mirror of
https://github.com/flarum/core.git
synced 2025-07-26 11:10:41 +02:00
70 lines
1.8 KiB
PHP
70 lines
1.8 KiB
PHP
<?php
|
|
/*
|
|
* This file is part of Flarum.
|
|
*
|
|
* (c) Toby Zerner <toby.zerner@gmail.com>
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Flarum\Forum\Controller;
|
|
|
|
use Flarum\Core\PasswordToken;
|
|
use Flarum\Forum\UrlGenerator;
|
|
use Flarum\Http\Controller\ControllerInterface;
|
|
use Flarum\Http\SessionAuthenticator;
|
|
use Psr\Http\Message\ServerRequestInterface as Request;
|
|
use Zend\Diactoros\Response\RedirectResponse;
|
|
|
|
class SavePasswordController implements ControllerInterface
|
|
{
|
|
/**
|
|
* @var UrlGenerator
|
|
*/
|
|
protected $url;
|
|
|
|
/**
|
|
* @var SessionAuthenticator
|
|
*/
|
|
protected $authenticator;
|
|
|
|
/**
|
|
* @param UrlGenerator $url
|
|
* @param SessionAuthenticator $authenticator
|
|
*/
|
|
public function __construct(UrlGenerator $url, SessionAuthenticator $authenticator)
|
|
{
|
|
$this->url = $url;
|
|
$this->authenticator = $authenticator;
|
|
}
|
|
|
|
/**
|
|
* @param Request $request
|
|
* @return RedirectResponse
|
|
*/
|
|
public function handle(Request $request)
|
|
{
|
|
$input = $request->getParsedBody();
|
|
|
|
$token = PasswordToken::findOrFail(array_get($input, 'passwordToken'));
|
|
|
|
$password = array_get($input, 'password');
|
|
$confirmation = array_get($input, 'password_confirmation');
|
|
|
|
if (! $password || $password !== $confirmation) {
|
|
return new RedirectResponse($this->url->toRoute('resetPassword', ['token' => $token->id]));
|
|
}
|
|
|
|
$token->user->changePassword($password);
|
|
$token->user->save();
|
|
|
|
$token->delete();
|
|
|
|
$session = $request->getAttribute('session');
|
|
$this->authenticator->logIn($session, $token->user->id);
|
|
|
|
return new RedirectResponse($this->url->toBase());
|
|
}
|
|
}
|