| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  | <?php | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | namespace BookStack\Http\Controllers\Auth; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | use BookStack\Auth\Access\EmailConfirmationService; | 
					
						
							| 
									
										
										
										
											2021-07-18 00:45:00 +08:00
										 |  |  | use BookStack\Auth\Access\LoginService; | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  | use BookStack\Auth\UserRepo; | 
					
						
							|  |  |  | use BookStack\Exceptions\ConfirmationEmailException; | 
					
						
							|  |  |  | use BookStack\Exceptions\UserTokenExpiredException; | 
					
						
							|  |  |  | use BookStack\Exceptions\UserTokenNotFoundException; | 
					
						
							|  |  |  | use BookStack\Http\Controllers\Controller; | 
					
						
							|  |  |  | use Exception; | 
					
						
							|  |  |  | use Illuminate\Http\RedirectResponse; | 
					
						
							|  |  |  | use Illuminate\Http\Request; | 
					
						
							|  |  |  | use Illuminate\Routing\Redirector; | 
					
						
							|  |  |  | use Illuminate\View\View; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | class ConfirmEmailController extends Controller | 
					
						
							|  |  |  | { | 
					
						
							|  |  |  |     protected $emailConfirmationService; | 
					
						
							| 
									
										
										
										
											2021-07-18 00:45:00 +08:00
										 |  |  |     protected $loginService; | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |     protected $userRepo; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Create a new controller instance. | 
					
						
							|  |  |  |      */ | 
					
						
							| 
									
										
										
										
											2021-07-18 00:45:00 +08:00
										 |  |  |     public function __construct( | 
					
						
							|  |  |  |         EmailConfirmationService $emailConfirmationService, | 
					
						
							|  |  |  |         LoginService $loginService, | 
					
						
							|  |  |  |         UserRepo $userRepo | 
					
						
							| 
									
										
										
										
											2021-08-21 22:49:40 +08:00
										 |  |  |     ) { | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |         $this->emailConfirmationService = $emailConfirmationService; | 
					
						
							| 
									
										
										
										
											2021-07-18 00:45:00 +08:00
										 |  |  |         $this->loginService = $loginService; | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |         $this->userRepo = $userRepo; | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Show the page to tell the user to check their email | 
					
						
							|  |  |  |      * and confirm their address. | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function show() | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         return view('auth.register-confirm'); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Shows a notice that a user's email address has not been confirmed, | 
					
						
							|  |  |  |      * Also has the option to re-send the confirmation email. | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function showAwaiting() | 
					
						
							|  |  |  |     { | 
					
						
							| 
									
										
										
										
											2021-07-18 23:52:31 +08:00
										 |  |  |         $user = $this->loginService->getLastLoginAttemptUser(); | 
					
						
							| 
									
										
										
										
											2021-08-21 22:49:40 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2021-07-18 23:52:31 +08:00
										 |  |  |         return view('auth.user-unconfirmed', ['user' => $user]); | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							|  |  |  |      * Confirms an email via a token and logs the user into the system. | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |      * @param $token | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |      * @throws ConfirmationEmailException | 
					
						
							|  |  |  |      * @throws Exception | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |      * | 
					
						
							|  |  |  |      * @return RedirectResponse|Redirector | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |      */ | 
					
						
							|  |  |  |     public function confirm($token) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         try { | 
					
						
							|  |  |  |             $userId = $this->emailConfirmationService->checkTokenAndGetUserId($token); | 
					
						
							|  |  |  |         } catch (Exception $exception) { | 
					
						
							|  |  |  |             if ($exception instanceof UserTokenNotFoundException) { | 
					
						
							| 
									
										
										
										
											2019-10-05 19:55:01 +08:00
										 |  |  |                 $this->showErrorNotification(trans('errors.email_confirmation_invalid')); | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |                 return redirect('/register'); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             if ($exception instanceof UserTokenExpiredException) { | 
					
						
							|  |  |  |                 $user = $this->userRepo->getById($exception->userId); | 
					
						
							|  |  |  |                 $this->emailConfirmationService->sendConfirmation($user); | 
					
						
							| 
									
										
										
										
											2019-10-05 19:55:01 +08:00
										 |  |  |                 $this->showErrorNotification(trans('errors.email_confirmation_expired')); | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |                 return redirect('/register/confirm'); | 
					
						
							|  |  |  |             } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |             throw $exception; | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $user = $this->userRepo->getById($userId); | 
					
						
							|  |  |  |         $user->email_confirmed = true; | 
					
						
							|  |  |  |         $user->save(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         $this->emailConfirmationService->deleteByUser($user); | 
					
						
							| 
									
										
										
										
											2021-07-18 01:24:50 +08:00
										 |  |  |         $this->showSuccessNotification(trans('auth.email_confirm_success')); | 
					
						
							|  |  |  |         $this->loginService->login($user, auth()->getDefaultDriver()); | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  | 
 | 
					
						
							|  |  |  |         return redirect('/'); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     /** | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |      * Resend the confirmation email. | 
					
						
							|  |  |  |      * | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |      * @param Request $request | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |      * | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |      * @return View | 
					
						
							|  |  |  |      */ | 
					
						
							|  |  |  |     public function resend(Request $request) | 
					
						
							|  |  |  |     { | 
					
						
							|  |  |  |         $this->validate($request, [ | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  |             'email' => 'required|email|exists:users,email', | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |         ]); | 
					
						
							|  |  |  |         $user = $this->userRepo->getByEmail($request->get('email')); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |         try { | 
					
						
							|  |  |  |             $this->emailConfirmationService->sendConfirmation($user); | 
					
						
							|  |  |  |         } catch (Exception $e) { | 
					
						
							| 
									
										
										
										
											2019-10-05 19:55:01 +08:00
										 |  |  |             $this->showErrorNotification(trans('auth.email_confirm_send_error')); | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |             return redirect('/register/confirm'); | 
					
						
							|  |  |  |         } | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2019-10-05 19:55:01 +08:00
										 |  |  |         $this->showSuccessNotification(trans('auth.email_confirm_resent')); | 
					
						
							| 
									
										
										
										
											2021-06-26 23:23:15 +08:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2019-08-18 17:47:59 +08:00
										 |  |  |         return redirect('/register/confirm'); | 
					
						
							|  |  |  |     } | 
					
						
							|  |  |  | } |