Symfony 4按用户名更改密码 - 电子邮件不能为空

Introduction

I have been trying to figure out how to create a reset password form that's governed by username value.

The Error

Path        Message                           Invalid value     Violation
data.email  This value should not be blank.   null 



ConstraintViolation {#945 ▼
  -message: "This value should not be blank."
  -messageTemplate: "This value should not be blank."
  -parameters: [▶]
  -plural: null
  -root: Form {#620 ▶}
  -propertyPath: "data.email"
  -invalidValue: null
  -constraint: NotBlank {#477 …}
  -code: "c1051bb4-d103-4f74-8988-acbcafc7fdc3"
  -cause: null
}

What's expected

Update my User Object with the new password.

My Code

ForgotController.php

I know this probably isn't the correct way to get the password, but searching Symfony 4 forgotten password form brings up symfony2.4 posts which aren't relevant to my version

    <?php
        namespace App\Controller\User;

        use App\Entity\User;
        use App\Form\User\ChangePasswordType;
        use App\Repository\UserRepository;
        use Symfony\Bundle\FrameworkBundle\Controller\Controller;
        use Symfony\Component\HttpFoundation\Request;
        use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;

        class ForgotController extends Controller
        {
            public function forgot(Request $request, UserPasswordEncoderInterface $encoder)
            {
                $entityManager = $this->getDoctrine()->getManager();

                $changePassword = $request->request->get('change_password');

                $username = $changePassword['username'];
                $password = $changePassword['plainPassword']['first'];

                $user       = $entityManager->getRepository(User::class)->findBy(['username' => $username]);
                $userEntity = new User();

                if (!$user) {
                    $this->addFlash('danger', 'User not found for '. $username);
                }

                $form = $this->createForm(ChangePasswordType::class, $userEntity);
                $form->handleRequest($request);

                if ($form->isSubmitted() && $form->isValid()) {
                    try {
                        $pass = $encoder->encodePassword($userEntity, $password);

                        $userEntity->setPassword($pass);
                        $entityManager->flush();

                        $this->addFlash('success', 'Password Changed!');
                    } catch (Exception $e) {
                        $this->addFlash('danger', 'Something went skew-if. Please try again.');
                    }

                    return $this->redirectToRoute('login');
                }

                return $this->render('user/forgot.html.twig', array('form' => $form->createView()));
            }
        }

ChangePasswordType.php

<?php
    namespace App\Form\User;

    use App\Entity\User;
    use Symfony\Component\Form\AbstractType;
    use Symfony\Component\Form\Extension\Core\Type\PasswordType;
    use Symfony\Component\Form\Extension\Core\Type\RepeatedType;
    use Symfony\Component\Form\Extension\Core\Type\TextType;
    use Symfony\Component\Form\FormBuilderInterface;
    use Symfony\Component\OptionsResolver\OptionsResolver;

    class ChangePasswordType extends AbstractType
    {
        public function buildForm(FormBuilderInterface $builder, array $options)
        {
            $builder->add('username', TextType::class)
                ->add('plainPassword', RepeatedType::class, array(
                'type' => PasswordType::class,
                'first_options' => array('label' => 'New Password'),
                'second_options' => array('label' => 'Repeat New Password')
            ));
        }

        public function configureOptions(OptionsResolver $resolver)
        {
            $resolver->setDefaults(array(
                'data_class' => User::class
            ));
        }
    }

forgot.html.twig

{% include 'builder/header.html.twig' %}

<div class="user-container" id="user-content">
    {% block body %}
        {% include 'builder/notices.html.twig' %}

        <div class="user-container">
            <i class="fas fa-user-edit fa-5x"></i>
        </div>

        <hr />

        {{ form_start(form) }}
            {{ form_row(form.username, { 'attr': {'class': 'form-control'} }) }}
            {{ form_row(form.plainPassword.first, { 'attr': {'class': 'form-control'} }) }}
            {{ form_row(form.plainPassword.second, { 'attr': {'class': 'form-control'} }) }}

            <div class="register-btn-container">
                <button class="btn btn-danger" id="return-to-dash-btn" type="button">Cancel!</button>
                <button class="btn btn-primary" type="submit">Update!</button>
            </div>
        {{ form_end(form) }}
    {% endblock %}
</div>

{% include 'builder/footer.html.twig' %}

I'm not sure why email is even being mentioned unless it's trying to insert a new user into a database but it shouldn't be trying to do that based on my controller? How can I go about adding a forgot password form that's identified by username?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongshi9407 2018-05-25 14:28
关注
Since your change password form only needs two fields we will use an array instead of a user entity. Need a slight tweak to ChangePasswordType:

// ChangePasswordType public function configureOptions(OptionsResolver $resolver) { $resolver->setDefaults(array( //'data_class' => User::class )); }

Here is a working forgot action:

public function forgot( Request $request, UserPasswordEncoderInterface $encoder, UserRepository $userRepository) { $userInfo = ['username' => null, 'plainPassword' => null]; $form = $this->createForm(ChangePasswordType::class, $userInfo); $form->handleRequest($request); if ($form->isSubmitted() && $form->isValid()) { $userInfo = $form->getData(); $username = $userInfo['username']; $plainPassword = $userInfo['plainPassword']; $user = $userRepository->findOneBy(['username' => $username]); if ($user === null) { $this->addFlash('danger', 'Invalid username'); return $this->redirectToRoute('forgot'); } $password = $encoder->encodePassword($user, $plainPassword); $user->setPassword($password); $userRepository->flush(); return $this->redirectToRoute('login'); } return $this->render('user/forgot.html.twig', array('form' => $form->createView())); }

UserRepository is injected which get's rid of all the doctrine nonsense. There is one caveat here that I'll get back to.

