Ajout du corrigé du TP7

corriges/TP7/.editorconfig

+root = true
+
+[*]
+charset = utf-8
+end_of_line = lf
+insert_final_newline = true
+indent_style = space
+indent_size = 4
+trim_trailing_whitespace = true
+
+[*.md]
+trim_trailing_whitespace = false
+
+[*.{yml,yaml}]
+indent_size = 2

corriges/TP7/.env.example

+APP_NAME=Laravel
+APP_ENV=local
+APP_KEY=
+APP_DEBUG=true
+APP_URL=http://localhost
+
+LOG_CHANNEL=stack
+
+DB_CONNECTION=mysql
+DB_HOST=127.0.0.1
+DB_PORT=3306
+DB_DATABASE=laravel
+DB_USERNAME=root
+DB_PASSWORD=
+
+BROADCAST_DRIVER=log
+CACHE_DRIVER=file
+QUEUE_CONNECTION=sync
+SESSION_DRIVER=file
+SESSION_LIFETIME=120
+
+REDIS_HOST=127.0.0.1
+REDIS_PASSWORD=null
+REDIS_PORT=6379
+
+MAIL_MAILER=smtp
+MAIL_HOST=smtp.mailtrap.io
+MAIL_PORT=2525
+MAIL_USERNAME=null
+MAIL_PASSWORD=null
+MAIL_ENCRYPTION=null
+MAIL_FROM_ADDRESS=null
+MAIL_FROM_NAME="${APP_NAME}"
+
+AWS_ACCESS_KEY_ID=
+AWS_SECRET_ACCESS_KEY=
+AWS_DEFAULT_REGION=us-east-1
+AWS_BUCKET=
+
+PUSHER_APP_ID=
+PUSHER_APP_KEY=
+PUSHER_APP_SECRET=
+PUSHER_APP_CLUSTER=mt1
+
+MIX_PUSHER_APP_KEY="${PUSHER_APP_KEY}"
+MIX_PUSHER_APP_CLUSTER="${PUSHER_APP_CLUSTER}"

corriges/TP7/.gitattributes

+* text=auto
+*.css linguist-vendored
+*.scss linguist-vendored
+*.js linguist-vendored
+CHANGELOG.md export-ignore

corriges/TP7/.gitignore

+/node_modules
+/public/hot
+/public/storage
+/storage/*.key
+/vendor
+.env
+.env.backup
+.phpunit.result.cache
+Homestead.json
+Homestead.yaml
+npm-debug.log
+yarn-error.log

corriges/TP7/.styleci.yml

+php:
+  preset: laravel
+  disabled:
+    - no_unused_imports
+  finder:
+    not-name:
+      - index.php
+      - server.php
+js:
+  finder:
+    not-name:
+      - webpack.mix.js
+css: true

