Added page to approve registration with provider

Jefferson49 · Jefferson49 · commit ef886f871902 · 2025-01-26T16:00:03.000+01:00
diff --git a/resources/views/register-with-provider-page.phtml b/resources/views/register-with-provider-page.phtml
@@ -0,0 +1,71 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Jefferson49\Webtrees\Module\OAuth2Client;
+
+use Fisharebest\Webtrees\I18N;
+use Fisharebest\Webtrees\Http\RequestHandlers\LoginPage;
+use Fisharebest\Webtrees\Tree;
+use Jefferson49\Webtrees\Internationalization\MoreI18N;
+use Jefferson49\Webtrees\Module\OAuth2Client\RequestHandlers\RegisterWithProviderAction;
+
+
+/**
+ * @var string    $captcha
+ * @var bool      $show_caution
+ * @var string    $title
+ * @var Tree|null $tree
+ * @var string    $url
+ * @var string    $email
+ * @var string    $password_token
+ * @var string    $real_name
+ * @var string    $user_name
+ * @var string    $provider_name
+ */
+?>
+
+<h2 class="wt-page-title">
+    <?= $title ?>
+</h2>
+
+<div class="row mb-3"><?= view('icons/spacer') ?></div>
+
+<?php if ($show_caution) : ?>
+    <div class="wt-register-caution">
+        <?= MoreI18N::xlate('<p>Notice: By completing and submitting this form, you agree:</p><ul><li>to protect the privacy of living individuals listed on our site;</li><li>and in the text box below, to explain to whom you are related, or to provide us with information on someone who should be listed on our website.</li></ul>') ?>
+    </div>
+<?php endif ?>
+
+<div class="wt-page-options wt-page-options-login">
+    <div class="row mb-3">
+        <label class="col-sm-3 col-form-label wt-page-options-label">
+            <?= I18N::translate('Request a new account with') . ' ' . $provider_name ?>
+        </label>
+        <div class="col-sm-9 wt-page-options-value">
+            <form method="post" class="wt-page-options wt-page-options-register-with-provider" action="<?= e(route(RegisterWithProviderAction::class, [
+                    'tree'           => $tree instanceof Tree ? $tree->name() : null,
+                    'password_token' => $password_token,
+                    'email'          => $email,
+                    'real_name'      => $real_name,
+                    'user_name'      => $user_name,
+                    ])) ?>" >
+
+                <?= $captcha ?>
+
+                <button class="btn btn-primary">
+                    <?= MoreI18N::xlate('continue') ?>
+                </button>
+
+                <a href="<?= e(route(LoginPage::class, [
+                    'tree' => $tree instanceof Tree ? $tree->name() : null,
+                    'url'  => $url,
+                    ])) ?>" type="submit" class="btn btn-secondary">
+                    <?=  MoreI18N::xlate('cancel') ?>
+                </a>
+
+                <?= csrf_field() ?>
+            </form>
+        </div>
+    </div>
+</div>
diff --git a/src/LoginWithAuthorizationProviderAction.php b/src/LoginWithAuthorizationProviderAction.php
@@ -316,25 +316,19 @@ public function handle(ServerRequestInterface $request): ResponseInterface
             FlashMessages::addMessage($message, 'success');
             CustomModuleLog::addDebugLog($log_module, $message);
 
