ElyBy-Mirror/accounts
1
0
Fork 0
mirror of https://github.com/elyby/accounts.git synced 2024-11-30 02:32:26 +05:30
Code Issues Packages Projects Releases Wiki Activity

#274: упразднена базовая модель KeyConfirmationForm, внедрён обновлённый валидатор EmailActivationKeyValidator

Browse Source
This commit is contained in:
ErickSkrauch 2016-12-23 01:22:51 +03:00
parent 07735a0eed
commit 796ca647e4
7 changed files with 106 additions and 174 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

63
api/models/authentication/ConfirmEmailForm.php
View File

@ -2,56 +2,53 @@
namespace api\models\authentication; namespace api\models\authentication;
use api\models\AccountIdentity; use api\models\AccountIdentity;
use api\models\base\KeyConfirmationForm; use api\models\base\ApiForm;
use api\models\profile\ChangeUsernameForm; use api\models\profile\ChangeUsernameForm;
use api\validators\EmailActivationKeyValidator;
use common\models\Account; use common\models\Account;
use common\models\EmailActivation; use common\models\EmailActivation;
use Yii; use Yii;
use yii\base\ErrorException; use yii\base\ErrorException;
class ConfirmEmailForm extends KeyConfirmationForm { class ConfirmEmailForm extends ApiForm {
public $key;
public function rules() {
return [
['key', EmailActivationKeyValidator::class, 'type' => EmailActivation::TYPE_REGISTRATION_EMAIL_CONFIRMATION],
];
}
/**
* @return \api\components\User\LoginResult|bool
* @throws ErrorException
*/
public function confirm() { public function confirm() {
if (!$this->validate()) { if (!$this->validate()) {
return false; return false;
} }
$confirmModel = $this->getActivationCodeModel();
if ($confirmModel->type !== EmailActivation::TYPE_REGISTRATION_EMAIL_CONFIRMATION) {
$confirmModel->delete();
// TODO: вот где-то здесь нужно ещё попутно сгенерировать соответствующую ошибку
return false;
}
$transaction = Yii::$app->db->beginTransaction(); $transaction = Yii::$app->db->beginTransaction();
try {
$account = $confirmModel->account;
$account->status = Account::STATUS_ACTIVE;
if (!$confirmModel->delete()) {
throw new ErrorException('Unable remove activation key.');
}
if (!$account->save()) { /** @var \common\models\confirmations\RegistrationConfirmation $confirmModel */
throw new ErrorException('Unable activate user account.'); $confirmModel = $this->key;
} $account = $confirmModel->account;
$account->status = Account::STATUS_ACTIVE;
$changeUsernameForm = new ChangeUsernameForm(); if (!$confirmModel->delete()) {
$changeUsernameForm->createEventTask($account->id, $account->username, null); throw new ErrorException('Unable remove activation key.');
$transaction->commit();
} catch (ErrorException $e) {
$transaction->rollBack();
if (YII_DEBUG) {
throw $e;
} else {
return false;
}
} }
/** @var \api\components\User\Component $component */ if (!$account->save()) {
$component = Yii::$app->user; throw new ErrorException('Unable activate user account.');
}
return $component->login(new AccountIdentity($account->attributes), true); $changeUsernameForm = new ChangeUsernameForm();
$changeUsernameForm->createEventTask($account->id, $account->username, null);
$transaction->commit();
return Yii::$app->user->login(new AccountIdentity($account->attributes), true);
} }
} }

