Refactored the password resetting submission

Author: stof

Controller/ResettingController.php

@@ -11,12 +11,15 @@
 
 namespace FOS\UserBundle\Controller;
 
+use FOS\UserBundle\FOSUserEvents;
+use FOS\UserBundle\Event\FormEvent;
+use FOS\UserBundle\Event\GetResponseUserEvent;
+use FOS\UserBundle\Event\UserResponseEvent;
+use FOS\UserBundle\Model\UserInterface;
 use Symfony\Component\DependencyInjection\ContainerAware;
-use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
-use Symfony\Component\Security\Core\Exception\AccountStatusException;
-use FOS\UserBundle\Model\UserInterface;
 
 /**
  * Controller managing the resetting of the password
@@ -90,28 +93,49 @@ public function checkEmailAction()
     /**
      * Reset user password
      */
-    public function resetAction($token)
+    public function resetAction(Request $request, $token)
     {
-        $user = $this->container->get('fos_user.user_manager')->findUserByConfirmationToken($token);
+        /** @var $formFactory \FOS\UserBundle\Form\Factory\FactoryInterface */
+        $formFactory = $this->container->get('fos_user.resetting.form.factory');
+        /** @var $userManager \FOS\UserBundle\Model\UserManagerInterface */
+        $userManager = $this->container->get('fos_user.user_manager');
+        /** @var $dispatcher \Symfony\Component\EventDispatcher\EventDispatcherInterface */
+        $dispatcher = $this->container->get('event_dispatcher');
+
+        $user = $userManager->findUserByConfirmationToken($token);
 
         if (null === $user) {
             throw new NotFoundHttpException(sprintf('The user with "confirmation token" does not exist for value "%s"', $token));
         }
 
-        if (!$user->isPasswordRequestNonExpired($this->container->getParameter('fos_user.resetting.token_ttl'))) {
-            return new RedirectResponse($this->container->get('router')->generate('fos_user_resetting_request'));
+        $event = new GetResponseUserEvent($user);
+        $dispatcher->dispatch(FOSUserEvents::RESETTING_RESET_SUCCESS, $event);
+
+        if (null !== $event->getResponse()) {
+            return $event->getResponse();
         }
 
-        $form = $this->container->get('fos_user.resetting.form');
-        $formHandler = $this->container->get('fos_user.resetting.form.handler');
-        $process = $formHandler->process($user);
+        $form = $formFactory->createForm();
+        $form->setData($user);
+
+        if ('POST' === $request->getMethod()) {
+            $form->bind($request);
+
+            if ($form->isValid()) {
+                $event = new FormEvent($form);
+                $dispatcher->dispatch(FOSUserEvents::RESETTING_RESET_SUCCESS, $event);
+
+                $userManager->updateUser($user);
 
-        if ($process) {
-            $this->setFlash('fos_user_success', 'resetting.flash.success');
-            $response = new RedirectResponse($this->getRedirectionUrl($user));
-            $this->authenticateUser($user, $response);
+                if (null === $response = $event->getResponse()) {
+                    $url = $this->container->get('router')->generate('fos_user_profile_show');
+                    $response = new RedirectResponse($url);
+                }
 
-            return $response;
+                $dispatcher->dispatch(FOSUserEvents::RESETTING_RESET_COMPLETED, new UserResponseEvent($user, $response));
+
+                return $response;
+            }
         }
 
         return $this->container->get('templating')->renderResponse('FOSUserBundle:Resetting:reset.html.'.$this->getEngine(), array(
@@ -120,37 +144,6 @@ public function resetAction($token)
         ));
     }
 
