
-    return view('welcome');
+use App\Http\Controllers\Backend\AuthController;
+use App\Http\Controllers\Backend\UsersController;
+use App\Http\Controllers\Backend\FunmenusController;
+use App\Http\Controllers\Backend\PasswordController;
+use App\Http\Controllers\Backend\DashboardController;
+use App\Http\Controllers\Backend\UsergroupsController;
+use App\Http\Controllers\Backend\FunmenusDetailController;
+
+// Fow AWS ELB 健康檢查
+Route::get('/health-check', function () {
+    return response('healthy');
+});
+
+Route::prefix('backend')->group(function () {
+    Route::redirect('/', '/backend/login');
+
+    // Authentication
+    Route::get('/login', [AuthController::class, 'index'])
+        ->middleware(['guest:web'])
+        ->name('login.index');
+
+    Route::post('/login', [AuthController::class, 'login'])
+        ->middleware([
+            'guest:web',
+            // 'throttle:login'
+        ])->name('login');
+
+    Route::middleware(['auth'])->group(function () {
+
+        Route::get('/dashboard', DashboardController::class)->name('backend.dashboard');
+
+        Route::post('/logout', [AuthController::class, 'logout'])
+            ->name('logout');
+
+        // System ManagementChange Password
+        Route::controller(PasswordController::class)->prefix('Password')->group(function () {
+            Route::get('/', 'index');
+            Route::post('/', 'update');
+        });
+
+        // System ManagementManage Groups
+        Route::controller(UsergroupsController::class)->prefix('Usergroups')->group(function () {
+            Route::get('/', 'index');
+            Route::get('/create', 'create');
+            Route::get('/edit/{id}', 'edit');
+            Route::post('/store', 'store');
+            Route::delete('/{id}', 'delete');
+        });
+
+        // System ManagementManage Users
+        Route::controller(UsersController::class)->prefix('Users')->group(function () {
+            Route::get('/', 'index');
+            Route::get('/create', 'create');
+            Route::get('/edit/{id}', 'edit');
+            Route::post('/store', 'store');
+            Route::delete('/{id}', 'delete');
+        });
+
+        // System ManagementManage Functions
+        Route::controller(FunmenusController::class)->prefix('Funmenus')->group(function () {
+            Route::get('/', 'index');
+            Route::get('/create', 'create');
+            Route::get('/edit/{id}', 'edit');
+            Route::post('/store', 'store');
+            Route::delete('/{id}', 'delete');
+        });
+
+        // System ManagementManage Functions Detail
+        Route::controller(FunmenusDetailController::class)->prefix('Funmenus')->group(function () {
+            Route::get('/{menuid}', 'index');
+            Route::get('/{menuid}/create', 'create');
+            Route::get('/{menuid}/edit/{id}', 'edit');
+            Route::post('/{menuid}/store', 'store');
+            Route::delete('/{menuid}/delete/{id}', 'delete');
+        });
+    });
 });