owlchester · ilestis · Feb 19, 2024 · Jan 24, 2024 · Jan 24, 2024 · Feb 1, 2024
diff --git a/app/Http/Controllers/Settings/SubscriptionController.php b/app/Http/Controllers/Settings/SubscriptionController.php
@@ -10,6 +10,7 @@
 use App\Models\Tier;
 use App\Services\SubscriptionService;
 use App\Services\SubscriptionUpgradeService;
+use App\Services\Users\EmailValidationService;
 use App\User;
 use Exception;
 use Illuminate\Http\Request;
@@ -22,14 +23,17 @@ class SubscriptionController extends Controller
 
     protected SubscriptionUpgradeService $subscriptionUpgrade;
 
+    protected EmailValidationService $emailValidation;
+
     /**
      * SubscriptionController constructor.
      */
-    public function __construct(SubscriptionService $service, SubscriptionUpgradeService $subscriptionUpgradeService)
+    public function __construct(SubscriptionService $service, SubscriptionUpgradeService $subscriptionUpgradeService, EmailValidationService $validationService)
     {
         $this->middleware(['auth', 'identity', 'subscriptions']);
         $this->subscription = $service;
         $this->subscriptionUpgrade = $subscriptionUpgradeService;
+        $this->emailValidation = $validationService;
     }
 
     public function index()
@@ -94,6 +98,10 @@ public function change(Request $request, Tier $tier)
         $upgrade = $this->subscriptionUpgrade->user($user)->tier($tier)->upgradePrice($period);
         $currency = $user->currencySymbol();
 
+        if ($user->isFrauding()) {
+            $this->emailValidation->user($user)->requiresEmail();
+        }
+
         return view('settings.subscription.change', compact(
             'tier',
             'period',

diff --git a/app/Http/Controllers/User/EmailValidationController.php b/app/Http/Controllers/User/EmailValidationController.php
@@ -0,0 +1,34 @@
+<?php
+
+namespace App\Http\Controllers\User;
+
+use App\Http\Controllers\Controller;
+use App\Models\UserValidation;
+use App\User;
+use Illuminate\Http\Request;
+
+class EmailValidationController extends Controller
+{
+
+    /**
+     * Create a new controller instance.
+     *
+     * @return void
+     */
+    public function __construct()
+    {
+        $this->middleware('auth');
+    }
+
+    public function validateEmail(Request $request, UserValidation $userValidation)
+    {
+        if (auth()->user()->id != $userValidation->user_id) {
+            return response()->redirectTo(route('settings.subscription'))->withError(__('emails/validation.error'));
+        }
+
+        $userValidation->is_valid = true;
+        $userValidation->saveQuietly();
+
+        return response()->redirectTo(route('settings.subscription'))->withSuccess(__('emails/validation.success'));
+    }
+}
diff --git a/app/Jobs/Emails/Subscriptions/EmailValidationJob.php b/app/Jobs/Emails/Subscriptions/EmailValidationJob.php
@@ -0,0 +1,53 @@
+<?php
+
+namespace App\Jobs\Emails\Subscriptions;
+
+use App\Mail\Subscription\User\ValidationEmail;
+use App\Models\UserValidation;
+use App\User;
+use Illuminate\Bus\Queueable;
+use Illuminate\Contracts\Queue\ShouldQueue;
+use Illuminate\Foundation\Bus\Dispatchable;
+use Illuminate\Queue\InteractsWithQueue;
+use Illuminate\Queue\SerializesModels;
+use Illuminate\Support\Facades\Mail;
+
+class EmailValidationJob implements ShouldQueue
+{
+    use Dispatchable;
+    use InteractsWithQueue;
+    use Queueable;
+    use SerializesModels;
+
+    protected int $user;
+    protected string $token;
+
+    /**
+     */
+    public function __construct(User $user, UserValidation $token)
+    {
+        $this->user = $user->id;
+        $this->token = $token->id;
+    }
+
+    /**
+     * @throws \Illuminate\Contracts\Container\BindingResolutionException
+     */
+    public function handle()
+    {
+        // Small check in case the user deleted their account before the queue could get to them
+        /** @var User|null $user */
+        $user = User::find($this->user);
+        if (empty($user)) {
+            return;
+        }
+        $userValidation = UserValidation::find($this->token);
+        $url = route('validation.email', ['userValidation' => $userValidation]);
+
+        Mail::to($user->email)
+            ->locale($user->locale)
+            ->send(
+                new ValidationEmail($user, $url)
+            );
+    }
+}
diff --git a/app/Mail/Subscription/User/ValidationEmail.php b/app/Mail/Subscription/User/ValidationEmail.php
@@ -0,0 +1,45 @@
+<?php
+
+namespace App\Mail\Subscription\User;
+
+use App\User;
+use Illuminate\Bus\Queueable;
+use Illuminate\Mail\Mailable;
+use Illuminate\Queue\SerializesModels;
+
+class ValidationEmail extends Mailable
+{
+    use Queueable;
+    use SerializesModels;
+
+    public User $user;
+    public string $url;
+
+
+    public $date;
+
+    /**
+     * Create a new message instance.
+     *
+     * @return void
+     */
+    public function __construct(User $user, string $url)
+    {
+        $this->user = $user;
+        $this->url = $url;
+    }
+
+    /**
+     * Build the message.
+     *
+     * @return $this
+     */
+    public function build()
+    {
+        return $this
+            ->from(['address' => config('app.email'), 'name' => 'Kanka Team'])
+            ->subject(__('emails/subscriptions/validation.title'))
+            ->view('emails.subscriptions.validation.user-html')
+            ->tag('validation');
+    }
+}
diff --git a/app/Models/Relations/UserRelations.php b/app/Models/Relations/UserRelations.php
@@ -18,8 +18,10 @@
 use App\Models\UserApp;
 use App\Models\UserFlag;
 use App\Models\Users\Tutorial;
+use App\Models\UserValidation;
 use Illuminate\Database\Eloquent\Collection;
 use Illuminate\Database\Eloquent\Relations\HasMany;
+use Illuminate\Database\Eloquent\Relations\HasOne;
 