56
api/models/authentication/RecoverPasswordForm.php
View File

@ -2,26 +2,30 @@
namespace api\models\authentication; namespace api\models\authentication;
use api\models\AccountIdentity; use api\models\AccountIdentity;
use api\models\base\KeyConfirmationForm; use api\models\base\ApiForm;
use api\validators\EmailActivationKeyValidator;
use common\helpers\Error as E; use common\helpers\Error as E;
use common\models\EmailActivation; use common\models\EmailActivation;
use common\validators\PasswordValidator; use common\validators\PasswordValidator;
use Yii; use Yii;
use yii\base\ErrorException; use yii\base\ErrorException;
class RecoverPasswordForm extends KeyConfirmationForm { class RecoverPasswordForm extends ApiForm {
public $key;
public $newPassword; public $newPassword;
public $newRePassword; public $newRePassword;
public function rules() { public function rules() {
return array_merge(parent::rules(), [ return [
['key', EmailActivationKeyValidator::class, 'type' => EmailActivation::TYPE_FORGOT_PASSWORD_KEY],
['newPassword', 'required', 'message' => E::NEW_PASSWORD_REQUIRED], ['newPassword', 'required', 'message' => E::NEW_PASSWORD_REQUIRED],
['newRePassword', 'required', 'message' => E::NEW_RE_PASSWORD_REQUIRED], ['newRePassword', 'required', 'message' => E::NEW_RE_PASSWORD_REQUIRED],
['newPassword', PasswordValidator::class], ['newPassword', PasswordValidator::class],
['newRePassword', 'validatePasswordAndRePasswordMatch'], ['newRePassword', 'validatePasswordAndRePasswordMatch'],
]); ];
} }
public function validatePasswordAndRePasswordMatch($attribute) { public function validatePasswordAndRePasswordMatch($attribute) {
@ -32,46 +36,32 @@ class RecoverPasswordForm extends KeyConfirmationForm {
} }
} }
/**
* @return \api\components\User\LoginResult|bool
* @throws ErrorException
*/
public function recoverPassword() { public function recoverPassword() {
if (!$this->validate()) { if (!$this->validate()) {
return false; return false;
} }
$confirmModel = $this->getActivationCodeModel();
if ($confirmModel->type !== EmailActivation::TYPE_FORGOT_PASSWORD_KEY) {
$confirmModel->delete();
// TODO: вот где-то здесь нужно ещё попутно сгенерировать соответствующую ошибку
return false;
}
$transaction = Yii::$app->db->beginTransaction(); $transaction = Yii::$app->db->beginTransaction();
try {
$account = $confirmModel->account;
$account->password = $this->newPassword;
if (!$confirmModel->delete()) {
throw new ErrorException('Unable remove activation key.');
}
if (!$account->save(false)) { /** @var \common\models\confirmations\ForgotPassword $confirmModel */
throw new ErrorException('Unable activate user account.'); $confirmModel = $this->key;
} $account = $confirmModel->account;
$account->password = $this->newPassword;
$transaction->commit(); if (!$confirmModel->delete()) {
} catch (ErrorException $e) { throw new ErrorException('Unable remove activation key.');
$transaction->rollBack();
if (YII_DEBUG) {
throw $e;
} else {
return false;
}
} }
// TODO: ещё было бы неплохо уведомить пользователя о том, что его пароль изменился if (!$account->save(false)) {
throw new ErrorException('Unable activate user account.');
}
/** @var \api\components\User\Component $component */ $transaction->commit();
$component = Yii::$app->user;
return $component->login(new AccountIdentity($account->attributes), false); return Yii::$app->user->login(new AccountIdentity($account->attributes), false);
} }
} }

33
api/models/base/KeyConfirmationForm.php
View File

@ -1,33 +0,0 @@
<?php
namespace api\models\base;
use common\helpers\Error as E;
use api\validators\EmailActivationKeyValidator;
use common\models\EmailActivation;
class KeyConfirmationForm extends ApiForm {
public $key;
private $model;
public function rules() {
return [
// TODO: нужно провалидировать количество попыток ввода кода для определённого IP адреса и в случае чего запросить капчу
['key', 'required', 'message' => E::KEY_REQUIRED],
['key', EmailActivationKeyValidator::class],
];
}
/**
* @return EmailActivation|null
*/
public function getActivationCodeModel() {
if ($this->model === null) {
$this->model = EmailActivation::findOne($this->key);
}
return $this->model;
}
}

53
api/models/profile/ChangeEmail/ConfirmNewEmailForm.php
View File

@ -1,60 +1,60 @@
<?php <?php
namespace api\models\profile\ChangeEmail; namespace api\models\profile\ChangeEmail;
use api\models\base\KeyConfirmationForm; use api\models\base\ApiForm;
use api\validators\EmailActivationKeyValidator;
use common\helpers\Amqp; use common\helpers\Amqp;
use common\models\Account; use common\models\Account;
use common\models\amqp\EmailChanged; use common\models\amqp\EmailChanged;
use Exception; use common\models\EmailActivation;
use PhpAmqpLib\Message\AMQPMessage; use PhpAmqpLib\Message\AMQPMessage;
use Yii; use Yii;
use yii\base\ErrorException; use yii\base\ErrorException;
class ConfirmNewEmailForm extends KeyConfirmationForm { class ConfirmNewEmailForm extends ApiForm {
public $key;
/** /**
* @var Account * @var Account
*/ */
private $account; private $account;
public function __construct(Account $account, array $config = []) { public function rules() {
$this->account = $account; return [
parent::__construct($config); ['key', EmailActivationKeyValidator::class, 'type' => EmailActivation::TYPE_NEW_EMAIL_CONFIRMATION],
];
} }
/** /**
* @return Account * @return Account
*/ */
public function getAccount() : Account { public function getAccount(): Account {
return $this->account; return $this->account;
} }
public function changeEmail() : bool { public function changeEmail(): bool {
if (!$this->validate()) { if (!$this->validate()) {
return false; return false;
} }
$transaction = Yii::$app->db->beginTransaction(); $transaction = Yii::$app->db->beginTransaction();
try {
/** @var \common\models\confirmations\NewEmailConfirmation $activation */
$activation = $this->getActivationCodeModel();
$activation->delete();
$account = $this->getAccount(); /** @var \common\models\confirmations\NewEmailConfirmation $activation */
$oldEmail = $account->email; $activation = $this->key;
$account->email = $activation->newEmail; $activation->delete();
if (!$account->save()) {
throw new ErrorException('Cannot save new account email value');
}
$this->createTask($account->id, $account->email, $oldEmail); $account = $this->getAccount();
$oldEmail = $account->email;
$transaction->commit(); $account->email = $activation->newEmail;
} catch (Exception $e) { if (!$account->save()) {
$transaction->rollBack(); throw new ErrorException('Cannot save new account email value');
throw $e;
} }
$this->createTask($account->id, $account->email, $oldEmail);
$transaction->commit();
return true; return true;
} }
@ -77,4 +77,9 @@ class ConfirmNewEmailForm extends KeyConfirmationForm {
Amqp::sendToEventsExchange('accounts.email-changed', $message); Amqp::sendToEventsExchange('accounts.email-changed', $message);
} }
public function __construct(Account $account, array $config = []) {
$this->account = $account;
parent::__construct($config);
}
} }

