app/library/App/Controllers/UserController.php

<?php
namespace App\Controllers;
use App\Model\User;
use Phalcon\Validation;
use Phalcon\Validation\Validator\Email;
use PhalconRest\Mvc\Controllers\CrudResourceController;
use PhalconApi\Exception;
use PhalconApi\Constants\ErrorCodes;
class UserController extends CrudResourceController
{
    public function me()
    {
        return $this->createResourceResponse($this->userService->getDetails());
    }
    public function authenticate()
    {
        $username = $this->request->getUsername();
        $password = $this->request->getPassword();
        $session = $this->authManager->loginWithUsernamePassword(\App\Auth\UsernameAccountType::NAME, $username,
            $password);
        return "123";
        $transformer = new \App\Transformers\UserTransformer;
        $transformer->setModelClass('App\Model\User');
        $user = $this->createItemResponse(\App\Model\User::findFirst($session->getIdentity()), $transformer);
        $response = [
            'token' => $session->getToken(),
            'expires' => $session->getExpirationTime(),
            'user' => $user
        ];
        return $this->createArrayResponse($response, 'data');
    }
    public function whitelist()
    {
        return [
            'test'
        ];
    }
    public function registration() {
        $this->beforeHandle();
        $this->beforeHandleWrite();
        $this->beforeHandleCreate();
        $data = $this->getPostedData();
        if (!$data || count($data) == 0) {
            return $this->onNoDataProvided();
        }
        if (!$this->postDataValid($data, false)) {
            return $this->onDataInvalid($data);
        }
        if (!$this->saveAllowed($data) || !$this->createAllowed($data)) {
            return $this->onNotAllowed();
        }
        $data = $this->transformPostData($data);
        $newItem = new User();
        $map = $newItem->columnMap();
        foreach ($data as $key => $value) {
            if (in_array($key, $map))
            $newItem->$key = $value;
        }
        if (!$newItem) {
            return $this->onCreateFailed($newItem, $data);
        }
        $newItem->save();
        $last_id = $newItem->getWriteConnection()->lastInsertId();
        $responseData = $this->getFindData($last_id);
        $response = $this->getCreateResponse($responseData, $data);
        $this->afterHandleCreate($newItem, $data, $response);
        $this->afterHandleWrite();
        $this->afterHandle();
        return $response;
    }
    protected function transformPostDataValue($key, $value, $data)
    {
        if ($key == 'pass') {
            return $this->security->hash($value);
        }
        else {
            return $value;
        }
    }
    protected function beforeHandleWrite()
    {
        $email_field = 'email';
        $validation = new Validation();
        $validation->add(
            $email_field,
            new Email(
                [
                    "message" => "The e-mail is not valid",
                ]
            )
        );
        $data = $this->getPostedData();
        if (isset($data[$email_field])) {
            $messages = $validation->validate($data);
            if (count($messages)) {
                throw new Exception(ErrorCodes::POST_DATA_INVALID, 'The e-mail is not valid', [
                    'data' => $data[$email_field]
                ]);
            }
        }
    }
}