pridanie API na aktivaciu uctu

2025-11-04 17:28:27 +01:00
parent 7feba39bc9
commit fcf5ca373b
2 changed files with 29 additions and 1 deletions
--- a/backend/app/Http/Controllers/Auth/RegisteredUserController.php
+++ b/backend/app/Http/Controllers/Auth/RegisteredUserController.php
@@ -3,6 +3,7 @@
 namespace App\Http\Controllers\Auth;

 use App\Http\Controllers\Controller;
+use App\Mail\UserAccountActivated;
 use App\Mail\UserPasswordReset;
 use App\Mail\UserRegistrationCompleted;
 use App\Models\Company;
@@ -25,6 +26,7 @@ class RegisteredUserController extends Controller
    public function store(Request $request): Response
    {
        $password = bin2hex(random_bytes(16));
+        $activation_token = bin2hex(random_bytes(16));

        $request->validate([
            'email' => ['required', 'string', 'lowercase', 'email', 'max:255', 'unique:' . User::class],
@@ -58,6 +60,7 @@ class RegisteredUserController extends Controller
                'phone' => $request->phone,
                'role' => $request->role,
                'password' => Hash::make($password),
+                'activation_token' => $activation_token
            ]);

            if ($user->role === "STUDENT") {
@@ -83,12 +86,33 @@ class RegisteredUserController extends Controller
            throw $e;
        }

-        Mail::to($user)->sendNow(new UserRegistrationCompleted($user->name, $password));
+        Mail::to($user)->sendNow(new UserRegistrationCompleted($user->name, $activation_token));
        event(new Registered($user));

        return response()->noContent();
    }

+    public function activate(Request $request) {
+        $request->validate([
+            'token' => ['required', 'string', 'exists:users,activation_token'],
+            'password' => ['required', 'string', 'min:8'],
+        ]);
+
+        $user = User::where('activation_token', '=', $request->token)->first();
+                
+        if (!$user) {
+            return response()->json(['message' => 'Invalid activation token'], 400);
+        }
+
+        $user->active = true;
+        $user->activation_token = null;
+        $user->password = Hash::make($request->password);
+        $user->save();
+
+        Mail::to($user)->sendNow(new UserAccountActivated($user->name));
+        return response()->noContent();
+    }
+
    public function reset_password(Request $request): Response
    {
        $request->validate([
--- a/backend/routes/api.php
+++ b/backend/routes/api.php
@@ -22,6 +22,10 @@ Route::middleware(['auth:sanctum'])->get('/user', function (Request $request) {
    return $user;
 });

+Route::prefix('/account')->group(function () {
+    Route::post("/activate", [RegisteredUserController::class, 'activate']);
+});
+
 Route::middleware(['auth:sanctum'])->prefix('/students')->group(function () {
    Route::get('/', [StudentDataController::class, 'all']);
    Route::get('/{id}', [StudentDataController::class, 'get']);