mirror of
https://github.com/elyby/accounts.git
synced 2024-12-31 01:20:40 +05:30
149 lines
4.5 KiB
PHP
149 lines
4.5 KiB
PHP
<?php
|
|
namespace api\models\authentication;
|
|
|
|
use api\models\base\ApiForm;
|
|
use api\validators\TotpValidator;
|
|
use common\helpers\Error as E;
|
|
use api\traits\AccountFinder;
|
|
use common\components\UserFriendlyRandomKey;
|
|
use common\models\Account;
|
|
use common\models\confirmations\ForgotPassword;
|
|
use common\models\EmailActivation;
|
|
use Yii;
|
|
use yii\base\ErrorException;
|
|
use yii\base\InvalidConfigException;
|
|
|
|
class ForgotPasswordForm extends ApiForm {
|
|
use AccountFinder;
|
|
|
|
public $login;
|
|
public $token;
|
|
|
|
public function rules() {
|
|
return [
|
|
['login', 'required', 'message' => E::LOGIN_REQUIRED],
|
|
['login', 'validateLogin'],
|
|
['token', 'required', 'when' => function(self $model) {
|
|
return !$this->hasErrors() && $model->getAccount()->is_otp_enabled;
|
|
}, 'message' => E::OTP_TOKEN_REQUIRED],
|
|
['token', 'validateTotpToken'],
|
|
['login', 'validateActivity'],
|
|
['login', 'validateFrequency'],
|
|
];
|
|
}
|
|
|
|
public function validateLogin($attribute) {
|
|
if (!$this->hasErrors()) {
|
|
if ($this->getAccount() === null) {
|
|
$this->addError($attribute, E::LOGIN_NOT_EXIST);
|
|
}
|
|
}
|
|
}
|
|
|
|
public function validateTotpToken($attribute) {
|
|
if ($this->hasErrors()) {
|
|
return;
|
|
}
|
|
|
|
$account = $this->getAccount();
|
|
if (!$account->is_otp_enabled) {
|
|
return;
|
|
}
|
|
|
|
$validator = new TotpValidator(['account' => $account]);
|
|
$validator->validateAttribute($this, $attribute);
|
|
}
|
|
|
|
public function validateActivity($attribute) {
|
|
if (!$this->hasErrors()) {
|
|
$account = $this->getAccount();
|
|
if ($account->status !== Account::STATUS_ACTIVE) {
|
|
$this->addError($attribute, E::ACCOUNT_NOT_ACTIVATED);
|
|
}
|
|
}
|
|
}
|
|
|
|
public function validateFrequency($attribute) {
|
|
if (!$this->hasErrors()) {
|
|
$emailConfirmation = $this->getEmailActivation();
|
|
if ($emailConfirmation !== null && !$emailConfirmation->canRepeat()) {
|
|
$this->addError($attribute, E::RECENTLY_SENT_MESSAGE);
|
|
}
|
|
}
|
|
}
|
|
|
|
public function forgotPassword() {
|
|
if (!$this->validate()) {
|
|
return false;
|
|
}
|
|
|
|
$account = $this->getAccount();
|
|
$emailActivation = $this->getEmailActivation();
|
|
if ($emailActivation === null) {
|
|
$emailActivation = new ForgotPassword();
|
|
$emailActivation->account_id = $account->id;
|
|
} else {
|
|
$emailActivation->created_at = time();
|
|
}
|
|
|
|
$emailActivation->key = UserFriendlyRandomKey::make();
|
|
if (!$emailActivation->save()) {
|
|
throw new ErrorException('Cannot create email activation for forgot password form');
|
|
}
|
|
|
|
$this->sendMail($emailActivation);
|
|
|
|
return true;
|
|
}
|
|
|
|
public function sendMail(EmailActivation $emailActivation) {
|
|
/** @var \yii\swiftmailer\Mailer $mailer */
|
|
$mailer = Yii::$app->mailer;
|
|
$fromEmail = Yii::$app->params['fromEmail'];
|
|
if (!$fromEmail) {
|
|
throw new InvalidConfigException('Please specify fromEmail app in app params');
|
|
}
|
|
|
|
$account = $emailActivation->account;
|
|
$htmlBody = Yii::$app->emailRenderer->getTemplate('forgotPassword')
|
|
->setLocale($account->lang)
|
|
->setParams([
|
|
'username' => $account->username,
|
|
'code' => $emailActivation->key,
|
|
'link' => Yii::$app->request->getHostInfo() . '/recover-password/' . $emailActivation->key,
|
|
])
|
|
->render();
|
|
|
|
/** @var \yii\swiftmailer\Message $message */
|
|
$message = $mailer->compose()
|
|
->setHtmlBody($htmlBody)
|
|
->setTo([$account->email => $account->username])
|
|
->setFrom([$fromEmail => 'Ely.by Accounts'])
|
|
->setSubject('Ely.by Account forgot password');
|
|
|
|
if (!$message->send()) {
|
|
throw new ErrorException('Unable send email with activation code.');
|
|
}
|
|
}
|
|
|
|
public function getLogin() {
|
|
return $this->login;
|
|
}
|
|
|
|
/**
|
|
* @return EmailActivation|null
|
|
* @throws ErrorException
|
|
*/
|
|
public function getEmailActivation() {
|
|
$account = $this->getAccount();
|
|
if ($account === null) {
|
|
throw new ErrorException('Account not founded');
|
|
}
|
|
|
|
return $account->getEmailActivations()
|
|
->andWhere(['type' => EmailActivation::TYPE_FORGOT_PASSWORD_KEY])
|
|
->one();
|
|
}
|
|
|
|
}
|