Use retrieveByCredentials() on the User Provider instead of a hardcoded Eloquent query (#582)

pascalbaljet · web-flow · commit 48fb1eb16289 · 2024-12-19T12:08:49.000-06:00
diff --git a/src/Actions/RedirectIfTwoFactorAuthenticatable.php b/src/Actions/RedirectIfTwoFactorAuthenticatable.php
@@ -86,17 +86,17 @@ protected function validateCredentials($request)
             });
         }
 
-        $model = $this->guard->getProvider()->getModel();
+        $provider = $this->guard->getProvider();
 
-        return tap($model::where(Fortify::username(), $request->{Fortify::username()})->first(), function ($user) use ($request) {
-            if (! $user || ! $this->guard->getProvider()->validateCredentials($user, ['password' => $request->password])) {
+        return tap($provider->retrieveByCredentials($request->only(Fortify::username(), 'password')), function ($user) use ($provider, $request) {
+            if (! $user || ! $provider->validateCredentials($user, ['password' => $request->password])) {
                 $this->fireFailedEvent($request, $user);
 
                 $this->throwFailedAuthenticationException($request);
             }
 
-            if (config('hashing.rehash_on_login', true) && method_exists($this->guard->getProvider(), 'rehashPasswordIfRequired')) {
-                $this->guard->getProvider()->rehashPasswordIfRequired($user, ['password' => $request->password]);
+            if (config('hashing.rehash_on_login', true) && method_exists($provider, 'rehashPasswordIfRequired')) {
+                $provider->rehashPasswordIfRequired($user, ['password' => $request->password]);
             }
         });
     }

Original file line number	Diff line number	Diff line change
`@@ -86,17 +86,17 @@ protected function validateCredentials($request)`
`86`	`86`	`});`
`87`	`87`	`}`
`88`	`88`
`89`		`- $model = $this->guard->getProvider()->getModel();`
	`89`	`+ $provider = $this->guard->getProvider();`
`90`	`90`
`91`		`- return tap($model::where(Fortify::username(), $request->{Fortify::username()})->first(), function ($user) use ($request) {`
`92`		`- if (! $user \|\| ! $this->guard->getProvider()->validateCredentials($user, ['password' => $request->password])) {`
	`91`	`+ return tap($provider->retrieveByCredentials($request->only(Fortify::username(), 'password')), function ($user) use ($provider, $request) {`
	`92`	`+ if (! $user \|\| ! $provider->validateCredentials($user, ['password' => $request->password])) {`
`93`	`93`	`$this->fireFailedEvent($request, $user);`
`94`	`94`
`95`	`95`	`$this->throwFailedAuthenticationException($request);`
`96`	`96`	`}`
`97`	`97`
`98`		`- if (config('hashing.rehash_on_login', true) && method_exists($this->guard->getProvider(), 'rehashPasswordIfRequired')) {`
`99`		`- $this->guard->getProvider()->rehashPasswordIfRequired($user, ['password' => $request->password]);`
	`98`	`+ if (config('hashing.rehash_on_login', true) && method_exists($provider, 'rehashPasswordIfRequired')) {`
	`99`	`+ $provider->rehashPasswordIfRequired($user, ['password' => $request->password]);`
`100`	`100`	`}`
`101`	`101`	`});`
`102`	`102`	`}`