-            //Generate a request a new webtrees user account
-            $random_password  = md5($accessToken->getToken() . time());
-
-            $params = [
-                'comments'        => I18N::translate('Automatic user registration after sign in with authorization provider'),
-                'email'           => $email,
-                'password'        => $random_password,
-                'realname'        => $real_name,
-                'username'        => $user_name,
-            ];
-
-            $request         = Functions::getFromContainer(ServerRequestInterface::class);
-            $request         = $request->withAttribute('tree', $tree instanceof Tree ? $tree: null);
-            $request         = $request->withParsedBody($params);
-
-            //Use a deactivated captcha service to call the request handler directly from the code
-            $request_handler = new RegisterAction(new DeactivatedCaptchaService, new EmailService, new RateLimitService(), new UserService);
-        
-            return $request_handler->handle($request);
+            //Show register with provider page
+            return $this->viewResponse(OAuth2Client::viewsNamespace() . '::register-with-provider-page', [
+                'captcha'        => $this->captcha_service->createCaptcha(),
+                'show_caution'   => Site::getPreference('SHOW_REGISTER_CAUTION') === '1',
+                'title'          => I18N::translate('Request a new user account with an authorization provider'),
+                'tree'           => $tree,
+                'url'            => $url,
+                'provider_name'  => $provider_name,
+                'email'          => $email,
+                'password_token' => $accessToken->getToken(),
+                'real_name'      => $real_name,
+                'user_name'      => $user_name,
+            ]);
         }            
 
         //Login
diff --git a/src/OAuth2Client.php b/src/OAuth2Client.php
@@ -45,7 +45,6 @@
 use Fisharebest\Webtrees\Http\RequestHandlers\HomePage;
 use Fisharebest\Webtrees\Http\RequestHandlers\LoginPage;
 use Fisharebest\Webtrees\Http\RequestHandlers\Logout;
-use Fisharebest\Webtrees\Http\RequestHandlers\RegisterPage;
 use Fisharebest\Webtrees\I18N;
 use Fisharebest\Webtrees\Menu;
 use Fisharebest\Webtrees\Module\AbstractModule;
@@ -70,6 +69,7 @@
 use Jefferson49\Webtrees\Log\CustomModuleLogInterface;
 use Jefferson49\Webtrees\Module\OAuth2Client\Factories\AuthorizationProviderFactory;
 use Jefferson49\Webtrees\Module\OAuth2Client\LoginWithAuthorizationProviderAction;
+use Jefferson49\Webtrees\Module\OAuth2Client\RequestHandlers\RegisterWithProviderAction;
 use GuzzleHttp\Client;
 use Illuminate\Support\Collection;
 use GuzzleHttp\Exception\GuzzleException;
@@ -103,6 +103,7 @@ class OAuth2Client extends AbstractModule implements
 
     //Routes
 	public const REDIRECT_ROUTE = '/OAuth2Client';
+	public const REGISTER_PROVIDER_ROUTE = '/register-with-provider-action{/tree}';
 
 	//Github repository
 	public const GITHUB_REPO = 'Jefferson49/OAuth2-Client';
@@ -201,6 +202,12 @@ public function boot(): void
         $router
         ->get(LoginWithAuthorizationProviderAction::class, self::REDIRECT_ROUTE)
         ->allows(RequestMethodInterface::METHOD_POST);
+
+        //Register a route for the RegisterWithProviderAction request handler
+        $router = Registry::routeFactory()->routeMap();                 
+        $router
+        ->get(RegisterWithProviderAction::class, self::REGISTER_PROVIDER_ROUTE)
+        ->allows(RequestMethodInterface::METHOD_POST);        
     }
 	