corriges/TP7/README.md

+<p align="center"><a href="https://laravel.com" target="_blank"><img src="https://raw.githubusercontent.com/laravel/art/master/logo-lockup/5%20SVG/2%20CMYK/1%20Full%20Color/laravel-logolockup-cmyk-red.svg" width="400"></a></p>
+
+<p align="center">
+<a href="https://travis-ci.org/laravel/framework"><img src="https://travis-ci.org/laravel/framework.svg" alt="Build Status"></a>
+<a href="https://packagist.org/packages/laravel/framework"><img src="https://img.shields.io/packagist/dt/laravel/framework" alt="Total Downloads"></a>
+<a href="https://packagist.org/packages/laravel/framework"><img src="https://img.shields.io/packagist/v/laravel/framework" alt="Latest Stable Version"></a>
+<a href="https://packagist.org/packages/laravel/framework"><img src="https://img.shields.io/packagist/l/laravel/framework" alt="License"></a>
+</p>
+
+## About Laravel
+
+Laravel is a web application framework with expressive, elegant syntax. We believe development must be an enjoyable and creative experience to be truly fulfilling. Laravel takes the pain out of development by easing common tasks used in many web projects, such as:
+
+- [Simple, fast routing engine](https://laravel.com/docs/routing).
+- [Powerful dependency injection container](https://laravel.com/docs/container).
+- Multiple back-ends for [session](https://laravel.com/docs/session) and [cache](https://laravel.com/docs/cache) storage.
+- Expressive, intuitive [database ORM](https://laravel.com/docs/eloquent).
+- Database agnostic [schema migrations](https://laravel.com/docs/migrations).
+- [Robust background job processing](https://laravel.com/docs/queues).
+- [Real-time event broadcasting](https://laravel.com/docs/broadcasting).
+
+Laravel is accessible, powerful, and provides tools required for large, robust applications.
+
+## Learning Laravel
+
+Laravel has the most extensive and thorough [documentation](https://laravel.com/docs) and video tutorial library of all modern web application frameworks, making it a breeze to get started with the framework.
+
+If you don't feel like reading, [Laracasts](https://laracasts.com) can help. Laracasts contains over 1500 video tutorials on a range of topics including Laravel, modern PHP, unit testing, and JavaScript. Boost your skills by digging into our comprehensive video library.
+
+## Laravel Sponsors
+
+We would like to extend our thanks to the following sponsors for funding Laravel development. If you are interested in becoming a sponsor, please visit the Laravel [Patreon page](https://patreon.com/taylorotwell).
+
+### Premium Partners
+
+- **[Vehikl](https://vehikl.com/)**
+- **[Tighten Co.](https://tighten.co)**
+- **[Kirschbaum Development Group](https://kirschbaumdevelopment.com)**
+- **[64 Robots](https://64robots.com)**
+- **[Cubet Techno Labs](https://cubettech.com)**
+- **[Cyber-Duck](https://cyber-duck.co.uk)**
+- **[Many](https://www.many.co.uk)**
+- **[Webdock, Fast VPS Hosting](https://www.webdock.io/en)**
+- **[DevSquad](https://devsquad.com)**
+- **[OP.GG](https://op.gg)**
+
+## Contributing
+
+Thank you for considering contributing to the Laravel framework! The contribution guide can be found in the [Laravel documentation](https://laravel.com/docs/contributions).
+
+## Code of Conduct
+
+In order to ensure that the Laravel community is welcoming to all, please review and abide by the [Code of Conduct](https://laravel.com/docs/contributions#code-of-conduct).
+
+## Security Vulnerabilities
+
+If you discover a security vulnerability within Laravel, please send an e-mail to Taylor Otwell via [taylor@laravel.com](mailto:taylor@laravel.com). All security vulnerabilities will be promptly addressed.
+
+## License
+
+The Laravel framework is open-sourced software licensed under the [MIT license](https://opensource.org/licenses/MIT).

corriges/TP7/app/Console/Kernel.php

+<?php
+
+namespace App\Console;
+
+use Illuminate\Console\Scheduling\Schedule;
+use Illuminate\Foundation\Console\Kernel as ConsoleKernel;
+
+class Kernel extends ConsoleKernel
+{
+    /**
+     * The Artisan commands provided by your application.
+     *
+     * @var array
+     */
+    protected $commands = [
+        //
+    ];
+
+    /**
+     * Define the application's command schedule.
+     *
+     * @param  \Illuminate\Console\Scheduling\Schedule  $schedule
+     * @return void
+     */
+    protected function schedule(Schedule $schedule)
+    {
+        // $schedule->command('inspire')->hourly();
+    }
+
+    /**
+     * Register the commands for the application.
+     *
+     * @return void
+     */
+    protected function commands()
+    {
+        $this->load(__DIR__.'/Commands');
+
+        require base_path('routes/console.php');
+    }
+}

corriges/TP7/app/Exceptions/Handler.php

+<?php
+
+namespace App\Exceptions;
+
+use Illuminate\Foundation\Exceptions\Handler as ExceptionHandler;
+
+class Handler extends ExceptionHandler
+{
+    /**
+     * A list of the exception types that are not reported.
+     *
+     * @var array
+     */
+    protected $dontReport = [
+        //
+    ];
+
+    /**
+     * A list of the inputs that are never flashed for validation exceptions.
+     *
+     * @var array
+     */
+    protected $dontFlash = [
+        'password',
+        'password_confirmation',
+    ];
+
+    /**
+     * Register the exception handling callbacks for the application.
+     *
+     * @return void
+     */
+    public function register()
+    {
+        //
+    }
+}

corriges/TP7/app/Http/Controllers/Controller.php

+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Foundation\Auth\Access\AuthorizesRequests;
+use Illuminate\Foundation\Bus\DispatchesJobs;
+use Illuminate\Foundation\Validation\ValidatesRequests;
+use Illuminate\Routing\Controller as BaseController;
+
+class Controller extends BaseController
+{
+    use AuthorizesRequests, DispatchesJobs, ValidatesRequests;
+}

