2020-07-28 22:56:26 +02:00
|
|
|
defmodule PhilomenaWeb.ConfirmationController do
|
|
|
|
use PhilomenaWeb, :controller
|
|
|
|
|
|
|
|
alias Philomena.Users
|
|
|
|
|
2020-09-12 19:43:16 +02:00
|
|
|
plug PhilomenaWeb.CaptchaPlug
|
|
|
|
plug PhilomenaWeb.CheckCaptchaPlug when action in [:create]
|
2020-07-28 22:56:26 +02:00
|
|
|
|
|
|
|
def new(conn, _params) do
|
|
|
|
render(conn, "new.html")
|
|
|
|
end
|
|
|
|
|
|
|
|
def create(conn, %{"user" => %{"email" => email}}) do
|
|
|
|
if user = Users.get_user_by_email(email) do
|
|
|
|
Users.deliver_user_confirmation_instructions(
|
|
|
|
user,
|
2024-06-06 22:28:35 +02:00
|
|
|
&url(~p"/confirmations/#{&1}")
|
2020-07-28 22:56:26 +02:00
|
|
|
)
|
|
|
|
end
|
|
|
|
|
|
|
|
# Regardless of the outcome, show an impartial success/error message.
|
|
|
|
conn
|
|
|
|
|> put_flash(
|
2023-11-23 17:07:49 +01:00
|
|
|
:alert,
|
2020-07-28 22:56:26 +02:00
|
|
|
"If your email is in our system and it has not been confirmed yet, " <>
|
|
|
|
"you will receive an email with instructions shortly."
|
|
|
|
)
|
|
|
|
|> redirect(to: "/")
|
|
|
|
end
|
|
|
|
|
|
|
|
# Do not log in the user after confirmation to avoid a
|
|
|
|
# leaked token giving the user access to the account.
|
|
|
|
def show(conn, %{"id" => token}) do
|
|
|
|
case Users.confirm_user(token) do
|
|
|
|
{:ok, _} ->
|
|
|
|
conn
|
|
|
|
|> put_flash(:info, "Account confirmed successfully.")
|
|
|
|
|> redirect(to: "/")
|
|
|
|
|
|
|
|
:error ->
|
|
|
|
conn
|
2023-11-23 17:07:49 +01:00
|
|
|
|> put_flash(:warning, "Confirmation link is invalid or it has expired.")
|
2020-07-28 22:56:26 +02:00
|
|
|
|> redirect(to: "/")
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|