Laravel 在使用忘记密码发送密码重置电子邮件之前检查用户是否已激活
我正在使用Laravel 5.3创建一个小应用程序。我已经在Laravel的默认Laravel 在使用忘记密码发送密码重置电子邮件之前检查用户是否已激活,laravel,laravel-5.3,Laravel,Laravel 5.3,我正在使用Laravel 5.3创建一个小应用程序。我已经在Laravel的默认Auth上应用了用户激活(通过电子邮件确认)。但如果帐户/用户未通过验证电子邮件地址激活,我无法找到停止发送密码重置链接的方法。当前,如果用户创建了一个帐户,但未验证电子邮件地址,则可以使用密码重置链接登录 这是我在用户表中看到的 public function up() { Schema::create('users', function (Blueprint $table) { $tabl
Authpublic function up()
{
Schema::create('users', function (Blueprint $table) {
$table->increments('id');
$table->string('name')->nullable();;
$table->string('username')->unique();
$table->string('email')->unique();
$table->string('company')->nullable();;
$table->string('password');
$table->boolean('activated')->default(false);
$table->rememberToken();
$table->timestamps();
});
Schema::create('user_activations', function (Blueprint $table) {
$table->integer('user_id')->unsigned();
$table->string('token')->index();
$table->timestamp('created_at');
});
}
public function reset(Request $request)
{
if (!$request->activated) {
return redirect('/');
} else {
$this->validate($request, $this->rules(), $this->validationErrorMessages());
$response = $this->broker()->reset(
$this->credentials($request), function ($user, $password) {
$this->resetPassword($user, $password);
}
);
return $response == Password::PASSWORD_RESET
? $this->sendResetResponse($response)
: $this->sendResetFailedResponse($request, $response);
}
}
我找到了解决办法。以防万一,如果有人在寻找相同的解决方案。这是我重写的函数
public function sendResetLinkEmail(Request $request)
{
$this->validate($request, ['email' => 'required|email']);
$user_check = User::where('email', $request->email)->first();
if (!$user_check->activated) {
return back()->with('status', 'Your account is not activated. Please activate it first.');
} else {
$response = $this->broker()->sendResetLink(
$request->only('email')
);
if ($response === Password::RESET_LINK_SENT) {
return back()->with('status', trans($response));
}
return back()->withErrors(
['email' => trans($response)]
);
}
}
另一种简单的方法是创建一个新的验证规则来检查用户帐户是否被激活,然后将该规则添加到
ForgotPasswordControllervalidateEmail<?php
namespace App\Rules;
use Illuminate\Contracts\Validation\Rule;
use App\User;
class ActiveUser implements Rule
{
/**
* Create a new rule instance.
*
* @return void
*/
public function __construct()
{
//
}
/**
* Determine if the validation rule passes.
*
* @param string $attribute
* @param mixed $value
* @return bool
*/
public function passes($attribute, $value)
{
$user = User::whereEmail($value)->first();
if($user) {
if($user->active) {
return true;
}
return false;
}
return true;
}
/**
* Get the validation error message.
*
* @return string
*/
public function message()
{
return 'Your account is deactivated.';
}
}
$user = \App\user::find(1);
\Illuminate\Support\Facades\Password::broker()->deleteToken($user);
另一种解决方案是覆盖用户模型中的
sendPasswordResetNotification/**
* OVERWRITE ORIGINAL
* @param string $token
*/
public function sendPasswordResetNotification($token) {
if(!$this->active){
session()->flash('error', 'Your account is disabled.');
return back();
}
$this->notify(new \Illuminate\Auth\Notifications\ResetPassword($token));
}
@if ($errors->any())
@foreach ($errors->all() as $message)
<div class="alert alert-danger-plain">
<i class="icon-exclamation"></i> {{ $message }}
</div>
@endforeach
@endif
@if($errors->any())
@foreach($errors->all()作为$message)
{{$message}}
@endforeach
@恩迪夫
@if ($errors->any())
@foreach ($errors->all() as $message)
<div class="alert alert-danger-plain">
<i class="icon-exclamation"></i> {{ $message }}
</div>
@endforeach
@endif