     /**
diff --git a/src/RequestHandlers/RegisterWithProviderAction.php b/src/RequestHandlers/RegisterWithProviderAction.php
@@ -0,0 +1,137 @@
+<?php
+
+/**
+ * webtrees: online genealogy
+ * Copyright (C) 2024 webtrees development team
+ *                    <http://webtrees.net>
+ *
+ * Fancy Research Links (webtrees custom module):
+ * Copyright (C) 2022 Carmen Just
+ *                    <https://justcarmen.nl>
+ *
+ * OAuth2Client (webtrees custom module):
+ * Copyright (C) 2024 Markus Hemprich
+ *                    <http://www.familienforschung-hemprich.de>
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ *
+ * 
+ * OAuth2-Client
+ *
+ * A weebtrees(https://webtrees.net) 2.1 custom module to implement an OAuth2 client
+ * 
+ */
+
+declare(strict_types=1);
+
+namespace Jefferson49\Webtrees\Module\OAuth2Client\RequestHandlers;
+
+use Fisharebest\Webtrees\FlashMessages;
+use Fisharebest\Webtrees\Http\Exceptions\HttpNotFoundException;
+use Fisharebest\Webtrees\Http\RequestHandlers\LoginPage;
+use Fisharebest\Webtrees\Http\RequestHandlers\RegisterAction;
+use Fisharebest\Webtrees\Http\ViewResponseTrait;
+use Fisharebest\Webtrees\I18N;
+use Fisharebest\Webtrees\Services\CaptchaService;
+use Fisharebest\Webtrees\Services\EmailService;
+use Fisharebest\Webtrees\Services\RateLimitService;
+use Fisharebest\Webtrees\Services\UserService;
+use Fisharebest\Webtrees\Site;
+use Fisharebest\Webtrees\Tree;
+use Fisharebest\Webtrees\Validator;
+use Jefferson49\Webtrees\Helpers\DeactivatedCaptchaService;
+use Jefferson49\Webtrees\Helpers\Functions;
+use Jefferson49\Webtrees\Internationalization\MoreI18N;
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+use Psr\Http\Server\RequestHandlerInterface;
+
+use Exception;
+
+/**
+ * Register with an authorization provider
+ */
+class RegisterWithProviderAction implements RequestHandlerInterface
+{
+    use ViewResponseTrait;
+
+    private CaptchaService $captcha_service;
+
+    /**
+     * @param CaptchaService $captcha_service
+     */
+    public function __construct(CaptchaService $captcha_service)
+    {
+        $this->captcha_service = $captcha_service;
+    }
+
+    /**
+     * @param ServerRequestInterface $request
+     *
+     * @return ResponseInterface
+     */
+    public function handle(ServerRequestInterface $request): ResponseInterface
+    {
+        $this->checkRegistrationAllowed();
+
+        $tree               = Validator::attributes($request)->treeOptional();
+
+        $password_token     = Validator::queryParams($request)->string('password_token', '');
+        $email              = Validator::queryParams($request)->string('email', '');
+        $real_name          = Validator::queryParams($request)->string('real_name', '');
+        $user_name          = Validator::queryParams($request)->string('user_name', '');
+
+        try {
+            if ($this->captcha_service->isRobot($request)) {
+                throw new Exception(MoreI18N::xlate('Please try again.'));
+            }
+        } 
+        catch (Exception $ex) {
+            FlashMessages::addMessage($ex->getMessage(), 'danger');
+
+            return redirect(route(LoginPage::class));
+        }        
+
+        //Generate a request for a new webtrees user account
+        $random_password  = md5($password_token . time());
+
+        $params = [
+            'comments'        => I18N::translate('Automatic user registration after sign in with authorization provider'),
+            'email'           => $email,
+            'password'        => $random_password,
+            'real_name'       => $real_name,
+            'user_name'       => $user_name,
+        ];
+
+        $request         = Functions::getFromContainer(ServerRequestInterface::class);
+        $request         = $request->withAttribute('tree', $tree instanceof Tree ? $tree: null);
+        $request         = $request->withParsedBody($params);
+
+        //Use a deactivated captcha service to call the request handler directly from the code
+        $request_handler = new RegisterAction(new DeactivatedCaptchaService, new EmailService, new RateLimitService(), new UserService);
+    
+        return $request_handler->handle($request);
+    }
+
+    /**
+     * Check that visitors are allowed to register on this site.
+     *
+     * @return void
+     * @throws HttpNotFoundException
+     */
+    private function checkRegistrationAllowed(): void
+    {
+        if (Site::getPreference('USE_REGISTRATION_MODULE') !== '1') {
+            throw new HttpNotFoundException();
+        }
+    }
+}
