Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add email confirmation #5301

Merged
merged 32 commits into from
Aug 31, 2023
Merged
Show file tree
Hide file tree
Changes from 5 commits
Commits
Show all changes
32 commits
Select commit Hold shift + click to select a range
a00bcef
add email verification
pxpm Aug 28, 2023
977276b
Apply fixes from StyleCI
StyleCIBot Aug 28, 2023
0c65162
add email confirmation
pxpm Aug 29, 2023
2f86b6e
Apply fixes from StyleCI
StyleCIBot Aug 29, 2023
5e83e25
Update src/app/Http/Controllers/Auth/VerifyEmailController.php
pxpm Aug 29, 2023
84969da
Update src/config/backpack/base.php
pxpm Aug 29, 2023
99de011
Update src/resources/lang/en/base.php
pxpm Aug 29, 2023
f75314c
Update src/resources/lang/en/base.php
pxpm Aug 29, 2023
14ee78e
dont alias signed and verified middlewares
pxpm Aug 29, 2023
e4f74e0
Merge branch 'add-email-confirmation' of https://github.com/Laravel-B…
pxpm Aug 29, 2023
cd092b7
small fixes
pxpm Aug 29, 2023
f60f722
Merge branch 'main' into add-email-confirmation
pxpm Aug 30, 2023
fa36181
add verification to middleware aliases
pxpm Aug 30, 2023
52c1341
Apply fixes from StyleCI
StyleCIBot Aug 30, 2023
15fe548
fixes
pxpm Aug 30, 2023
669823c
Merge branch 'add-email-confirmation' of https://github.com/Laravel-B…
pxpm Aug 30, 2023
fbd760a
Apply fixes from StyleCI
StyleCIBot Aug 30, 2023
1c36a61
Update src/app/Http/Controllers/Auth/VerifyEmailController.php
pxpm Aug 30, 2023
6e21330
add invokable
pxpm Aug 30, 2023
7ea81fa
move to function
pxpm Aug 30, 2023
25bc08c
Apply fixes from StyleCI
StyleCIBot Aug 30, 2023
d2d8958
return early
pxpm Aug 30, 2023
d78729c
Apply fixes from StyleCI
StyleCIBot Aug 30, 2023
3dc83ee
Apply suggestions from code review
pxpm Aug 31, 2023
252bfa6
Apply fixes from StyleCI
StyleCIBot Aug 31, 2023
431b24e
Merge branch 'main' into add-email-confirmation
pxpm Aug 31, 2023
0910fc2
Apply suggestions from code review
pxpm Aug 31, 2023
489c327
Merge branch 'add-email-confirmation' of https://github.com/Laravel-B…
pxpm Aug 31, 2023
2e912ac
fixes
pxpm Aug 31, 2023
d2a0f59
fix
pxpm Aug 31, 2023
b0c2c50
Apply fixes from StyleCI
StyleCIBot Aug 31, 2023
cbb430a
Update src/config/backpack/base.php
tabacitu Aug 31, 2023
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
20 changes: 20 additions & 0 deletions src/BackpackServiceProvider.php
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@
namespace Backpack\CRUD;

use Backpack\Basset\Facades\Basset;
use Backpack\CRUD\app\Http\Middleware\EnsureEmailVerification;
use Backpack\CRUD\app\Http\Middleware\ThrottlePasswordRecovery;
use Backpack\CRUD\app\Library\CrudPanel\CrudPanel;
use Backpack\CRUD\app\Library\Database\DatabaseSchema;
Expand Down Expand Up @@ -129,6 +130,25 @@ public function registerMiddlewareGroup(Router $router)
if (config('backpack.base.setup_password_recovery_routes')) {
$router->aliasMiddleware('backpack.throttle.password.recovery', ThrottlePasswordRecovery::class);
}

