BookStack Code Mirror - bookstack/blobdiff - app/Auth/Access/RegistrationService.php

index 2aff6c37d5140c84644f75077cceea2cd25d43d1..dcdb68bd5cd725530ab31cf69c4a6cc382ea39b6 100644 (file)

--- a/app/Auth/Access/RegistrationService.php

+++ b/app/Auth/Access/RegistrationService.php

@@ -1,4 +1,6 @@

-<?php namespace BookStack\Auth\Access;

+<?php

+namespace BookStack\Auth\Access;

use BookStack\Actions\ActivityType;

use BookStack\Auth\SocialAccount;

@@ -6,11 +8,13 @@ use BookStack\Auth\User;

use BookStack\Auth\UserRepo;

use BookStack\Exceptions\UserRegistrationException;

use BookStack\Facades\Activity;

+use BookStack\Facades\Theme;

+use BookStack\Theming\ThemeEvents;

use Exception;

+use Illuminate\Support\Str;

class RegistrationService

{

protected $userRepo;

protected $emailConfirmationService;

@@ -25,6 +29,7 @@ class RegistrationService

/**

* Check whether or not registrations are allowed in the app settings.

+ *

* @throws UserRegistrationException

public function ensureRegistrationAllowed()

@@ -42,11 +47,39 @@ class RegistrationService

{

$authMethod = config('auth.method');

$authMethodsWithRegistration = ['standard'];

return in_array($authMethod, $authMethodsWithRegistration) && setting('registration-enabled');

}

+ /**

+ * Attempt to find a user in the system otherwise register them as a new

+ * user. For use with external auth systems since password is auto-generated.

+ *

+ * @throws UserRegistrationException

+ */

+ public function findOrRegister(string $name, string $email, string $externalId): User

+ {

+ $user = User::query()

+ ->where('external_auth_id', '=', $externalId)

+ ->first();

+ if (is_null($user)) {

+ $userData = [

+ 'name' => $name,

+ 'email' => $email,

+ 'password' => Str::random(32),

+ 'external_auth_id' => $externalId,

+ ];

+ $user = $this->registerUser($userData, null, false);

+ }

+ return $user;

+ }

/**

* The registrations flow for all users.

+ *

* @throws UserRegistrationException

public function registerUser(array $userData, ?SocialAccount $socialAccount = null, bool $emailConfirmed = false): User

@@ -71,6 +104,7 @@ class RegistrationService

}

Activity::add(ActivityType::AUTH_REGISTER, $socialAccount ?? $newUser);

+ Theme::dispatch(ThemeEvents::AUTH_REGISTER, $socialAccount ? $socialAccount->driver : auth()->getDefaultDriver(), $newUser);

// Start email confirmation flow if required

if ($this->emailConfirmationService->confirmationRequired() && !$emailConfirmed) {

@@ -81,9 +115,9 @@ class RegistrationService

session()->flash('sent-email-confirmation', true);

} catch (Exception $e) {

$message = trans('auth.email_confirm_send_error');

throw new UserRegistrationException($message, '/register/confirm');

}

return $newUser;

@@ -92,6 +126,7 @@ class RegistrationService

/**

* Ensure that the given email meets any active email domain registration restrictions.

* Throws if restrictions are active and the email does not match an allowed domain.

+ *

* @throws UserRegistrationException

protected function ensureEmailDomainAllowed(string $userEmail): void

@@ -103,11 +138,11 @@ class RegistrationService

}

$restrictedEmailDomains = explode(',', str_replace(' ', '', $registrationRestrict));

- $userEmailDomain = $domain = mb_substr(mb_strrchr($userEmail, "@"), 1);

+ $userEmailDomain = $domain = mb_substr(mb_strrchr($userEmail, '@'), 1);

if (!in_array($userEmailDomain, $restrictedEmailDomains)) {

$redirect = $this->registrationAllowed() ? '/register' : '/login';

throw new UserRegistrationException(trans('auth.registration_email_domain_invalid'), $redirect);

}

\ No newline at end of file