-    /**
-     * Authenticate a user with Symfony Security
-     *
-     * @param \FOS\UserBundle\Model\UserInterface        $user
-     * @param \Symfony\Component\HttpFoundation\Response $response
-     */
-    protected function authenticateUser(UserInterface $user, Response $response)
-    {
-        try {
-            $this->container->get('fos_user.security.login_manager')->loginUser(
-                $this->container->getParameter('fos_user.firewall_name'),
-                $user,
-                $response);
-        } catch (AccountStatusException $ex) {
-            // We simply do not authenticate users which do not pass the user
-            // checker (not enabled, expired, etc.).
-        }
-    }
-
-    /**
-     * Generate the redirection url when the resetting is completed.
-     *
-     * @param \FOS\UserBundle\Model\UserInterface $user
-     *
-     * @return string
-     */
-    protected function getRedirectionUrl(UserInterface $user)
-    {
-        return $this->container->get('router')->generate('fos_user_profile_show');
-    }
-
     /**
      * Get the truncated email displayed when requesting the resetting.
      *
@@ -170,15 +163,6 @@ protected function getObfuscatedEmail(UserInterface $user)
         return $email;
     }
 
-    /**
-     * @param string $action
-     * @param string $value
-     */
-    protected function setFlash($action, $value)
-    {
-        $this->container->get('session')->setFlash($action, $value);
-    }
-
     protected function getEngine()
     {
         return $this->container->getParameter('fos_user.template.engine');

DependencyInjection/Configuration.php

@@ -170,7 +170,6 @@ private function addResettingSection(ArrayNodeDefinition $node)
                             ->addDefaultsIfNotSet()
                             ->children()
                                 ->scalarNode('type')->defaultValue('fos_user_resetting')->end()
-                                ->scalarNode('handler')->defaultValue('fos_user.resetting.form.handler.default')->end()
                                 ->scalarNode('name')->defaultValue('fos_user_resetting_form')->end()
                                 ->arrayNode('validation_groups')
                                     ->prototype('scalar')->end()

DependencyInjection/FOSUserExtension.php

@@ -144,9 +144,6 @@ private function loadResetting(array $config, ContainerBuilder $container, XmlFi
     {
         $loader->load('resetting.xml');
 
-        $container->setAlias('fos_user.resetting.form.handler', $config['form']['handler']);
-        unset($config['form']['handler']);
-
         if (isset($config['email']['from_email'])) {
             // overwrite the global one
             $fromEmail = $config['email']['from_email'];

Event/GetResponseUserEvent.php

@@ -0,0 +1,32 @@
+<?php
+
+/*
+ * This file is part of the FOSUserBundle package.
+ *
+ * (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace FOS\UserBundle\Event;
+
+use Symfony\Component\HttpFoundation\Response;
+
+class GetResponseUserEvent extends UserEvent
+{
+    private $response;
+
+    public function setResponse(Response $response)
+    {
+        $this->response = $response;
+    }
+
+    /**
+     * @return Response|null
+     */
+    public function getResponse()
+    {
+        return $this->response;
+    }
+}

EventListener/AuthenticationListener.php

@@ -34,6 +34,7 @@ public static function getSubscribedEvents()
         return array(
             FOSUserEvents::REGISTRATION_COMPLETED => 'authenticate',
             FOSUserEvents::REGISTRATION_CONFIRMED => 'authenticate',
+            FOSUserEvents::RESETTING_RESET_COMPLETED => 'authenticate',
         );
     }
 

EventListener/FlashListener.php

@@ -36,6 +36,7 @@ public static function getSubscribedEvents()
         return array(
             FOSUserEvents::PROFILE_EDIT_SUCCESS => 'onProfileEditSuccess',
             FOSUserEvents::REGISTRATION_SUCCESS => 'onRegistrationSuccess',
+            FOSUserEvents::RESETTING_RESET_SUCCESS => 'onResettingResetSuccess'
         );
     }
 
@@ -49,6 +50,11 @@ public function onRegistrationSuccess(FormEvent $event)
         $this->session->getFlashBag()->add('success', $this->trans('registration.flash.user_created'));
     }
 
+    public function onResettingResetSuccess(FormEvent $event)
+    {
+        $this->session->getFlashBag()->add('success', $this->trans('resetting.flash.success'));
+    }
+
     private function trans($message, array $params = array())
     {
         return $this->translator->trans($message, $params, 'FOSUserBundle');

