Auth: Changed email confirmations to use login attempt user

Negates the need for a public confirmation resend form since we can instead just send direct to the last session login attempter.
2025-10-13 11:47:56 +03:00 · 2024-05-20 17:23:15 +01:00
parent 69af9e0dbd
commit d133f904d3
7 changed files with 83 additions and 29 deletions
--- a/app/Access/Controllers/ConfirmEmailController.php
+++ b/app/Access/Controllers/ConfirmEmailController.php
@@ -32,13 +32,17 @@ class ConfirmEmailController extends Controller

    /**
     * Shows a notice that a user's email address has not been confirmed,
-     * Also has the option to re-send the confirmation email.
+     * along with the option to re-send the confirmation email.
     */
    public function showAwaiting()
    {
        $user = $this->loginService->getLastLoginAttemptUser();
+        if ($user === null) {
+            $this->showErrorNotification(trans('errors.login_user_not_found'));
+            return redirect('/login');
+        }

-        return view('auth.user-unconfirmed', ['user' => $user]);
+        return view('auth.register-confirm-awaiting');
    }

    /**
@@ -90,19 +94,24 @@ class ConfirmEmailController extends Controller
    /**
     * Resend the confirmation email.
     */
-    public function resend(Request $request)
+    public function resend()
    {
-        $this->validate($request, [
-            'email' => ['required', 'email', 'exists:users,email'],
-        ]);
-        $user = $this->userRepo->getByEmail($request->get('email'));
+        $user = $this->loginService->getLastLoginAttemptUser();
+        if ($user === null) {
+            $this->showErrorNotification(trans('errors.login_user_not_found'));
+            return redirect('/login');
+        }

        try {
            $this->emailConfirmationService->sendConfirmation($user);
+        } catch (ConfirmationEmailException $e) {
+            $this->showErrorNotification($e->getMessage());
+
+            return redirect('/login');
        } catch (Exception $e) {
            $this->showErrorNotification(trans('auth.email_confirm_send_error'));

-            return redirect('/register/confirm');
+            return redirect('/register/awaiting');
        }

        $this->showSuccessNotification(trans('auth.email_confirm_resent'));
--- a/app/Access/Controllers/HandlesPartialLogins.php
+++ b/app/Access/Controllers/HandlesPartialLogins.php
@@ -17,7 +17,7 @@ trait HandlesPartialLogins
        $user = auth()->user() ?? $loginService->getLastLoginAttemptUser();

        if (!$user) {
-            throw new NotFoundException('A user for this action could not be found');
+            throw new NotFoundException(trans('errors.login_user_not_found'));
        }

        return $user;
--- a/app/Access/EmailConfirmationService.php
+++ b/app/Access/EmailConfirmationService.php
@@ -17,7 +17,7 @@ class EmailConfirmationService extends UserTokenService
     *
     * @throws ConfirmationEmailException
     */
-    public function sendConfirmation(User $user)
+    public function sendConfirmation(User $user): void
    {
        if ($user->email_confirmed) {
            throw new ConfirmationEmailException(trans('errors.email_already_confirmed'), '/login');
--- a/app/Exceptions/StoppedAuthenticationException.php
+++ b/app/Exceptions/StoppedAuthenticationException.php
@@ -9,16 +9,10 @@ use Illuminate\Http\Request;

 class StoppedAuthenticationException extends \Exception implements Responsable
 {
-    protected $user;
-    protected $loginService;
-
-    /**
-     * StoppedAuthenticationException constructor.
-     */
-    public function __construct(User $user, LoginService $loginService)
-    {
-        $this->user = $user;
-        $this->loginService = $loginService;
+    public function __construct(
+        protected User $user,
+        protected LoginService $loginService
+    ) {
        parent::__construct();
    }