corriges/TP7/app/Http/Controllers/UserController.php

+<?php
+
+namespace App\Http\Controllers;
+
+use Illuminate\Http\Request;
+use App\Models\MyUser;
+
+class UserController extends Controller
+{
+	/**
+	 * Show the signin page
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function signin( Request $request )
+	{
+		return view('signin',['message' => $request->session()->get('message')]);
+	}
+
+	/**
+	 * Show the signup page
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function signup( Request $request )
+	{
+		return view('signup',['message' => $request->session()->get('message')]);
+	}
+
+	/**
+	 * Show the formpassword page
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function formpassword( Request $request )
+	{
+		return view('formpassword',['message' => $request->session()->get('message')]);
+	}
+
+	/**
+	 * Signout
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function signout( Request $request )
+	{
+		$request->session()->flush();
+		return redirect()->route('signin');
+	}
+
+	/**
+	 * Show the account page
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function account( Request $request )
+	{
+		return view('account', [
+			'user' => $request->session()->get('user'),
+			'message',$request->session()->get('message')
+		]);
+	}
+
+	/**
+	 * Authentication
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function authenticate( Request $request )
+	{
+		/******************************************************************************
+		 * Traitement des données de la requête
+		 */
+
+		// 2. On vérifie que les données attendues existent
+		if ( !$request->filled(['login','password']) )
+			return redirect()->route('signin')->with('message','Some POST data are missing.');
+
+		/******************************************************************************
+		 * Authentification
+		 */
+
+		// 1. On crée l'utilisateur avec les identifiants passés en POST
+		$user = new MyUser($request->login,$request->password);
+
+		// 2. On vérifie qu'il existe dans la BDD
+		try
+		{
+			if ( !$user->exists() )
+				return redirect()->route('signin')->with('message','Wrong login/password.');
+		}
+		catch (\PDOException $e) {
+			// Si erreur lors de la création de l'objet PDO
+			// (déclenchée par MyPDO::pdo())
+			return redirect()->route('signin')->with('message',$e->getMessage());
+		}
+		catch (\Exception $e) {
+			// Si erreur durant l'exécution de la requête
+			// (déclenchée par le throw de $user->exists())
+			return redirect()->route('signin')->with('message',$e->getMessage());
+		}
+
+		// 3. On sauvegarde le login dans la session
+		$request->session()->put('user',$request->login);
+
+		// 4. On sollicite une redirection vers la page du compte
+		return redirect()->route('account');
+	}
+
+
+	/**
+	 * Add a user
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function addUser( Request $request )
+	{
+		/******************************************************************************
+		 * Traitement des données de la requête
+		 */
+
+		// 2. On vérifie que les données attendues existent
+		if ( !$request->filled(['login','password','confirm']) )
+			return redirect()->route('signup')->with('message','Some POST data are missing.');
+
+		// 4. On vérifie que les deux mots de passe correspondent
+		if ( $request->password !== $request->confirm )
+			return redirect()->route('signup')->with('message','The two passwords differ.');
+
+		/******************************************************************************
+		 * Ajout de l'utilisateur
+		 */
+
+		// 1. On crée l'utilisateur avec les identifiants passés en POST
+		$user = new MyUser($request->login,$request->password);
+
+		// 2. On crée l'utilisateur dans la BDD
+		try
+		{
+			$user->create();
+		}
+		catch (\PDOException $e) {
+			// Si erreur lors de la création de l'objet PDO
+			// (déclenchée par MyPDO::pdo())
+			return redirect()->route('signup')->with('message',$e->getMessage());
+		}
+		catch (\Exception $e) {
+			// Si erreur durant l'exécution de la requête
+			// (déclenchée par le throw de $user->create())
+			return redirect()->route('signup')->with('message',$e->getMessage());
+		}
+
+		// 3. On indique que le compte a bien été créé
+		// 4. On sollicite une redirection vers la page d'accueil
+		return redirect()->route('signin')->with('message','Account created! Now, signin.');
+	}
+
+	/**
+	 * Change the user password
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function changePassword( Request $request )
+	{
+		/******************************************************************************
+		 * Vérification de la session
+		 */
+
+		// 2. On récupère le login dans une variable
+		$login = $request->session()->get('user');
+
+		/******************************************************************************
+		 * Traitement des données de la requête
+		 */
+
+		// 2. On vérifie que les données attendues existent
+		if ( !$request->filled(['newpassword','confirmpassword']) )
+			return redirect()->route('formpassword')->with('message','Some POST data are missing.');
+
+		// 4. On s'assure que les 2 mots de passes sont identiques
+		if ( $request->newpassword != $request->confirmpassword )
+			return redirect()->route('formpassword')->with('message','Error: passwords are different.');
+
+		/******************************************************************************
+		 * Changement du mot de passe
+		 */
+
+		// 1. On crée l'utilisateur avec les identifiants passés en POST
+		$user = new MyUser($login);
+
+		// 2. On change le mot de passe de l'utilisateur
+		try {
+			$user->changePassword($request->newpassword);
+		}
+		catch (\PDOException $e) {
+			// Si erreur lors de la création de l'objet PDO
+			// (déclenchée par MyPDO::pdo())
+			return redirect()->route('formpassword')->with('message',$e->getMessage());
+		}
+		catch (\Exception $e) {
+			// Si erreur durant l'exécution de la requête
+			// (déclenchée par le throw de $user->changePassword())
+			return redirect()->route('formpassword')->with('message',$e->getMessage());
+		}
+
+		// 3. On indique que le mot de passe a bien été modifié
+		// 4. On sollicite une redirection vers la page du compte
+		return redirect()->route('account')->with('message','Password successfully updated.');
+	}
+
+	/**
+	 * Delete the logged user
+	 *
+	 * @param  \Illuminate\Http\Request  $request
+	 * @return \Illuminate\Http\Response
+	 */
+	public function deleteUser( Request $request )
+	{
+		/******************************************************************************
+		 * Vérification de la session
+		 */
+
+		// 2. On récupère le login dans une variable
+		$login = $request->session()->get('user');
+
+		/******************************************************************************
+		 * Suppression de l'utilisateur
+		 */
+
+		// 1. On crée l'utilisateur avec les identifiants passés en POST
+		$user = new MyUser($login);
+
+		// 2. On détruit l'utilisateur dans la BDD
+		try {
+			$user->delete();
+		}
+		catch (\PDOException $e) {
+			// Si erreur lors de la création de l'objet PDO
+			// (déclenchée par MyPDO::pdo())
+			return redirect()->route('account')->with('message',$e->getMessage());
+		}
+		catch (\Exception $e) {
+			// Si erreur durant l'exécution de la requête
+			// (déclenchée par le throw de $user->create())
+			return redirect()->route('account')->with('message',$e->getMessage());
+		}
+
+		// 3. On détruit la session
+		$request->session()->flush();
+
+		// 4. On crée une nouvelle session
+		// 5. On indique que le compte a bien été supprimé
+		// 4. On sollicite une redirection vers la page d'authentification
+		return redirect()->route('signin')->with('message','Account successfully deleted.');
+	}
+}

