security-package/issues/154: Add reCAPTCHA support for customer acccount edit.

Author: engcom-Foxtrot

ReCaptchaCustomer/Observer/EditCustomerObserver.php

@@ -0,0 +1,70 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types=1);
+
+namespace Magento\ReCaptchaCustomer\Observer;
+
+use Magento\Framework\App\Action\Action;
+use Magento\Framework\Event\Observer;
+use Magento\Framework\Event\ObserverInterface;
+use Magento\Framework\UrlInterface;
+use Magento\ReCaptchaUi\Model\IsCaptchaEnabledInterface;
+use Magento\ReCaptchaUi\Model\RequestHandlerInterface;
+
+/**
+ * EditCustomerObserver
+ */
+class EditCustomerObserver implements ObserverInterface
+{
+    /**
+     * @var UrlInterface
+     */
+    private $url;
+
+    /**
+     * @var IsCaptchaEnabledInterface
+     */
+    private $isCaptchaEnabled;
+
+    /**
+     * @var RequestHandlerInterface
+     */
+    private $requestHandler;
+
+    /**
+     * @param UrlInterface $url
+     * @param IsCaptchaEnabledInterface $isCaptchaEnabled
+     * @param RequestHandlerInterface $requestHandler
+     */
+    public function __construct(
+        UrlInterface $url,
+        IsCaptchaEnabledInterface $isCaptchaEnabled,
+        RequestHandlerInterface $requestHandler
+    ) {
+        $this->url = $url;
+        $this->isCaptchaEnabled = $isCaptchaEnabled;
+        $this->requestHandler = $requestHandler;
+    }
+
+    /**
+     * @param Observer $observer
+     * @return void
+     * @throws \Magento\Framework\Exception\LocalizedException
+     */
+    public function execute(Observer $observer): void
+    {
+        $key = 'customer_edit';
+        if ($this->isCaptchaEnabled->isCaptchaEnabledFor($key)) {
+            /** @var Action $controller */
+            $controller = $observer->getControllerAction();
+            $request = $controller->getRequest();
+            $response = $controller->getResponse();
+            $redirectOnFailureUrl = $this->url->getUrl('*/*/edit', ['_secure' => true]);
+
+            $this->requestHandler->execute($key, $request, $response, $redirectOnFailureUrl);
+        }
+    }
+}

ReCaptchaCustomer/etc/adminhtml/system.xml

@@ -25,6 +25,11 @@
                     <label>Enable for Create New Customer Account</label>
                     <source_model>Magento\ReCaptchaApi\Model\OptionSource\Type</source_model>
                 </field>
+                <field id="customer_edit" translate="label" type="select" sortOrder="135" showInDefault="1"
+                       showInWebsite="1" showInStore="0" canRestore="1">
+                    <label>Enable for Edit Customer Account</label>
+                    <source_model>Magento\ReCaptchaApi\Model\OptionSource\Type</source_model>
+                </field>
             </group>
         </section>
     </system>

ReCaptchaCustomer/etc/config.xml

@@ -13,6 +13,7 @@
                 <customer_login/>
                 <customer_forgot_password/>
                 <customer_create/>
+                <customer_edit/>
             </type_for>
         </recaptcha_frontend>
     </default>

ReCaptchaCustomer/etc/frontend/events.xml

@@ -16,6 +16,9 @@
     <event name="controller_action_predispatch_customer_account_createpost">
         <observer name="recaptcha_on_create_user" instance="Magento\ReCaptchaCustomer\Observer\CreateCustomerObserver"/>
     </event>
+    <event name="controller_action_predispatch_customer_account_editpost">
+        <observer name="recaptcha_on_edit_customer" instance="Magento\ReCaptchaCustomer\Observer\EditCustomerObserver"/>
+    </event>
     <event name="controller_action_predispatch_customer_account_forgotpasswordpost">
         <observer name="recaptcha_on_forgot_password"
                   instance="Magento\ReCaptchaCustomer\Observer\ForgotPasswordObserver"/>

ReCaptchaCustomer/view/frontend/layout/customer_account_edit.xml

@@ -0,0 +1,29 @@
+<?xml version="1.0"?>
+<!--
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+-->
+<page xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="urn:magento:framework:View/Layout/etc/page_configuration.xsd">
+    <body>
+        <referenceContainer name="form.additional.info">
+            <block class="Magento\ReCaptchaUi\Block\ReCaptcha"
+                   name="recaptcha"
+                   after="-"
+                   template="Magento_ReCaptchaFrontendUi::recaptcha.phtml"
+                   ifconfig="recaptcha_frontend/type_for/customer_edit">
+                <arguments>
+                    <argument name="recaptcha_for" xsi:type="string">customer_edit</argument>
+                    <argument name="jsLayout" xsi:type="array">
+                        <item name="components" xsi:type="array">
+                            <item name="recaptcha" xsi:type="array">
+                                <item name="component" xsi:type="string">Magento_ReCaptchaFrontendUi/js/reCaptcha</item>
+                            </item>
+                        </item>
+                    </argument>
+                </arguments>
+            </block>
+        </referenceContainer>
+    </body>
+</page>

ReCaptchaCustomer/view/frontend/web/css/source/_module.less

@@ -2,7 +2,7 @@
  * Copyright © Magento, Inc. All rights reserved.
  * See COPYING.txt for license details.
  */
-.login-container, .form-login {
+.login-container, .form-login, .form-edit-account {
     .g-recaptcha {
         margin-bottom: 10px !important;
     }