2016-09-17 13:22:04 -04:00
|
|
|
<?php
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
namespace BookStack\Http\Controllers\Auth;
|
|
|
|
|
2019-08-04 09:26:39 -04:00
|
|
|
use BookStack\Auth\Access\EmailConfirmationService;
|
|
|
|
use BookStack\Auth\Access\SocialAuthService;
|
2018-09-25 11:58:03 -04:00
|
|
|
use BookStack\Auth\SocialAccount;
|
|
|
|
use BookStack\Auth\User;
|
|
|
|
use BookStack\Auth\UserRepo;
|
2019-08-04 09:26:39 -04:00
|
|
|
use BookStack\Exceptions\SocialDriverNotConfigured;
|
2018-09-21 13:05:06 -04:00
|
|
|
use BookStack\Exceptions\SocialSignInAccountNotUsed;
|
2016-12-04 11:51:39 -05:00
|
|
|
use BookStack\Exceptions\SocialSignInException;
|
2015-09-10 14:31:09 -04:00
|
|
|
use BookStack\Exceptions\UserRegistrationException;
|
2018-09-25 11:58:03 -04:00
|
|
|
use BookStack\Http\Controllers\Controller;
|
2016-09-17 16:33:55 -04:00
|
|
|
use Exception;
|
2018-09-25 11:58:03 -04:00
|
|
|
use Illuminate\Foundation\Auth\RegistersUsers;
|
2019-08-04 09:26:39 -04:00
|
|
|
use Illuminate\Http\RedirectResponse;
|
2016-09-17 13:22:04 -04:00
|
|
|
use Illuminate\Http\Request;
|
|
|
|
use Illuminate\Http\Response;
|
2019-08-04 09:26:39 -04:00
|
|
|
use Illuminate\Routing\Redirector;
|
2019-09-06 17:14:39 -04:00
|
|
|
use Illuminate\Support\Facades\Hash;
|
2019-09-13 18:58:40 -04:00
|
|
|
use Illuminate\Support\Str;
|
2018-09-21 13:05:06 -04:00
|
|
|
use Laravel\Socialite\Contracts\User as SocialUser;
|
2018-09-25 11:58:03 -04:00
|
|
|
use Validator;
|
2015-07-12 15:01:42 -04:00
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
class RegisterController extends Controller
|
2015-07-12 15:01:42 -04:00
|
|
|
{
|
|
|
|
/*
|
|
|
|
|--------------------------------------------------------------------------
|
2016-09-17 13:22:04 -04:00
|
|
|
| Register Controller
|
2015-07-12 15:01:42 -04:00
|
|
|
|--------------------------------------------------------------------------
|
|
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
| This controller handles the registration of new users as well as their
|
|
|
|
| validation and creation. By default this controller uses a trait to
|
|
|
|
| provide this functionality without requiring any additional code.
|
2015-07-12 15:01:42 -04:00
|
|
|
|
|
|
|
|
*/
|
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
use RegistersUsers;
|
2016-01-11 17:41:05 -05:00
|
|
|
|
2015-09-04 12:50:52 -04:00
|
|
|
protected $socialAuthService;
|
2015-09-05 15:25:57 -04:00
|
|
|
protected $emailConfirmationService;
|
|
|
|
protected $userRepo;
|
2015-08-05 15:59:39 -04:00
|
|
|
|
2015-07-12 15:01:42 -04:00
|
|
|
/**
|
2016-09-17 13:22:04 -04:00
|
|
|
* Where to redirect users after login / registration.
|
|
|
|
*
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
protected $redirectTo = '/';
|
|
|
|
protected $redirectPath = '/';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Create a new controller instance.
|
|
|
|
*
|
2019-08-04 09:26:39 -04:00
|
|
|
* @param SocialAuthService $socialAuthService
|
2019-08-18 05:47:59 -04:00
|
|
|
* @param EmailConfirmationService $emailConfirmationService
|
2019-08-04 09:26:39 -04:00
|
|
|
* @param UserRepo $userRepo
|
2015-07-12 15:01:42 -04:00
|
|
|
*/
|
2019-08-04 09:26:39 -04:00
|
|
|
public function __construct(SocialAuthService $socialAuthService, EmailConfirmationService $emailConfirmationService, UserRepo $userRepo)
|
2015-07-12 15:01:42 -04:00
|
|
|
{
|
2017-11-11 13:09:48 -05:00
|
|
|
$this->middleware('guest')->only(['getRegister', 'postRegister', 'socialRegister']);
|
2015-09-04 12:50:52 -04:00
|
|
|
$this->socialAuthService = $socialAuthService;
|
2015-09-05 15:25:57 -04:00
|
|
|
$this->emailConfirmationService = $emailConfirmationService;
|
|
|
|
$this->userRepo = $userRepo;
|
2019-08-04 09:26:39 -04:00
|
|
|
$this->redirectTo = url('/');
|
|
|
|
$this->redirectPath = url('/');
|
2015-09-05 15:25:57 -04:00
|
|
|
parent::__construct();
|
2015-07-12 15:01:42 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get a validator for an incoming registration request.