corriges/TP7/app/Http/Kernel.php

+<?php
+
+namespace App\Http;
+
+use Illuminate\Foundation\Http\Kernel as HttpKernel;
+
+class Kernel extends HttpKernel
+{
+    /**
+     * The application's global HTTP middleware stack.
+     *
+     * These middleware are run during every request to your application.
+     *
+     * @var array
+     */
+    protected $middleware = [
+        // \App\Http\Middleware\TrustHosts::class,
+        \App\Http\Middleware\TrustProxies::class,
+        \Fruitcake\Cors\HandleCors::class,
+        \App\Http\Middleware\PreventRequestsDuringMaintenance::class,
+        \Illuminate\Foundation\Http\Middleware\ValidatePostSize::class,
+        \App\Http\Middleware\TrimStrings::class,
+        \Illuminate\Foundation\Http\Middleware\ConvertEmptyStringsToNull::class,
+    ];
+
+    /**
+     * The application's route middleware groups.
+     *
+     * @var array
+     */
+    protected $middlewareGroups = [
+        'web' => [
+            \App\Http\Middleware\EncryptCookies::class,
+            \Illuminate\Cookie\Middleware\AddQueuedCookiesToResponse::class,
+            \Illuminate\Session\Middleware\StartSession::class,
+            // \Illuminate\Session\Middleware\AuthenticateSession::class,
+            \Illuminate\View\Middleware\ShareErrorsFromSession::class,
+            \App\Http\Middleware\VerifyCsrfToken::class,
+            \Illuminate\Routing\Middleware\SubstituteBindings::class,
+        ],
+
+        'api' => [
+            'throttle:api',
+            \Illuminate\Routing\Middleware\SubstituteBindings::class,
+        ],
+    ];
+
+    /**
+     * The application's route middleware.
+     *
+     * These middleware may be assigned to groups or used individually.
+     *
+     * @var array
+     */
+    protected $routeMiddleware = [
+        'auth' => \App\Http\Middleware\Authenticate::class,
+        'auth.basic' => \Illuminate\Auth\Middleware\AuthenticateWithBasicAuth::class,
+        'auth.myuser' => \App\Http\Middleware\EnsureMyUserIsAuthenticated::class,
+        'cache.headers' => \Illuminate\Http\Middleware\SetCacheHeaders::class,
+        'can' => \Illuminate\Auth\Middleware\Authorize::class,
+        'guest' => \App\Http\Middleware\RedirectIfAuthenticated::class,
+        'password.confirm' => \Illuminate\Auth\Middleware\RequirePassword::class,
+        'signed' => \Illuminate\Routing\Middleware\ValidateSignature::class,
+        'throttle' => \Illuminate\Routing\Middleware\ThrottleRequests::class,
+        'verified' => \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class,
+    ];
+}

