bert.hausmans/crewli
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
96eb7e91e73b879437f30997b6490c087090063b
crewli/api/app/Http/Controllers/Api/V1/PasswordResetController.php
bert.hausmans 65978104d8 feat: complete email infrastructure with queue, templates, logging, and API 
Adds the full transactional email system:
- Redis queue (QUEUE_CONNECTION=redis), SES config in .env.example
- 3 migrations: organisation_email_settings, organisation_email_templates, email_logs
- EmailTemplateType and EmailLogStatus enums with Dutch defaults
- EmailService as central entry point for all email sending
- SendTransactionalEmail queued job with retries and idempotency
- TransactionalMail mailable with responsive HTML + plain text templates
- Organisation-level branding (colors, logo, footer, reply-to)
- Per-type template overrides with {variable} substitution
- Email log with filtering by status, type, date range, recipient
- Preview and send-test endpoints for template management
- API endpoints: email-settings, email-templates (CRUD), email-logs (read-only)
- Integrated into existing flows: invitations, password reset, email
  verification, registration approval/rejection
- 37 new tests across 4 test files, all existing tests updated

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-15 20:12:21 +02:00

90 lines
3.0 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
namespace App\Http\Controllers\Api\V1;
use App\Enums\EmailTemplateType;
use App\Http\Controllers\Controller;
use App\Models\User;
use App\Services\EmailService;
use Illuminate\Http\JsonResponse;
use Illuminate\Http\Request;
use Illuminate\Support\Facades\Hash;
use Illuminate\Support\Facades\Password;
use Illuminate\Validation\Rules\Password as PasswordRule;
final class PasswordResetController extends Controller
{
public function __construct(
private readonly EmailService $emailService,
) {}
public function sendResetLink(Request $request): JsonResponse
{
$request->validate([
'email' => ['required', 'email'],
'app' => ['required', 'in:app,portal,admin'],
]);
$frontendUrls = [
'admin' => config('app.frontend_admin_url'),
'app' => config('app.frontend_app_url'),
'portal' => config('app.frontend_portal_url'),
];
$frontendUrl = $frontendUrls[$request->input('app')];
Password::sendResetLink(
['email' => strtolower($request->email)],
function (User $user, string $token) use ($frontendUrl) {
$organisation = $user->organisations()->first();
$this->emailService->send(
type: EmailTemplateType::PASSWORD_RESET,
recipientEmail: $user->email,
recipientName: $user->first_name . ' ' . $user->last_name,
actionUrl: $frontendUrl . '/reset-password?token=' . $token . '&email=' . urlencode($user->email),
organisation: $organisation,
userId: $user->id,
);
}
);
// Always return success (don't leak whether email exists)
return $this->success(
message: 'Als dit e-mailadres bij ons bekend is, ontvang je een link om je wachtwoord te herstellen.'
);
}
public function resetPassword(Request $request): JsonResponse
{
$request->validate([
'token' => ['required'],
'email' => ['required', 'email'],
'password' => ['required', 'confirmed', PasswordRule::min(8)->mixedCase()->numbers()],
]);
$status = Password::reset(
$request->only('email', 'password', 'password_confirmation', 'token'),
function (User $user, string $password) {
$user->forceFill(['password' => Hash::make($password)])->save();
// Revoke all existing tokens (force re-login everywhere)
$user->tokens()->delete();
activity()
->causedBy($user)
->performedOn($user)
->log('user.password_reset');
}
);
if ($status === Password::PASSWORD_RESET) {
return $this->success(message: 'Je wachtwoord is succesvol gewijzigd. Je kunt nu inloggen.');
}
return $this->error(__($status), 422);
}
}
Reference in New Issue View Git Blame Copy Permalink