castopod/modules/Auth/Controllers/MyAccountController.php

<?php

declare(strict_types=1);

/**
 * @copyright  2020 Ad Aures
 * @license    https://www.gnu.org/licenses/agpl-3.0.en.html AGPL3
 * @link       https://castopod.org/
 */

namespace Modules\Auth\Controllers;

use CodeIgniter\HTTP\RedirectResponse;
use CodeIgniter\Shield\Entities\User;
use Modules\Admin\Controllers\BaseController;

class MyAccountController extends BaseController
{
    public function index(): string
    {
        $this->setHtmlHead(lang('MyAccount.info'));
        return view('my_account/view');
    }

    public function changePassword(): string
    {
        helper('form');

        $this->setHtmlHead(lang('MyAccount.changePassword'));
        return view('my_account/change_password');
    }

    public function changeAction(): RedirectResponse
    {
        $rules = [
            'password'     => 'required',
            'new_password' => 'required|strong_password|differs[password]',
        ];

        if (! $this->validate($rules)) {
            return redirect()
                ->back()
                ->withInput()
                ->with('errors', $this->validator->getErrors());
        }

        $validData = $this->validator->getValidated();

        // check credentials with the old password if logged in without magic link
        $credentials = [
            'email' => auth()
                ->user()
                ->email,
            'password' => $validData['password'],
        ];

        $validCreds = auth()
            ->check($credentials);

        if (! $validCreds->isOK()) {
            return redirect()->back()
                ->with('error', lang('MyAccount.messages.wrongPasswordError'));
        }

        $user = auth()
            ->user();

        if ($user instanceof User) {
            // set new password to user
            $user->password = $validData['new_password'];

            $userModel = auth()
                ->getProvider();
            $userModel->save($user);
        }

        // Success!
        return redirect()
            ->back()
            ->with('message', lang('MyAccount.messages.passwordChangeSuccess'));
    }
}
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`<?php`
refactor: add php_codesniffer to define castopod's coding style based on psr-1 - add .editorconfig file - format all files to comply with castopod's coding style - switch parsedown dependency with commonmark library to better follow commonmark spec for markdown - add prettier command to format all project files at once closes #16 2020-08-04 11:25:22 +00:00
refactor: add strict types declaration before each file and fix activitypub issues fix some style issues 2021-06-08 09:52:11 +00:00			`declare(strict_types=1);`

feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`/**`
docs(init): create documentation website using vitepress - rename podlibre to adaures - rename castopod-host to castopod - simplify README and redirect to docs site - move INSTALL and UPDATE docs - add new gitlabci pipeline to deploy docs - upgrade node to v16 in Dockerfile 2022-02-19 16:06:11 +00:00			`* @copyright 2020 Ad Aures`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`* @license https://www.gnu.org/licenses/agpl-3.0.en.html AGPL3`
			`* @link https://castopod.org/`
			`*/`

refactor(auth): replace myth/auth with codeigniter/shield + define new roles closes #222 2022-10-15 11:22:08 +00:00			`namespace Modules\Auth\Controllers;`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00
refactor: update code base to php 8 and set phpstan lvl to 6 2021-05-14 17:59:35 +00:00			`use CodeIgniter\HTTP\RedirectResponse;`
refactor: add modules folder to phpstan paths + fix errors 2024-04-28 16:39:01 +00:00			`use CodeIgniter\Shield\Entities\User;`
refactor(auth): replace myth/auth with codeigniter/shield + define new roles closes #222 2022-10-15 11:22:08 +00:00			`use Modules\Admin\Controllers\BaseController;`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00
refactor: add phpstan and update code to adhere to level 5 - move and refactor Image.php from Libraries to Entities folder - update some database field names / types - update composer packages 2021-05-12 14:00:25 +00:00			`class MyAccountController extends BaseController`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`{`
refactor: update code base to php 8 and set phpstan lvl to 6 2021-05-14 17:59:35 +00:00			`public function index(): string`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`{`
feat(plugins): add html field type + CodeEditor component + rework html head generation update php and js packages to latest 2024-12-17 15:06:08 +00:00			`$this->setHtmlHead(lang('MyAccount.info'));`
feat(admin): update admin layout for better ux + update brand pine colors 2021-09-03 16:34:06 +00:00			`return view('my_account/view');`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`

refactor: update code base to php 8 and set phpstan lvl to 6 2021-05-14 17:59:35 +00:00			`public function changePassword(): string`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`{`
refactor: rewrite form pages using form helper - add installGateway to app config - update route names and groups - remove `author_name` and `author_email` from `episodes` table - remove `author_name` and `author_email` from `podcasts` table - remove `owner_id` + add `created_by` and `updated_by` fields in `podcasts` and `episodes` tables - remove unnecessary comments in database fields - remove confirm password inputs from auth forms for better ux - rename `pub_date` field to `published_at` and add publication time field in episode form closes #14, #28 2020-08-14 18:27:57 +00:00			`helper('form');`

feat(plugins): add html field type + CodeEditor component + rework html head generation update php and js packages to latest 2024-12-17 15:06:08 +00:00			`$this->setHtmlHead(lang('MyAccount.changePassword'));`
feat(admin): update admin layout for better ux + update brand pine colors 2021-09-03 16:34:06 +00:00			`return view('my_account/change_password');`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`

