sjunior-dev
diff --git a/‎.gitignore
Lines changed: 4 additions & 0 deletions b/‎.gitignore
Lines changed: 4 additions & 0 deletions
diff --git a/‎composer.json
Lines changed: 1 addition & 0 deletions b/‎composer.json
Lines changed: 1 addition & 0 deletions
diff --git a/‎composer.lock
Lines changed: 253 additions & 1 deletion b/‎composer.lock
Lines changed: 253 additions & 1 deletion
diff --git a/‎config/bundles.php
Lines changed: 1 addition & 0 deletions b/‎config/bundles.php
Lines changed: 1 addition & 0 deletions
diff --git a/‎config/packages/lexik_jwt_authentication.yaml
Lines changed: 9 additions & 0 deletions b/‎config/packages/lexik_jwt_authentication.yaml
Lines changed: 9 additions & 0 deletions
diff --git a/‎config/packages/security.yaml
Lines changed: 21 additions & 1 deletion b/‎config/packages/security.yaml
Lines changed: 21 additions & 1 deletion
diff --git a/‎config/routes.yaml
Lines changed: 3 additions & 0 deletions b/‎config/routes.yaml
Lines changed: 3 additions & 0 deletions
diff --git a/‎src/Controller/UserAdminController.php
Lines changed: 48 additions & 0 deletions b/‎src/Controller/UserAdminController.php
Lines changed: 48 additions & 0 deletions
@@ -88,3 +88,7 @@ yarn-error.log
 .idea/
 **/yarn-cache
 **.php-cs-fixer.cache
+
+###> lexik/jwt-authentication-bundle ###
+/config/jwt/*.pem
+###< lexik/jwt-authentication-bundle ###
@@ -8,6 +8,7 @@
         "ext-ctype": "*",
         "ext-iconv": "*",
         "doctrine/doctrine-migrations-bundle": "^3.3",
+        "lexik/jwt-authentication-bundle": "^3.0",
         "phpdocumentor/reflection-docblock": "^5.4",
         "phpstan/phpdoc-parser": "^1.29",
         "symfony/console": "7.0.*",
 
@@ -11,4 +11,5 @@
     Zenstruck\Foundry\ZenstruckFoundryBundle::class => ['dev' => true, 'test' => true],
     Doctrine\Bundle\MigrationsBundle\DoctrineMigrationsBundle::class => ['all' => true],
     Symfony\Bundle\SecurityBundle\SecurityBundle::class => ['all' => true],
+    Lexik\Bundle\JWTAuthenticationBundle\LexikJWTAuthenticationBundle::class => ['all' => true],
 ];
@@ -0,0 +1,9 @@
+lexik_jwt_authentication:
+    secret_key: '%env(resolve:JWT_SECRET_KEY)%'
+    public_key: '%env(resolve:JWT_PUBLIC_KEY)%'
+    pass_phrase: '%env(JWT_PASSPHRASE)%'
+    token_ttl: 3600
+
+when@dev:
+    lexik_jwt_authentication:
+        token_ttl: 43200 # 12h
@@ -9,7 +9,22 @@ security:
             entity:
                 class: App\Entity\User
                 property: email
+
     firewalls:
+        login:
+            pattern: ^/api/login
+            stateless: true
+            json_login:
+                check_path: /api/login_check
+                username_path: email
+                success_handler: lexik_jwt_authentication.handler.authentication_success
+                failure_handler: lexik_jwt_authentication.handler.authentication_failure
+
+        api:
+            pattern:   ^/api
+            stateless: true
+            jwt: ~
+
         dev:
             pattern: ^/(_(profiler|wdt)|css|images|js)/
             security: false
@@ -26,8 +41,13 @@ security:
     # Easy way to control access for large sections of your site
     # Note: Only the *first* access control that matches will be used
     access_control:
-        # - { path: ^/admin, roles: ROLE_ADMIN }
+        - { path: ^/api/admin/v1, roles: ROLE_ADMIN }
+        - { path: ^/api/login, roles: PUBLIC_ACCESS }
+        - { path: ^/api,       roles: IS_AUTHENTICATED_FULLY }
+
         # - { path: ^/profile, roles: ROLE_USER }
+    role_hierarchy:
+        ROLE_ADMIN:       ROLE_USER
 
 when@test:
     security:
 
@@ -3,3 +3,6 @@ controllers:
         path: ../src/Controller/
         namespace: App\Controller
     type: attribute
+
+api_login_check:
+    path: /api/login_check
@@ -0,0 +1,48 @@
+<?php
+
+namespace App\Controller;
+
+use App\Entity\User;
+use App\Service\UserService;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\Routing\Attribute\Route;
+
+#[Route('/api/admin/v1', name: 'api_admin_v1_', format: 'json')]
+class UserAdminController extends AbstractController
+{
+    public function __construct(
+        public readonly UserService $userService
+    ) {
+    }
+
+    #[Route('/user', name: 'user_create', methods: ['POST'])]
+    public function create(Request $request): JsonResponse
+    {
+        $user = $this->userService->store($request);
+
+        return $this->json([
+            'data' => $user,
+        ], Response::HTTP_CREATED);
+    }
+
+    #[Route('/{reference}/user', name: 'user_view', methods: ['GET'])]
+    public function view(User $user): Response
+    {
+        return $this->json([
+            'data' => $user,
+        ]);
+    }
+
+    #[Route('/{reference}/user', name: 'user_update', methods: ['PUT'])]
+    public function update(User $user, Request $request): Response
+    {
+        $user = $this->userService->store($request, $user);
+
+        return $this->json([
+            'data' => $user,
+        ]);
+    }
+}