 /**
  * Trait UserRelations
@@ -199,4 +201,9 @@ public function upvotes(): HasMany
     {
         return $this->hasMany(FeatureVote::class);
     }
+
+    public function userValidation(): HasOne|UserValidation
+    {
+        return $this->hasOne(UserValidation::class, 'user_id', 'id');
+    }
 }
diff --git a/app/Models/Scopes/UserScope.php b/app/Models/Scopes/UserScope.php
@@ -8,4 +8,5 @@
  */
 trait UserScope
 {
+
 }
diff --git a/app/Models/UserFlag.php b/app/Models/UserFlag.php
@@ -16,6 +16,7 @@ class UserFlag extends Model
 
     public const FLAG_INACTIVE_1 = 'inactive_1';
     public const FLAG_INACTIVE_2 = 'inactive_2';
+    public const FLAG_EMAIL = 'email';
 
     public function user()
     {

diff --git a/app/Models/UserValidation.php b/app/Models/UserValidation.php
@@ -0,0 +1,57 @@
+<?php
+
+namespace App\Models;
+
+use App\User;
+use Illuminate\Database\Eloquent\Model;
+use Illuminate\Database\Eloquent\Prunable;
+use Illuminate\Database\Eloquent\Builder;
+
+/**
+ * @property int $id
+ * @property int $user_id
+ * @property string $token
+ * @property bool $is_valid
+ * @property User $user
+ *
+ * @method static self|Builder valid()
+ */
+class UserValidation extends Model
+{
+    use Prunable;
+
+    /** @var string[]  */
+    protected $fillable = [
+        'is_valid',
+        'token'
+    ];
+
+    public function getRouteKeyName()
+    {
+        return 'token';
+    }
+
+    /**
+     * @return \Illuminate\Database\Eloquent\Relations\BelongsTo
+     */
+    public function user()
+    {
+        return $this->belongsTo(User::class);
+    }
+
+    /**
+     * Automatically prune old elements from the db
+     * @return \Illuminate\Database\Eloquent\Builder
+     */
+    public function prunable()
+    {
+        return static::where('is_valid', false)->where('created_at', '<=', now()->subDays(1));
+    }
+
+    /**
+     */
+    public function scopeValid(Builder $query, bool $valid = true): Builder
+    {
+        return $query->where(['is_valid' => $valid]);
+    }
+}
diff --git a/app/Providers/RouteServiceProvider.php b/app/Providers/RouteServiceProvider.php
@@ -10,6 +10,7 @@
 use App\Models\EntityType;
 use App\Models\Plugin;
 use App\Models\Tier;
+use App\Models\UserValidation;
 use Illuminate\Support\Facades\Route;
 use Illuminate\Foundation\Support\Providers\RouteServiceProvider as ServiceProvider;
 
