You've already forked Atomcms-edit
root
05fc7b04bc
Added proper return types (View, RedirectResponse, JsonResponse, Collection) to 40+ controller methods across 16 controllers. Also added missing imports for Illuminate response types and tightened parameter types (e.g. InstallationController::showStep now uses int instead of mixed).
81 lines
2.6 KiB
PHP
Executable File
81 lines
2.6 KiB
PHP
Executable File
<?php
|
|
|
|
namespace App\Http\Controllers\User;
|
|
|
|
use App\Http\Controllers\Controller;
|
|
use App\Models\PasswordResetToken;
|
|
use App\Models\User;
|
|
use Carbon\Carbon;
|
|
use Illuminate\Http\RedirectResponse;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Support\Facades\Mail;
|
|
use Illuminate\Support\Str;
|
|
use Illuminate\View\View;
|
|
|
|
class ForgotPasswordController extends Controller
|
|
{
|
|
public function __invoke(): View
|
|
{
|
|
return view('auth.passwords.forget');
|
|
}
|
|
|
|
public function submitForgetPassword(Request $request): RedirectResponse
|
|
{
|
|
$request->validate([
|
|
'mail' => 'required|email',
|
|
]);
|
|
|
|
// Do not tell the user that this email does not exist to prevent possible attacks
|
|
if (User::where('mail', $request->mail)->exists()) {
|
|
$token = Str::uuid();
|
|
PasswordResetToken::create([
|
|
'email' => $request->mail,
|
|
'token' => $token,
|
|
]);
|
|
|
|
Mail::send('email.forgetPassword', ['token' => $token], function ($message) use ($request) {
|
|
$message->to($request->mail);
|
|
$message->subject('Reset Password');
|
|
});
|
|
}
|
|
|
|
return back()->with('success', __('We have e-mailed your password reset link!'));
|
|
}
|
|
|
|
public function showResetPassword(Request $request, string $token): View|RedirectResponse
|
|
{
|
|
$prt = PasswordResetToken::select(['token', 'created_at'])->where('token', $token)->first();
|
|
if ($prt === null) {
|
|
return to_route('forgot.password.get')->withErrors('message', __('This token has expired!'));
|
|
}
|
|
$tokenExpiration = Carbon::now()->subMinutes(config('habbo.password_reset_token_time'));
|
|
if ($prt->created_at->lt($tokenExpiration)) {
|
|
$prt->delete();
|
|
|
|
return to_route('forgot.password.get')->withErrors('message', __('This token has expired!'));
|
|
}
|
|
|
|
return view('auth.passwords.reset', [
|
|
'token' => $token,
|
|
]);
|
|
}
|
|
|
|
public function submitResetPassword(Request $request, string $token): RedirectResponse
|
|
{
|
|
$request->validate([
|
|
'password' => 'required|min:8|confirmed',
|
|
'password_confirmation' => 'required',
|
|
]);
|
|
|
|
$prt = PasswordResetToken::select(['email', 'token'])->where('token', $token)->first();
|
|
if ($prt === null) {
|
|
return to_route('forgot.password.get')->withErrors('message', __('This token has expired!'));
|
|
}
|
|
|
|
$prt->user->changePassword($request->password);
|
|
$prt->delete();
|
|
|
|
return to_route('login')->with('success', __('Your password has been successfully reset!'));
|
|
}
|
|
}
|