refactor: rename controller methods for views and actions to be more consistent add PermalinkEditor component 2024-12-18 16:05:25 +00:00			`public function changeAction(): RedirectResponse`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`{`
			`$rules = [`
style: update ecs config to align associative arrays arrows update composer dependencies to latest 2023-06-12 14:47:38 +00:00			`'password' => 'required',`
refactor: rewrite form pages using form helper - add installGateway to app config - update route names and groups - remove `author_name` and `author_email` from `episodes` table - remove `author_name` and `author_email` from `podcasts` table - remove `owner_id` + add `created_by` and `updated_by` fields in `podcasts` and `episodes` tables - remove unnecessary comments in database fields - remove confirm password inputs from auth forms for better ux - rename `pub_date` field to `published_at` and add publication time field in episode form closes #14, #28 2020-08-14 18:27:57 +00:00			`'new_password' => 'required\|strong_password\|differs[password]',`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`];`

style(ecs): add easy-coding-standard to enforce coding style rules for php - update .devcontainer settings: remove auto-formatting for php + set intelephense as default formatter - remove prettier php plugin as it lacks php 8 support - add captain hook action for checking style pre-commit - fix style with ecs on all files except views 2021-05-19 16:35:13 +00:00			`if (! $this->validate($rules)) {`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`return redirect()`
			`->back()`
			`->withInput()`
fix(auth): display error messages from validator 2023-10-03 16:21:08 +00:00			`->with('errors', $this->validator->getErrors());`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`

refactor: use Validation::getValidated() when using $this->validate() in controllers 2023-08-29 15:42:52 +00:00			`$validData = $this->validator->getValidated();`

refactor(auth): replace myth/auth with codeigniter/shield + define new roles closes #222 2022-10-15 11:22:08 +00:00			`// check credentials with the old password if logged in without magic link`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`$credentials = [`
refactor(auth): replace myth/auth with codeigniter/shield + define new roles closes #222 2022-10-15 11:22:08 +00:00			`'email' => auth()`
			`->user()`
style(ecs): add easy-coding-standard to enforce coding style rules for php - update .devcontainer settings: remove auto-formatting for php + set intelephense as default formatter - remove prettier php plugin as it lacks php 8 support - add captain hook action for checking style pre-commit - fix style with ecs on all files except views 2021-05-19 16:35:13 +00:00			`->email,`
refactor: use Validation::getValidated() when using $this->validate() in controllers 2023-08-29 15:42:52 +00:00			`'password' => $validData['password'],`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`];`

refactor(auth): replace myth/auth with codeigniter/shield + define new roles closes #222 2022-10-15 11:22:08 +00:00			`$validCreds = auth()`
			`->check($credentials);`

			`if (! $validCreds->isOK()) {`
			`return redirect()->back()`
refactor: rewrite form pages using form helper - add installGateway to app config - update route names and groups - remove `author_name` and `author_email` from `episodes` table - remove `author_name` and `author_email` from `podcasts` table - remove `owner_id` + add `created_by` and `updated_by` fields in `podcasts` and `episodes` tables - remove unnecessary comments in database fields - remove confirm password inputs from auth forms for better ux - rename `pub_date` field to `published_at` and add publication time field in episode form closes #14, #28 2020-08-14 18:27:57 +00:00			`->with('error', lang('MyAccount.messages.wrongPasswordError'));`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`

refactor: add modules folder to phpstan paths + fix errors 2024-04-28 16:39:01 +00:00			`$user = auth()`
			`->user();`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00
refactor: add modules folder to phpstan paths + fix errors 2024-04-28 16:39:01 +00:00			`if ($user instanceof User) {`
			`// set new password to user`
			`$user->password = $validData['new_password'];`

			`$userModel = auth()`
			`->getProvider();`
			`$userModel->save($user);`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`

			`// Success!`
			`return redirect()`
refactor: rewrite form pages using form helper - add installGateway to app config - update route names and groups - remove `author_name` and `author_email` from `episodes` table - remove `author_name` and `author_email` from `podcasts` table - remove `owner_id` + add `created_by` and `updated_by` fields in `podcasts` and `episodes` tables - remove unnecessary comments in database fields - remove confirm password inputs from auth forms for better ux - rename `pub_date` field to `published_at` and add publication time field in episode form closes #14, #28 2020-08-14 18:27:57 +00:00			`->back()`
refactor: add php_codesniffer to define castopod's coding style based on psr-1 - add .editorconfig file - format all files to comply with castopod's coding style - switch parsedown dependency with commonmark library to better follow commonmark spec for markdown - add prettier command to format all project files at once closes #16 2020-08-04 11:25:22 +00:00			`->with('message', lang('MyAccount.messages.passwordChangeSuccess'));`
feat(users): add myth-auth to handle users crud + add admin gateway only accessible by login - overwrite myth/auth config with castopod app needs - create custom views for users authentication - add admin area bootstrapped by admin controller - shift podcast and episodes crud to admin area - reorganize view layouts - update docs for database migration - add myth-auth to DEPENDENCIES.md closes #11 2020-07-10 12:20:25 +00:00			`}`
			`}`