accounts/api/models/authentication/ForgotPasswordForm.php
2019-12-13 22:27:13 +03:00

102 lines
3.0 KiB
PHP

<?php
declare(strict_types=1);
namespace api\models\authentication;
use api\aop\annotations\CollectModelMetrics;
use api\components\ReCaptcha\Validator as ReCaptchaValidator;
use api\models\base\ApiForm;
use common\components\UserFriendlyRandomKey;
use common\helpers\Error as E;
use common\models\Account;
use common\models\confirmations\ForgotPassword;
use common\models\EmailActivation;
use common\tasks\SendPasswordRecoveryEmail;
use Yii;
use yii\base\ErrorException;
class ForgotPasswordForm extends ApiForm {
public $captcha;
public $login;
public function rules(): array {
return [
['captcha', ReCaptchaValidator::class],
['login', 'required', 'message' => E::LOGIN_REQUIRED],
['login', 'validateLogin'],
['login', 'validateActivity'],
['login', 'validateFrequency'],
];
}
public function validateLogin(string $attribute): void {
if (!$this->hasErrors()) {
if ($this->getAccount() === null) {
$this->addError($attribute, E::LOGIN_NOT_EXIST);
}
}
}
public function validateActivity(string $attribute): void {
if (!$this->hasErrors()) {
$account = $this->getAccount();
if ($account->status !== Account::STATUS_ACTIVE) {
$this->addError($attribute, E::ACCOUNT_NOT_ACTIVATED);
}
}
}
public function validateFrequency(string $attribute): void {
if (!$this->hasErrors()) {
$emailConfirmation = $this->getEmailActivation();
if ($emailConfirmation !== null && !$emailConfirmation->canRepeat()) {
$this->addError($attribute, E::RECENTLY_SENT_MESSAGE);
}
}
}
public function getAccount(): ?Account {
return Account::find()->andWhereLogin($this->login)->one();
}
/**
* @CollectModelMetrics(prefix="authentication.forgotPassword")
* @return bool
*/
public function forgotPassword(): bool {
if (!$this->validate()) {
return false;
}
$account = $this->getAccount();
$emailActivation = $this->getEmailActivation();
if ($emailActivation === null) {
$emailActivation = new ForgotPassword();
$emailActivation->account_id = $account->id;
} else {
$emailActivation->created_at = time();
}
$emailActivation->key = UserFriendlyRandomKey::make();
if (!$emailActivation->save()) {
throw new ErrorException('Cannot create email activation for forgot password form');
}
Yii::$app->queue->push(SendPasswordRecoveryEmail::createFromConfirmation($emailActivation));
return true;
}
public function getEmailActivation(): ?EmailActivation {
$account = $this->getAccount();
if ($account === null) {
return null;
}
return $account->getEmailActivations()->withType(EmailActivation::TYPE_FORGOT_PASSWORD_KEY)->one();
}
}