// register the verified middleware in the backpack middleware group
// but only if functionality is enabled by developer in config
if (config('backpack.base.setup_email_verification_routes', false)) {
// developers that updated to 10.x but didn't add the aliases into their Kernel.php
// would get an error when trying to use the verified/signed middlewares
// we ensure they'r properly aliased if not previously set by developer
$routeMiddlewares = $router->getMiddleware();

if (! in_array('verified', array_keys($routeMiddlewares))) {
$router->aliasMiddleware('verified', \Illuminate\Auth\Middleware\EnsureEmailIsVerified::class);
}

if (! in_array('signed', array_keys($routeMiddlewares))) {
$router->aliasMiddleware('signed', \Illuminate\Routing\Middleware\ValidateSignature::class);
}
pxpm marked this conversation as resolved.
Show resolved Hide resolved

$router->pushMiddlewareToGroup($middleware_key, EnsureEmailVerification::class);
}
}

public function publishFiles()
Expand Down
10 changes: 7 additions & 3 deletions src/app/Http/Controllers/Auth/RegisterController.php
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
use Illuminate\Auth\Events\Registered;
use Illuminate\Http\Request;
use Illuminate\Routing\Controller;
use Validator;
use Illuminate\Support\Facades\Validator;

class RegisterController extends Controller
{
Expand Down Expand Up @@ -64,7 +64,7 @@ protected function validator(array $data)
* Create a new user instance after a valid registration.
*
* @param array $data
* @return User
* @return \Illuminate\Contracts\Auth\Authenticatable
*/
protected function create(array $data)
{
Expand Down Expand Up @@ -99,7 +99,7 @@ public function showRegistrationForm()
* Handle a registration request for the application.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
* @return \Illuminate\Http\Response|\Illuminate\Contracts\View\View
*/
public function register(Request $request)
{
Expand All @@ -115,6 +115,10 @@ public function register(Request $request)
event(new Registered($user));
$this->guard()->login($user);

if (config('backpack.base.setup_email_verification_routes')) {
return view(backpack_view('auth.verify_email'));
}

return redirect($this->redirectPath());
}

Expand Down
60 changes: 60 additions & 0 deletions src/app/Http/Controllers/Auth/VerifyEmailController.php
Original file line number Diff line number Diff line change
@@ -0,0 +1,60 @@
<?php

namespace Backpack\CRUD\app\Http\Controllers\Auth;

use Backpack\CRUD\app\Http\Requests\EmailVerificationRequest;
use Illuminate\Http\Request;
use Illuminate\Routing\Controller;
use Prologue\Alerts\Facades\Alert;

class VerifyEmailController extends Controller
{
public null|string $redirectTo = null;

/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
$this->middleware(backpack_middleware());
$this->middleware('signed')->only('verifyEmail');
tabacitu marked this conversation as resolved.
Show resolved Hide resolved
$this->middleware('throttle:'.config('backpack.base.email_verification_throttle_access'))->only('resendVerificationEmail');

if (! backpack_users_have_email()) {
abort(500, trans('backpack::base.no_email_column'));
}
// where to redirect after the email is verified
$this->redirectTo = $this->redirectTo !== null ? $this->redirectTo : backpack_url('dashboard');
pxpm marked this conversation as resolved.
Show resolved Hide resolved
}

public function emailVerificationRequired(): \Illuminate\Contracts\View\View
{
return view(backpack_view('auth.verify-email'));
}

/**
* Verify the user's email address.
*
* @return \Illuminate\Http\RedirectResponse|\Illuminate\Routing\Redirector
*/
public function verifyEmail(EmailVerificationRequest $request)
{
$request->fulfill();

return redirect($this->redirectTo);
}

/**
* Resend the email verification notification.
*/
public function resendVerificationEmail(Request $request): \Illuminate\Http\RedirectResponse
{
$request->user(backpack_guard_name())->sendEmailVerificationNotification();

