BookStack/app/Http/Controllers/Auth/ForgotPasswordController.php

<?php

namespace BookStack\Http\Controllers\Auth;

use BookStack\Actions\ActivityType;
use BookStack\Http\Controllers\Controller;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Password;

class ForgotPasswordController extends Controller
{
    /**
     * Create a new controller instance.
     *
     * @return void
     */
    public function __construct()
    {
        $this->middleware('guest');
        $this->middleware('guard:standard');
    }

    /**
     * Display the form to request a password reset link.
     */
    public function showLinkRequestForm()
    {
        return view('auth.passwords.email');
    }

    /**
     * Send a reset link to the given user.
     *
     * @param \Illuminate\Http\Request $request
     *
     * @return \Illuminate\Http\RedirectResponse
     */
    public function sendResetLinkEmail(Request $request)
    {
        $this->validate($request, [
            'email' => ['required', 'email'],
        ]);

        // We will send the password reset link to this user. Once we have attempted
        // to send the link, we will examine the response then see the message we
        // need to show to the user. Finally, we'll send out a proper response.
        $response = Password::broker()->sendResetLink(
            $request->only('email')
        );

        if ($response === Password::RESET_LINK_SENT) {
            $this->logActivity(ActivityType::AUTH_PASSWORD_RESET, $request->get('email'));
        }

        if (in_array($response, [Password::RESET_LINK_SENT, Password::INVALID_USER, Password::RESET_THROTTLED])) {
            $message = trans('auth.reset_password_sent', ['email' => $request->get('email')]);
            $this->showSuccessNotification($message);

            return back()->with('status', trans($response));
        }

        // If an error was returned by the password broker, we will get this message
        // translated so we can notify a user of the problem. We'll redirect back
        // to where the users came from so they can attempt this process again.
        return back()->withErrors(
            ['email' => trans($response)]
        );
    }
}
Initial commit 2015-07-12 19:01:42 +00:00			`<?php`

Change application namespace to BookStack 2015-09-10 18:31:09 +00:00			`namespace BookStack\Http\Controllers\Auth;`
Initial commit 2015-07-12 19:01:42 +00:00
Implemented remainder of activity types Also fixed audit log to work for non-entity items. 2020-11-20 19:33:11 +00:00			`use BookStack\Actions\ActivityType;`
Change application namespace to BookStack 2015-09-10 18:31:09 +00:00			`use BookStack\Http\Controllers\Controller;`
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00			`use Illuminate\Http\Request;`
Updated password reset process not to indicate if email exists - Intended to prevent enumeration to check if a user exists. - Updated messages on both the reqest-reset and set-password elements. - Also updated notification auto-hide to be dynamic based upon the amount of words within the notification. - Added tests to cover. For #2016 2020-04-10 12:38:08 +00:00			`use Illuminate\Support\Facades\Password;`
Initial commit 2015-07-12 19:01:42 +00:00
Laravel 5.3 upgrade (#189) * Started move to laravel 5.3 * Started updating login & registration flows for laravel 5.3 update * Updated app emails to notification system * Fixed registations bugs and removed email confirmation model * Fixed large portion of laravel post-upgrade issues * Fixed and tested LDAP process 2016-09-17 17:22:04 +00:00			`class ForgotPasswordController extends Controller`
Initial commit 2015-07-12 19:01:42 +00:00			`{`
			`/**`
Laravel 5.3 upgrade (#189) * Started move to laravel 5.3 * Started updating login & registration flows for laravel 5.3 update * Updated app emails to notification system * Fixed registations bugs and removed email confirmation model * Fixed large portion of laravel post-upgrade issues * Fixed and tested LDAP process 2016-09-17 17:22:04 +00:00			`* Create a new controller instance.`
			`*`
			`* @return void`
Initial commit 2015-07-12 19:01:42 +00:00			`*/`
			`public function __construct()`
			`{`
			`$this->middleware('guest');`
Simplified guard names and rolled out guard route checks - Included tests to cover for LDAP and SAML - Updated wording for external auth id option. - Updated 'assertPermissionError' test case to be usable in BrowserKitTests 2020-02-02 13:10:21 +00:00			`$this->middleware('guard:standard');`
Initial commit 2015-07-12 19:01:42 +00:00			`}`
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00
Removed usage of laravel/ui dependency Brings app auth controller handling aligned within the app, rather than having many overrides of the framwork packages causing confusion and messiness over time. 2022-09-22 15:54:27 +00:00			`/**`
			`* Display the form to request a password reset link.`
			`*/`
			`public function showLinkRequestForm()`
			`{`
			`return view('auth.passwords.email');`
			`}`

Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00			`/**`
			`* Send a reset link to the given user.`
			`*`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00			`* @param \Illuminate\Http\Request $request`
			`*`
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00			`* @return \Illuminate\Http\RedirectResponse`
			`*/`
			`public function sendResetLinkEmail(Request $request)`
			`{`
Standardised laravel validation to be array based Converted from string-only-based validation. Array based validation works nicer once you have validation classess or advanced validation options. 2021-11-05 00:26:55 +00:00			`$this->validate($request, [`
Applied styleci changes 2021-11-05 00:28:41 +00:00			`'email' => ['required', 'email'],`
Standardised laravel validation to be array based Converted from string-only-based validation. Array based validation works nicer once you have validation classess or advanced validation options. 2021-11-05 00:26:55 +00:00			`]);`
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00
			`// We will send the password reset link to this user. Once we have attempted`
			`// to send the link, we will examine the response then see the message we`
			`// need to show to the user. Finally, we'll send out a proper response.`
Removed usage of laravel/ui dependency Brings app auth controller handling aligned within the app, rather than having many overrides of the framwork packages causing confusion and messiness over time. 2022-09-22 15:54:27 +00:00			`$response = Password::broker()->sendResetLink(`
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00			`$request->only('email')`
			`);`

Implemented remainder of activity types Also fixed audit log to work for non-entity items. 2020-11-20 19:33:11 +00:00			`if ($response === Password::RESET_LINK_SENT) {`
			`$this->logActivity(ActivityType::AUTH_PASSWORD_RESET, $request->get('email'));`
			`}`

Added throttling to password reset requests 2021-10-08 22:19:37 +00:00			`if (in_array($response, [Password::RESET_LINK_SENT, Password::INVALID_USER, Password::RESET_THROTTLED])) {`
Updated password reset process not to indicate if email exists - Intended to prevent enumeration to check if a user exists. - Updated messages on both the reqest-reset and set-password elements. - Also updated notification auto-hide to be dynamic based upon the amount of words within the notification. - Added tests to cover. For #2016 2020-04-10 12:38:08 +00:00			`$message = trans('auth.reset_password_sent', ['email' => $request->get('email')]);`
Entity Repo & Controller Refactor (#1690) * Started mass-refactoring of the current entity repos * Rewrote book tree logic - Now does two simple queries instead of one really complex one. - Extracted logic into its own class. - Remove model-level akward union field listing. - Logic now more readable than being large separate query and compilation functions. * Extracted and split book sort logic * Finished up Book controller/repo organisation * Refactored bookshelves controllers and repo parts * Fixed issues found via phpunit * Refactored Chapter controller * Updated Chapter export controller * Started Page controller/repo refactor * Refactored another chunk of PageController * Completed initial pagecontroller refactor pass * Fixed tests and continued reduction of old repos * Removed old page remove and further reduced entity repo * Removed old entity repo, split out page controller * Ran phpcbf and split out some page content methods * Tidied up some EntityProvider elements * Fixed issued caused by viewservice change 2019-10-05 11:55:01 +00:00			`$this->showSuccessNotification($message);`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00
Merge fixes from branch 'v0.12' 2016-11-12 11:40:54 +00:00			`return back()->with('status', trans($response));`
			`}`

			`// If an error was returned by the password broker, we will get this message`
			`// translated so we can notify a user of the problem. We'll redirect back`
			`// to where the users came from so they can attempt this process again.`
			`return back()->withErrors(`
			`['email' => trans($response)]`
			`);`
			`}`
Set /app PHP code to PSR-2 standard Also adde draw.io to attribution list. Closes #649 2018-01-28 16:58:52 +00:00			`}`