44
api/models/profile/ChangeEmail/NewEmailForm.php
View File

@ -1,17 +1,19 @@
<?php <?php
namespace api\models\profile\ChangeEmail; namespace api\models\profile\ChangeEmail;
use api\models\base\KeyConfirmationForm; use api\models\base\ApiForm;
use api\validators\EmailActivationKeyValidator;
use common\models\Account; use common\models\Account;
use common\models\confirmations\NewEmailConfirmation; use common\models\confirmations\NewEmailConfirmation;
use common\models\EmailActivation; use common\models\EmailActivation;
use common\validators\EmailValidator; use common\validators\EmailValidator;
use Yii; use Yii;
use yii\base\ErrorException; use yii\base\ErrorException;
use yii\base\Exception;
use yii\base\InvalidConfigException; use yii\base\InvalidConfigException;
class NewEmailForm extends KeyConfirmationForm { class NewEmailForm extends ApiForm {
public $key;
public $email; public $email;
@ -20,39 +22,32 @@ class NewEmailForm extends KeyConfirmationForm {
*/ */
private $account; private $account;
public function __construct(Account $account, array $config = []) {
$this->account = $account;
parent::__construct($config);
}
public function rules() { public function rules() {
return array_merge(parent::rules(), [ return [
['key', EmailActivationKeyValidator::class, 'type' => EmailActivation::TYPE_CURRENT_EMAIL_CONFIRMATION],
['email', EmailValidator::class], ['email', EmailValidator::class],
]); ];
} }
public function getAccount() : Account { public function getAccount(): Account {
return $this->account; return $this->account;
} }
public function sendNewEmailConfirmation() { public function sendNewEmailConfirmation(): bool {
if (!$this->validate()) { if (!$this->validate()) {
return false; return false;
} }
$transaction = Yii::$app->db->beginTransaction(); $transaction = Yii::$app->db->beginTransaction();
try {
$previousActivation = $this->getActivationCodeModel();
$previousActivation->delete();
$activation = $this->createCode(); /** @var \common\models\confirmations\CurrentEmailConfirmation $previousActivation */
$this->sendCode($activation); $previousActivation = $this->key;
$previousActivation->delete();
$transaction->commit(); $activation = $this->createCode();
} catch (Exception $e) { $this->sendCode($activation);
$transaction->rollBack();
throw $e; $transaction->commit();
}
return true; return true;
} }
@ -98,4 +93,9 @@ class NewEmailForm extends KeyConfirmationForm {
} }
} }
public function __construct(Account $account, array $config = []) {
$this->account = $account;
parent::__construct($config);
}
} }

2
api/validators/EmailActivationKeyValidator.php
View File

@ -22,6 +22,8 @@ class EmailActivationKeyValidator extends Validator {
public $expired = E::KEY_EXPIRE; public $expired = E::KEY_EXPIRE;
public $skipOnEmpty = false;
public function validateAttribute($model, $attribute) { public function validateAttribute($model, $attribute) {
$value = $model->$attribute; $value = $model->$attribute;
if (empty($value)) { if (empty($value)) {

29
tests/codeception/api/unit/models/base/KeyConfirmationFormTest.php
View File

@ -1,29 +0,0 @@
<?php
namespace tests\codeception\api\models\base;
use api\models\base\KeyConfirmationForm;
use Codeception\Specify;
use common\models\EmailActivation;
use tests\codeception\api\unit\TestCase;
use tests\codeception\common\fixtures\EmailActivationFixture;
class KeyConfirmationFormTest extends TestCase {
use Specify;
public function _fixtures() {
return [
'emailActivations' => EmailActivationFixture::class,
];
}
public function testGetActivationCodeModel() {
$model = new KeyConfirmationForm();
$model->key = $this->tester->grabFixture('emailActivations', 'freshRegistrationConfirmation')['key'];
$this->assertInstanceOf(EmailActivation::class, $model->getActivationCodeModel());
$model = new KeyConfirmationForm();
$model->key = 'this-is-invalid-key';
$this->assertNull($model->getActivationCodeModel());
}
}