Alert::success('Email verification link sent successfully.')->flash();

return back()->with('status', 'verification-link-sent');
}
}
pxpm marked this conversation as resolved.
Show resolved Hide resolved
32 changes: 32 additions & 0 deletions src/app/Http/Middleware/EnsureEmailVerification.php
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
<?php

namespace Backpack\CRUD\app\Http\Middleware;

use Closure;

class EnsureEmailVerification
{
/**
* Handle an incoming request.
*
* @param \Illuminate\Http\Request $request
* @param \Closure $next
* @return mixed
*/
public function handle($request, Closure $next)
{
// if the route name is not one of the verification process, run the verification middleware
if (! in_array($request->route()->getName(), ['verification.notice', 'verification.verify', 'verification.send'])) {
// the Laravel middleware needs the user resolver to be set with the backpack guard
$userResolver = $request->getUserResolver();
$request->setUserResolver(function () use ($userResolver) {
return $userResolver(backpack_guard_name());
});
$verifiedMiddleware = new (app('router')->getMiddleware()['verified'])();
tabacitu marked this conversation as resolved.
Show resolved Hide resolved

return $verifiedMiddleware->handle($request, $next);
}

return $next($request);
}
}
13 changes: 13 additions & 0 deletions src/app/Http/Requests/EmailVerificationRequest.php
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
<?php

namespace Backpack\CRUD\app\Http\Requests;

use Illuminate\Foundation\Auth\EmailVerificationRequest as OriginalEmailVerificationRequest;

class EmailVerificationRequest extends OriginalEmailVerificationRequest
{
public function user($guard = null)
{
return parent::user(backpack_guard_name());
}
}
12 changes: 12 additions & 0 deletions src/config/backpack/base.php
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,18 @@
// (you then need to manually define the routes in your web.php)
'setup_password_recovery_routes' => true,

// Set this to true if you would like to enable email verification for your Authenticable model.
// Make sure your Authenticable model implements the MustVerifyEmail contract and your
// database table contains the email_verified_at column.
// https://laravel.com/docs/10.x/verification#model-preparation
// https://laravel.com/docs/10.x/verification#database-preparation
pxpm marked this conversation as resolved.
Show resolved Hide resolved
'setup_email_verification_routes' => false,

// How many times in any given time period should the user be allowed to
// request a new verification email?
// Defaults to 1,10 - 1 time in 10 minutes.
'email_verification_throttle_access' => '2,10',

/*
|--------------------------------------------------------------------------
| Security
Expand Down
6 changes: 6 additions & 0 deletions src/resources/lang/en/base.php
Original file line number Diff line number Diff line change
Expand Up @@ -85,4 +85,10 @@
'throttled' => 'You have already requested a password reset recently. Please check your email. If you do not receive our email, please retry later.',
'throttled_request' => 'You have exceeded the limit of tries. Please wait a few minutes and try again.',

'verify_email' => [
'verification_link_sent' => 'A new verification link has been sent to the email address you provided during registration.',
pxpm marked this conversation as resolved.
Show resolved Hide resolved
'email_verification_required' => 'Thanks for signing up! Before getting started, could you verify your email address by clicking on the link we just emailed to you? If you didn\'t receive the email, we will gladly send you another.',
pxpm marked this conversation as resolved.
Show resolved Hide resolved
'resend_verification_link' => 'Resend verification link',
'email_subject' => 'Verify your email address',
],
];
6 changes: 6 additions & 0 deletions src/routes/backpack/base.php
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,12 @@ function () {
Route::get('password/reset/{token}', 'Auth\ResetPasswordController@showResetForm')->name('backpack.auth.password.reset.token');
Route::post('password/email', 'Auth\ForgotPasswordController@sendResetLinkEmail')->name('backpack.auth.password.email')->middleware('backpack.throttle.password.recovery:'.config('backpack.base.password_recovery_throttle_access'));
}

if (config('backpack.base.setup_email_verification_routes', false)) {
Route::get('email/verify', 'Auth\VerifyEmailController@emailVerificationRequired')->name('verification.notice');
Route::get('email/verify/{id}/{hash}', 'Auth\VerifyEmailController@verifyEmail')->name('verification.verify');
Route::post('email/verification-notification', 'Auth\VerifyEmailController@resendVerificationEmail')->name('verification.send');
}
}

// if not otherwise configured, setup the dashboard routes
Expand Down