|
2016-09-17 13:22:04 -04:00
|
|
|
*
|
2015-09-04 12:16:58 -04:00
|
|
|
* @param array $data
|
2015-07-12 15:01:42 -04:00
|
|
|
* @return \Illuminate\Contracts\Validation\Validator
|
|
|
|
*/
|
|
|
|
protected function validator(array $data)
|
|
|
|
{
|
|
|
|
return Validator::make($data, [
|
2019-04-16 07:18:51 -04:00
|
|
|
'name' => 'required|min:2|max:255',
|
2016-03-06 07:55:08 -05:00
|
|
|
'email' => 'required|email|max:255|unique:users',
|
2019-09-13 18:58:40 -04:00
|
|
|
'password' => 'required|min:8',
|
2015-07-12 15:01:42 -04:00
|
|
|
]);
|
|
|
|
}
|
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
/**
|
|
|
|
* Check whether or not registrations are allowed in the app settings.
|
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
2015-09-05 15:25:57 -04:00
|
|
|
protected function checkRegistrationAllowed()
|
|
|
|
{
|
2016-03-06 07:55:08 -05:00
|
|
|
if (!setting('registration-enabled')) {
|
2016-12-04 11:51:39 -05:00
|
|
|
throw new UserRegistrationException(trans('auth.registrations_disabled'), '/login');
|
2015-09-05 15:25:57 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-09-05 12:42:05 -04:00
|
|
|
/**
|
|
|
|
* Show the application registration form.
|
2016-09-17 13:22:04 -04:00
|
|
|
* @return Response
|
2018-01-28 12:15:30 -05:00
|
|
|
* @throws UserRegistrationException
|
2015-09-05 12:42:05 -04:00
|
|
|
*/
|
|
|
|
public function getRegister()
|
|
|
|
{
|
2015-09-05 15:25:57 -04:00
|
|
|
$this->checkRegistrationAllowed();
|
2015-09-05 12:42:05 -04:00
|
|
|
$socialDrivers = $this->socialAuthService->getActiveDrivers();
|
|
|
|
return view('auth.register', ['socialDrivers' => $socialDrivers]);
|
|
|
|
}
|
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
/**
|
|
|
|
* Handle a registration request for the application.
|
2019-08-04 09:26:39 -04:00
|
|
|
* @param Request|Request $request
|
|
|
|
* @return RedirectResponse|Redirector
|
2015-09-05 15:25:57 -04:00
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
|
|
|
public function postRegister(Request $request)
|
|
|
|
{
|
|
|
|
$this->checkRegistrationAllowed();
|
2018-01-28 12:15:30 -05:00
|
|
|
$this->validator($request->all())->validate();
|
2015-09-05 15:25:57 -04:00
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
$userData = $request->all();
|
|
|
|
return $this->registerUser($userData);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2016-09-17 13:22:04 -04:00
|
|
|
* Create a new user instance after a valid registration.
|
|
|
|
* @param array $data
|
2019-08-04 09:26:39 -04:00
|
|
|
* @return User
|
2015-09-06 07:14:32 -04:00
|
|
|
*/
|
2016-09-17 13:22:04 -04:00
|
|
|
protected function create(array $data)
|
2015-09-06 07:14:32 -04:00
|
|
|
{
|
2016-09-17 13:22:04 -04:00
|
|
|
return User::create([
|
|
|
|
'name' => $data['name'],
|
|
|
|
'email' => $data['email'],
|
2019-09-06 17:14:39 -04:00
|
|
|
'password' => Hash::make($data['password']),
|
2016-09-17 13:22:04 -04:00
|
|
|
]);
|
2015-09-06 07:14:32 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* The registrations flow for all users.