corriges/TP7/app/Http/Middleware/Authenticate.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Auth\Middleware\Authenticate as Middleware;
+
+class Authenticate extends Middleware
+{
+    /**
+     * Get the path the user should be redirected to when they are not authenticated.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @return string|null
+     */
+    protected function redirectTo($request)
+    {
+        if (! $request->expectsJson()) {
+            return route('login');
+        }
+    }
+}

corriges/TP7/app/Http/Middleware/EncryptCookies.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Cookie\Middleware\EncryptCookies as Middleware;
+
+class EncryptCookies extends Middleware
+{
+    /**
+     * The names of the cookies that should not be encrypted.
+     *
+     * @var array
+     */
+    protected $except = [
+        //
+    ];
+}

corriges/TP7/app/Http/Middleware/EnsureMyUserIsAuthenticated.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+
+class EnsureMyUserIsAuthenticated
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @return mixed
+     */
+    public function handle(Request $request, Closure $next)
+    {
+		if ( !$request->session()->has('user') )
+			return redirect()->route('signin');
+
+        return $next($request);
+    }
+}

corriges/TP7/app/Http/Middleware/PreventRequestsDuringMaintenance.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Foundation\Http\Middleware\PreventRequestsDuringMaintenance as Middleware;
+
+class PreventRequestsDuringMaintenance extends Middleware
+{
+    /**
+     * The URIs that should be reachable while maintenance mode is enabled.
+     *
+     * @var array
+     */
+    protected $except = [
+        //
+    ];
+}

corriges/TP7/app/Http/Middleware/RedirectIfAuthenticated.php

+<?php
+
+namespace App\Http\Middleware;
+
+use App\Providers\RouteServiceProvider;
+use Closure;
+use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Auth;
+
+class RedirectIfAuthenticated
+{
+    /**
+     * Handle an incoming request.
+     *
+     * @param  \Illuminate\Http\Request  $request
+     * @param  \Closure  $next
+     * @param  string|null  ...$guards
+     * @return mixed
+     */
+    public function handle(Request $request, Closure $next, ...$guards)
+    {
+        $guards = empty($guards) ? [null] : $guards;
+
+        foreach ($guards as $guard) {
+            if (Auth::guard($guard)->check()) {
+                return redirect(RouteServiceProvider::HOME);
+            }
+        }
+
+        return $next($request);
+    }
+}

corriges/TP7/app/Http/Middleware/TrimStrings.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Foundation\Http\Middleware\TrimStrings as Middleware;
+
+class TrimStrings extends Middleware
+{
+    /**
+     * The names of the attributes that should not be trimmed.
+     *
+     * @var array
+     */
+    protected $except = [
+        'password',
+        'password_confirmation',
+    ];
+}

corriges/TP7/app/Http/Middleware/TrustHosts.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Http\Middleware\TrustHosts as Middleware;
+
+class TrustHosts extends Middleware
+{
+    /**
+     * Get the host patterns that should be trusted.
+     *
+     * @return array
+     */
+    public function hosts()
+    {
+        return [
+            $this->allSubdomainsOfApplicationUrl(),
+        ];
+    }
+}

corriges/TP7/app/Http/Middleware/TrustProxies.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Fideloper\Proxy\TrustProxies as Middleware;
+use Illuminate\Http\Request;
+
+class TrustProxies extends Middleware
+{
+    /**
+     * The trusted proxies for this application.
+     *
+     * @var array|string|null
+     */
+    protected $proxies;
+
+    /**
+     * The headers that should be used to detect proxies.
+     *
+     * @var int
+     */
+    protected $headers = Request::HEADER_X_FORWARDED_ALL;
+}

corriges/TP7/app/Http/Middleware/VerifyCsrfToken.php

+<?php
+
+namespace App\Http\Middleware;
+
+use Illuminate\Foundation\Http\Middleware\VerifyCsrfToken as Middleware;
+
+class VerifyCsrfToken extends Middleware
+{
+    /**
+     * The URIs that should be excluded from CSRF verification.
+     *
+     * @var array
+     */
+    protected $except = [
+        //
+    ];
+}