db = $db; $this->users = $users; } /** * Create new confirmation for a user, * Also removes any existing old ones. * @param User $user * @throws ConfirmationEmailException */ public function sendConfirmation(User $user) { if ($user->email_confirmed) { throw new ConfirmationEmailException('Email has already been confirmed, Try logging in.', '/login'); } $this->deleteConfirmationsByUser($user); $token = $this->createEmailConfirmation($user); $user->notify(new ConfirmEmail($token)); } /** * Creates a new email confirmation in the database and returns the token. * @param User $user * @return string */ public function createEmailConfirmation(User $user) { $token = $this->getToken(); $this->db->table('email_confirmations')->insert([ 'user_id' => $user->id, 'token' => $token, 'created_at' => Carbon::now(), 'updated_at' => Carbon::now() ]); return $token; } /** * Gets an email confirmation by looking up the token, * Ensures the token has not expired. * @param string $token * @return EmailConfirmation * @throws UserRegistrationException */ public function getEmailConfirmationFromToken($token) { $emailConfirmation = $this->db->table('email_confirmations')->where('token', '=', $token)->first(); // If not found show error if ($emailConfirmation === null) { throw new UserRegistrationException('This confirmation token is not valid or has already been used, Please try registering again.', '/register'); } // If more than a day old if (Carbon::now()->subDay()->gt(new Carbon($emailConfirmation->created_at))) { $user = $this->users->getById($emailConfirmation->user_id); $this->sendConfirmation($user); throw new UserRegistrationException('The confirmation token has expired, A new confirmation email has been sent.', '/register/confirm'); } $emailConfirmation->user = $this->users->getById($emailConfirmation->user_id); return $emailConfirmation; } /** * Delete all email confirmations that belong to a user. * @param User $user * @return mixed */ public function deleteConfirmationsByUser(User $user) { return $this->db->table('email_confirmations')->where('user_id', '=', $user->id)->delete(); } /** * Creates a unique token within the email confirmation database. * @return string */ protected function getToken() { $token = str_random(24); while ($this->db->table('email_confirmations')->where('token', '=', $token)->exists()) { $token = str_random(25); } return $token; } }