@@ -42,6 +43,7 @@ public function boot(): void
             return Campaign::acl($value)->firstOrFail();
         });
         Route::model('entityType', EntityType::class);
+        Route::model('userValidation', UserValidation::class);
     }
 
     /**

diff --git a/app/Services/Users/EmailValidationService.php b/app/Services/Users/EmailValidationService.php
@@ -0,0 +1,43 @@
+<?php
+
+namespace App\Services\Users;
+
+use App\Traits\UserAware;
+use App\Models\UserFlag;
+use App\Models\UserValidation;
+use App\Jobs\Emails\Subscriptions\EmailValidationJob;
+use Illuminate\Support\Str;
+
+class EmailValidationService
+{
+    use UserAware;
+
+    public function requiresEmail(): void
+    {
+        $token = UserValidation::where('user_id', $this->user->id)->first();
+        if ($token && $token->is_valid) {
+            return;
+        }
+
+        $flag = UserFlag::where('user_id', $this->user->id)
+            ->where('flag', UserFlag::FLAG_EMAIL)
+            ->first();
+        // If we've already notified the user, no need to notify them again
+        if ($flag) {
+            return;
+        }
+
+        $flag = new UserFlag();
+        $flag->user_id = $this->user->id;
+        $flag->flag = UserFlag::FLAG_EMAIL;
+        $flag->save();
+
+        $token = new UserValidation();
+        $token->token = Str::uuid();
+        $token->user_id = $this->user->id;
+        $token->is_valid = false;
+        $token->save();
+
+        EmailValidationJob::dispatch($this->user, $token);
+    }
+}
diff --git a/app/User.php b/app/User.php
@@ -433,6 +433,14 @@
         if (!empty($this->provider)) {
             return false;
         }
+
+        $validation = $this->userValidation()->valid()->first();
+        if ($validation) {
+            return false;
+        }
+
+        return true;
+
         // If the account was created recently, add some small checks
         /*if ($this->created_at->isAfter(Carbon::now()->subHour())) {
             // User's name is directly in the campaign name
@@ -447,7 +455,7 @@
            }
        }*/
        // Recent fails are a clear indicator of someone cycling through cards
        return $this->logs()
            ->where('type_id', UserLog::TYPE_FAILED_CHARGE_EMAIL)
            ->whereDate('created_at', '>=', Carbon::now()->subHour()->toDateString())
            ->count() >= 2;

diff --git a/database/migrations/2024_01_22_203110_create_user_validations_table.php b/database/migrations/2024_01_22_203110_create_user_validations_table.php
@@ -0,0 +1,34 @@
+<?php
+
+use Illuminate\Database\Migrations\Migration;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Support\Facades\Schema;
+
+return new class () extends Migration {
+    /**
+     * Run the migrations.
+     */
+    public function up(): void
+    {
+        Schema::create('user_validations', function (Blueprint $table) {
+            $table->id();
+            $table->uuid('token');
+            $table->unsignedInteger('user_id');
+            $table->boolean('is_valid')->default(false);
+            $table->timestamps();
+
+            $table->foreign('user_id')->references('id')->on('users')->cascadeOnDelete();
+            $table->index(['is_valid']);
+
+
+        });
+    }
+
+    /**
+     * Reverse the migrations.
+     */
+    public function down(): void
+    {
+        Schema::dropIfExists('user_validations');
+    }
+};
diff --git a/lang/en/emails/subscriptions/validation.php b/lang/en/emails/subscriptions/validation.php
@@ -0,0 +1,5 @@
+<?php
+
+return [
+    'title'     => 'Kanka account email validation.',
+];
diff --git a/lang/en/emails/validation.php b/lang/en/emails/validation.php
@@ -0,0 +1,7 @@
+<?php
+
+return [
+    'modal'     => 'An email validation is required for subscriptions. Please check your inbox for a link to confirm your email before continuing the subscription process.',
+    'success'   => 'Email successfully validated.',
+    'error'     => 'Validation failed, please try again.',
+];
-Original file line number
+Diff line change
@@ Expand Up / @@ -8,4 +8,5 @@ @@
      */
     trait UserScope
     {
     }