EventListener/ResettingListener.php

@@ -0,0 +1,56 @@
+<?php
+
+/*
+ * This file is part of the FOSUserBundle package.
+ *
+ * (c) FriendsOfSymfony <http://friendsofsymfony.github.com/>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace FOS\UserBundle\EventListener;
+
+use FOS\UserBundle\FOSUserEvents;
+use FOS\UserBundle\Event\FormEvent;
+use FOS\UserBundle\Event\GetResponseUserEvent;
+use Symfony\Component\EventDispatcher\EventSubscriberInterface;
+use Symfony\Component\HttpFoundation\RedirectResponse;
+use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
+
+class ResettingListener implements EventSubscriberInterface
+{
+    private $router;
+    private $tokenTtl;
+
+    public function __construct(UrlGeneratorInterface $router, $tokenTtl)
+    {
+        $this->router = $router;
+        $this->tokenTtl = $tokenTtl;
+    }
+
+    public static function getSubscribedEvents()
+    {
+        return array(
+            FOSUserEvents::RESETTING_RESET_INITIALIZE => 'onResettingResetInitialize',
+            FOSUserEvents::RESETTING_RESET_SUCCESS => 'onResettingResetSuccess'
+        );
+    }
+
+    public function onResettingResetInitialize(GetResponseUserEvent $event)
+    {
+        if (!$event->getUser()->isPasswordRequestNonExpired($this->tokenTtl)) {
+            $event->setResponse(new RedirectResponse($this->router->generate('fos_user_resetting_request')));
+        }
+    }
+
+    public function onResettingResetSuccess(FormEvent $event)
+    {
+        /** @var $user \FOS\UserBundle\Model\UserInterface */
+        $user = $event->getForm()->getData();
+
+        $user->setConfirmationToken(null);
+        $user->setPasswordRequestedAt(null);
+        $user->setEnabled(true);
+    }
+}

FOSUserEvents.php

@@ -72,6 +72,30 @@ final class FOSUserEvents
      */
     const REGISTRATION_CONFIRMED = 'fos_user.registration.confirmed';
 
+    /**
+     * The RESETTING_RESET_INITIALIZE event occurs when the resetting process is initialized.
+     *
+     * This event allows you to set the response to bypass the processing.
+     * The event listener method receives a FOS\UserBundle\Event\GetResponseUserEvent instance.
+     */
+    const RESETTING_RESET_INITIALIZE = 'fos_user.resetting.reset.initialize';
+
+    /**
+     * The RESETTING_RESET_SUCCESS event occurs when the resetting form is submitted successfully.
+     *
+     * This event allows you to set the response instead of using the default one.
+     * The event listener method receives a FOS\UserBundle\Event\FormEvent instance.
+     */
+    const RESETTING_RESET_SUCCESS = 'fos_user.resetting.reset.success';
+
+    /**
+     * The RESETTING_RESET_COMPLETED event occurs after saving the user in the resetting process.
+     *
+     * This event allows you to access the response which will be sent.
+     * The event listener method receives a FOS\UserBundle\Event\UserResponseEvent instance.
+     */
+    const RESETTING_RESET_COMPLETED = 'fos_user.resetting.reset.completed';
+
     /**
      * The SECURITY_IMPLICIT_LOGIN event occurs when the user is logged in programmatically.
      *

Form/Handler/ResettingFormHandler.php

@@ -17,9 +17,19 @@
 
 class ResettingFormType extends AbstractType
 {
+    private $class;
+
+    /**
+     * @param string $class The User class name
+     */
+    public function __construct($class)
+    {
+        $this->class = $class;
+    }
+
     public function buildForm(FormBuilderInterface $builder, array $options)
     {
-        $builder->add('new', 'repeated', array(
+        $builder->add('plainPassword', 'repeated', array(
             'type' => 'password',
             'options' => array('translation_domain' => 'FOSUserBundle'),
             'first_options' => array('label' => 'form.new_password'),
@@ -31,7 +41,7 @@ public function buildForm(FormBuilderInterface $builder, array $options)
     public function setDefaultOptions(OptionsResolverInterface $resolver)
     {
         $resolver->setDefaults(array(
-            'data_class' => 'FOS\UserBundle\Form\Model\ChangePassword',
+            'data_class' => $this->class,
             'intention'  => 'resetting',
         ));
     }