pixelfed/app/Http/Controllers/Auth/RegisterController.php

180 lines
5.0 KiB
PHP
Raw Normal View History

2018-04-15 23:56:48 +00:00
<?php
namespace App\Http\Controllers\Auth;
2018-08-28 03:07:36 +00:00
use App\Http\Controllers\Controller;
2018-04-15 23:56:48 +00:00
use App\User;
use App\Util\Lexer\RestrictedNames;
2018-08-28 03:07:36 +00:00
use Illuminate\Foundation\Auth\RegistersUsers;
2018-04-15 23:56:48 +00:00
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Validator;
2018-10-24 17:56:56 +00:00
use Illuminate\Auth\Events\Registered;
use Illuminate\Http\Request;
2019-08-09 19:33:02 +00:00
use App\Services\EmailService;
2018-04-15 23:56:48 +00:00
class RegisterController extends Controller
{
/*
|--------------------------------------------------------------------------
| Register Controller
|--------------------------------------------------------------------------
|
| This controller handles the registration of new users as well as their
| validation and creation. By default this controller uses a trait to
| provide this functionality without requiring any additional code.
|
*/
use RegistersUsers;
/**
* Where to redirect users after registration.
*
* @var string
*/
2018-10-24 18:41:14 +00:00
protected $redirectTo = '/';
2018-04-15 23:56:48 +00:00
/**
* Create a new controller instance.
*
* @return void
*/
public function __construct()
{
$this->middleware('guest');
}
/**
* Get a validator for an incoming registration request.
*
2018-08-28 03:07:36 +00:00
* @param array $data
*
2018-04-15 23:56:48 +00:00
* @return \Illuminate\Contracts\Validation\Validator
*/
protected function validator(array $data)
{
$this->validateUsername($data['username']);
2019-08-09 19:33:02 +00:00
$this->validateEmail($data['email']);
2018-08-21 00:34:26 +00:00
$usernameRules = [
'required',
'min:2',
'max:15',
'unique:users',
2018-08-28 03:07:36 +00:00
function ($attribute, $value, $fail) {
2019-12-09 07:48:03 +00:00
$dash = substr_count($value, '-');
$underscore = substr_count($value, '_');
$period = substr_count($value, '.');
if(($dash + $underscore + $period) > 1) {
return $fail('Username is invalid. Can only contain one dash (-), period (.) or underscore (_).');
}
2018-08-28 03:07:36 +00:00
if (!ctype_alpha($value[0])) {
2019-11-23 04:21:53 +00:00
return $fail('Username is invalid. Must start with a letter or number.');
2018-08-21 00:34:26 +00:00
}
2019-12-09 07:48:03 +00:00
if (!ctype_alnum($value[strlen($value) - 1])) {
return $fail('Username is invalid. Must end with a letter or number.');
}
$val = str_replace(['_', '.', '-'], '', $value);
2018-12-24 00:16:59 +00:00
if(!ctype_alnum($val)) {
2019-09-06 03:29:12 +00:00
return $fail('Username is invalid. Username must be alpha-numeric and may contain dashes (-), periods (.) and underscores (_).');
2018-12-24 00:16:59 +00:00
}
2018-08-28 03:07:36 +00:00
},
];
2018-06-01 17:58:43 +00:00
$rules = [
2019-11-23 04:21:53 +00:00
'agecheck' => 'required|accepted',
2019-09-06 03:29:12 +00:00
'name' => 'nullable|string|max:'.config('pixelfed.max_name_length'),
2018-08-21 00:34:26 +00:00
'username' => $usernameRules,
2018-08-28 03:07:36 +00:00
'email' => 'required|string|email|max:255|unique:users',
2019-12-09 07:48:03 +00:00
'password' => 'required|string|min:12|confirmed',
2018-06-01 17:58:43 +00:00
];
return Validator::make($data, $rules);
2018-04-15 23:56:48 +00:00
}
/**
* Create a new user instance after a valid registration.
*
2018-08-28 03:07:36 +00:00
* @param array $data
*
2018-04-15 23:56:48 +00:00
* @return \App\User
*/
protected function create(array $data)
{
return User::create([
2018-08-28 03:07:36 +00:00
'name' => $data['name'],
2018-04-16 00:23:02 +00:00
'username' => $data['username'],
2018-08-28 03:07:36 +00:00
'email' => $data['email'],
2018-04-15 23:56:48 +00:00
'password' => Hash::make($data['password']),
]);
}
public function validateUsername($username)
{
$restricted = RestrictedNames::get();
2018-08-28 03:07:36 +00:00
if (in_array($username, $restricted)) {
return abort(403);
}
}
2019-08-09 19:33:02 +00:00
public function validateEmail($email)
{
$banned = EmailService::isBanned($email);
if($banned) {
return abort(403, 'Invalid email.');
}
}
/**
* Show the application registration form.
*
* @return \Illuminate\Http\Response
*/
public function showRegistrationForm()
{
if(config('pixelfed.open_registration')) {
$limit = config('pixelfed.max_users');
if($limit) {
abort_if($limit <= User::count(), 404);
return view('auth.register');
} else {
return view('auth.register');
}
2019-01-31 01:11:22 +00:00
} else {
abort(404);
2019-01-31 01:11:22 +00:00
}
}
/**
* Handle a registration request for the application.
*
* @param \Illuminate\Http\Request $request
* @return \Illuminate\Http\Response
*/
public function register(Request $request)
{
2019-12-09 07:48:03 +00:00
abort_if(config('pixelfed.open_registration') == false, 400);
2019-01-31 01:11:22 +00:00
$count = User::count();
$limit = config('pixelfed.max_users');
2019-12-09 07:48:03 +00:00
2019-01-31 01:11:22 +00:00
if(false == config('pixelfed.open_registration') || $limit && $limit <= $count) {
return abort(403);
}
$this->validator($request->all())->validate();
event(new Registered($user = $this->create($request->all())));
$this->guard()->login($user);
return $this->registered($request, $user)
2019-12-09 07:48:03 +00:00
?: redirect($this->redirectPath());
}
2018-04-15 23:56:48 +00:00
}