|
2016-03-06 07:55:08 -05:00
|
|
|
* @param array $userData
|
2015-09-06 07:14:32 -04:00
|
|
|
* @param bool|false|SocialAccount $socialAccount
|
2018-09-21 13:05:06 -04:00
|
|
|
* @param bool $emailVerified
|
2019-08-04 09:26:39 -04:00
|
|
|
* @return RedirectResponse|Redirector
|
2015-09-06 07:14:32 -04:00
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
2018-09-21 13:05:06 -04:00
|
|
|
protected function registerUser(array $userData, $socialAccount = false, $emailVerified = false)
|
2015-09-06 07:14:32 -04:00
|
|
|
{
|
2018-09-21 13:05:06 -04:00
|
|
|
$registrationRestrict = setting('registration-restrict');
|
|
|
|
|
|
|
|
if ($registrationRestrict) {
|
|
|
|
$restrictedEmailDomains = explode(',', str_replace(' ', '', $registrationRestrict));
|
2019-05-25 11:14:57 -04:00
|
|
|
$userEmailDomain = $domain = mb_substr(mb_strrchr($userData['email'], "@"), 1);
|
2015-09-06 07:14:32 -04:00
|
|
|
if (!in_array($userEmailDomain, $restrictedEmailDomains)) {
|
2016-12-04 11:51:39 -05:00
|
|
|
throw new UserRegistrationException(trans('auth.registration_email_domain_invalid'), '/register');
|
2015-09-05 15:25:57 -04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-09-21 13:05:06 -04:00
|
|
|
$newUser = $this->userRepo->registerNew($userData, $emailVerified);
|
2015-09-06 07:14:32 -04:00
|
|
|
if ($socialAccount) {
|
|
|
|
$newUser->socialAccounts()->save($socialAccount);
|
|
|
|
}
|
2015-09-05 15:25:57 -04:00
|
|
|
|
2019-08-18 05:47:59 -04:00
|
|
|
if ($this->emailConfirmationService->confirmationRequired() && !$emailVerified) {
|
2015-09-05 15:25:57 -04:00
|
|
|
$newUser->save();
|
2016-09-17 16:33:55 -04:00
|
|
|
|
|
|
|
try {
|
|
|
|
$this->emailConfirmationService->sendConfirmation($newUser);
|
|
|
|
} catch (Exception $e) {
|
|
|
|
session()->flash('error', trans('auth.email_confirm_send_error'));
|
|
|
|
}
|
|
|
|
|
2015-09-05 15:25:57 -04:00
|
|
|
return redirect('/register/confirm');
|
|
|
|
}
|
|
|
|
|
|
|
|
auth()->login($newUser);
|
2016-12-04 11:51:39 -05:00
|
|
|
session()->flash('success', trans('auth.register_success'));
|
2015-09-05 15:25:57 -04:00
|
|
|
return redirect($this->redirectPath());
|
|
|
|
}
|
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
/**
|
2016-01-09 14:23:35 -05:00
|
|
|
* Redirect to the social site for authentication intended to register.
|
2015-09-06 07:14:32 -04:00
|
|
|
* @param $socialDriver
|
|
|
|
* @return mixed
|
2018-01-28 12:15:30 -05:00
|
|
|
* @throws UserRegistrationException
|
2019-08-04 09:26:39 -04:00
|
|
|
* @throws SocialDriverNotConfigured
|
2015-09-06 07:14:32 -04:00
|
|
|
*/
|
|
|
|
public function socialRegister($socialDriver)
|
|
|
|
{
|
|
|
|
$this->checkRegistrationAllowed();
|
|
|
|
session()->put('social-callback', 'register');
|
|
|
|
return $this->socialAuthService->startRegister($socialDriver);
|
|
|
|
}
|
|
|
|
|
2015-09-04 12:16:58 -04:00
|
|
|
/**
|
|
|
|
* The callback for social login services.
|
|
|
|
* @param $socialDriver
|
2017-12-09 08:32:45 -05:00
|
|
|
* @param Request $request
|
2019-08-04 09:26:39 -04:00
|
|
|
* @return RedirectResponse|Redirector
|
2015-09-04 15:40:36 -04:00
|
|
|
* @throws SocialSignInException
|
2017-12-09 08:32:45 -05:00
|
|
|
* @throws UserRegistrationException
|
2019-08-04 09:26:39 -04:00
|
|
|
* @throws SocialDriverNotConfigured
|
2015-09-04 12:16:58 -04:00
|
|
|
*/
|
2017-12-09 08:32:45 -05:00
|
|
|
public function socialCallback($socialDriver, Request $request)
|
2015-09-04 12:16:58 -04:00
|
|
|
{
|
2017-08-17 14:44:35 -04:00
|
|
|
if (!session()->has('social-callback')) {
|
2016-12-04 11:51:39 -05:00
|
|
|
throw new SocialSignInException(trans('errors.social_no_action_defined'), '/login');
|
2015-09-06 07:14:32 -04:00
|
|
|
}
|
2017-08-17 14:44:35 -04:00
|
|
|
|
2017-12-09 08:32:45 -05:00
|
|
|
// Check request for error information
|
|
|
|
if ($request->has('error') && $request->has('error_description')) {
|
|
|
|
throw new SocialSignInException(trans('errors.social_login_bad_response', [
|
|
|
|
'socialAccount' => $socialDriver,
|
|
|
|
'error' => $request->get('error_description'),
|
|
|
|
]), '/login');
|
|
|
|
}
|
|
|
|
|
2017-08-17 14:44:35 -04:00
|
|
|
$action = session()->pull('social-callback');
|
2018-09-21 13:05:06 -04:00
|
|
|
|
|
|
|
// Attempt login or fall-back to register if allowed.
|
|
|
|
$socialUser = $this->socialAuthService->getSocialUser($socialDriver);
|
2018-01-28 11:58:52 -05:00
|
|
|
if ($action == 'login') {
|
2018-09-21 13:05:06 -04:00
|
|
|
try {
|
|
|
|
return $this->socialAuthService->handleLoginCallback($socialDriver, $socialUser);
|
|
|
|
} catch (SocialSignInAccountNotUsed $exception) {
|
|
|
|
if ($this->socialAuthService->driverAutoRegisterEnabled($socialDriver)) {
|
|
|
|
return $this->socialRegisterCallback($socialDriver, $socialUser);
|
|
|
|
}
|
|
|
|
throw $exception;
|
|
|
|
}
|
2018-01-28 11:58:52 -05:00
|
|
|
}
|
2018-09-21 13:05:06 -04:00
|
|
|
|
2018-01-28 11:58:52 -05:00
|
|
|
if ($action == 'register') {
|
2018-09-21 13:05:06 -04:00
|
|
|
return $this->socialRegisterCallback($socialDriver, $socialUser);
|
2018-01-28 11:58:52 -05:00
|
|
|
}
|
2018-09-21 13:05:06 -04:00
|
|
|
|
2015-09-06 07:14:32 -04:00
|
|
|
return redirect()->back();
|
2015-09-04 15:40:36 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Detach a social account from a user.
|
|
|
|
* @param $socialDriver
|
2019-08-04 09:26:39 -04:00
|
|
|
* @return RedirectResponse|Redirector
|
2015-09-04 15:40:36 -04:00
|
|
|
*/
|
|
|
|
public function detachSocialAccount($socialDriver)
|
|
|
|
{
|
|
|
|
return $this->socialAuthService->detachSocialAccount($socialDriver);
|
2015-09-04 12:16:58 -04:00
|
|
|
}
|
|
|
|
|
2016-09-17 13:22:04 -04:00
|
|
|
/**
|
|
|
|
* Register a new user after a registration callback.
|
2018-09-21 13:05:06 -04:00
|
|
|
* @param string $socialDriver
|
|
|
|
* @param SocialUser $socialUser
|
2019-08-04 09:26:39 -04:00
|
|
|
* @return RedirectResponse|Redirector
|
2016-09-17 13:22:04 -04:00
|
|
|
* @throws UserRegistrationException
|
|
|
|
*/
|
2018-09-21 13:05:06 -04:00
|
|
|
protected function socialRegisterCallback(string $socialDriver, SocialUser $socialUser)
|
2016-09-17 13:22:04 -04:00
|
|
|
{
|
2018-09-21 13:05:06 -04:00
|
|
|
$socialUser = $this->socialAuthService->handleRegistrationCallback($socialDriver, $socialUser);
|
2016-09-17 13:22:04 -04:00
|
|
|
$socialAccount = $this->socialAuthService->fillSocialAccount($socialDriver, $socialUser);
|
2018-09-21 13:05:06 -04:00
|
|
|
$emailVerified = $this->socialAuthService->driverAutoConfirmEmailEnabled($socialDriver);
|
2016-09-17 13:22:04 -04:00
|
|
|
|
|
|
|
// Create an array of the user data to create a new user instance
|
|
|
|
$userData = [
|
|
|
|
'name' => $socialUser->getName(),
|
|
|
|
'email' => $socialUser->getEmail(),
|
2019-09-13 18:58:40 -04:00
|
|
|
'password' => Str::random(30)
|
2016-09-17 13:22:04 -04:00
|
|
|
];
|
2018-09-21 13:05:06 -04:00
|
|
|
return $this->registerUser($userData, $socialAccount, $emailVerified);
|
2016-09-17 13:22:04 -04:00
|
|
|
}
|
2018-01-28 11:58:52 -05:00
|
|
|
}
|