We build the userInfo array and let the form processing do it's thing. We really don't want to mess with getting attributes directly from the request object if we don't have to.

Then we get our actual user entity to update. Notice the use of findOneBy instead of findBy. We check to make sure username is valid. If you really wanted to get fancy then you could add a validation constraint to the form to do this check automatically.

I got rid of all the try/catch stuff. It just clutters up your code. By this point if an exception is thrown then it is truly exceptional and can be handled by the default exception handlers.

You got the password encoder stuff just right.

And then instead of $entityManager->flush() I used $userRepository->flush(); Out of the box there is no flush method on repositories so you need to add one:

// UserRepository public function flush() { $this->_em->flush(); }

I personally like dealing with just repositories and not the entity manager. But if want, you can just go back and inject the manager instead of the repository. Your call.

And as mentioned in the comments, you do want to add some security to prevent users from changing other users passwords.
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(1条)

报告相同问题？

关注问题

Symfony 4按用户名更改密码 - 电子邮件不能为空 php symfony
2018-05-25 13:15

回答 2 已采纳 Since your change password form only needs two fields we will use an array instead of a user entit
用户名和密码在尝试登录时不正确 - symfony php symfony
2017-02-15 12:11

回答 1 已采纳 My best guess is the password you are passing into the query is wrong. Depending on how you set u
Symfony - 我不能用树枝定制我的表格 php symfony
2019-04-01 10:12

回答 2 已采纳 I'm not quite sure, how bend on reinventing the wheel you are. But symfony has a lot of stuff prep
按值传递时 php必须复制值,PHP面试题目总结归纳
2021-03-24 08:49

撕扒的博客 20、谈谈asp,php,jsp的优缺点(1分)asp是需要依赖IIS,是微软开发的语言php和jsp可以依赖apache或者 nginx等其他服务器21、谈谈对mvc的认识(1分)model : 数据结构层view ：展现control ：接收和判断处理输入22、写出...
Symfony 4 - 类的对象无法转换为String php symfony
2019-05-02 08:34

回答 1 已采纳 Catchable Fatal Error: Object of class App\Entity\Entreprise You need to implement the __toSt
如何在Symfony HttpClient组件的CurlHttpClient中添加具有IP /端口和用户名/密码的代理？ php symfony
2019-06-05 14:43

回答 2 已采纳 You need to specify protocol (e.g. socks5, socks4 etc) use Symfony\Component\HttpClient\CurlHttpC
Symfony3授权不起作用 - 始终是错误的凭据 php symfony
2017-04-04 11:08

回答 1 已采纳 I see some strange differences with my security.yml. Look and find: security: encoders:
php管理员登录文件,使用PHP文件重置管理员密码（Drupal 8）
2021-03-17 04:26

weixin_39789042的博客某些托管环境不允许SSH访问安装了Drupal站点的Web服务器，这使得无法通过命令行恢复Drupal 8管理员帐户密码。当基于命令行的密码恢复技术不起作用时，应采用以下方法作为“最后的选择”。下文所述的密码重置方法使用...
Symfony假脱机电子邮件不能使用PHP 5.5 php symfony
2014-08-26 11:57

回答 1 已采纳 I finished by compiling the PHP 5.3 on Ubuntu 14.04. This resolved the problem but it is not a pro
Symfony 4 - KNP菜单 - 未调用MenuBuilder php symfony
2018-04-17 03:48

回答 1 已采纳 Thank you all for your time. This gist was helpful: https://gist.github.com/lsv/4d8044d21819f28f0
Symfony 3.4 - 没有为帐户配置编码器 mysql php symfony
2019-04-03 06:41

回答 2 已采纳 Try this: security: encoders: Site\PagesBundle\Entity\User: bcrypt Because your Ent
symfony后台系统_Symfony2预注册和邀请系统
2020-08-28 07:19

culi4814的博客 symfony后台系统We have discussed Symfony 2 development in previous SitePoint articles and we built a clone of my own personal Symfony app (Part 1, 2 and 3). But Symfony 2 is a gigantic framework and ...
如何为symfony2框架配置$ this-> cwd php symfony
2015-01-06 07:47

回答 1 已采纳 It's a bug as described here. It is resolved in the current framework version (2.6.1). So the so
从零开始学php 光盘,从零开始学PHP（第2版）（不提供光盘内容）
2021-04-10 12:08

丹丹在这里的博客内容简介前言第一篇　PHP程序语言第1章　PHP漫谈1.1　认识PHP1.2　HTML基础1.2.1　HTML文档基本格式1.2.2　用标签显示Hello World1.2.3　创建网页上的列表1.2.4　创建图像和链接1.2.5　创建表格1.2.6　创建表单1.3　...
symfony 2_使用FOSUserBundle的Symfony2中的基本用户管理
2020-08-29 11:59

culh2177的博客 symfony 2Symfony has a very powerful authentication and authorization system, which can cater to a lot of our needs out of the box. FOSUserBundle is a library built on top of Symfony’s security syste...
PHP 安全最佳实践
2022-08-01 17:09

allway2的博客在CSRF攻击中，最终用户可以在经过身份验证的网站上执行不需要的操作，并且可以将恶意命令传输到站点以执行任何不需要的操作。一旦字符串被加密，它就会重复解码。很长一段时间以来，我一直致力于解决PHP安全和性能...
如何从数据库(实体提供者)读取安全用户(转自http://wiki.jikexueyuan.com/project/symfony-cookbook/entity-provider.html)...
2016-03-21 10:30

weixin_30872157的博客 Symfony 的安全系统可以通过活动目录或开放授权...这个外部包允许您从数据库加载用户信息(就像你会在这里学到的)并为您提供内置路径和控制器用于一些事务，比如登录、注册和忘记密码。但是，如果您需要大量自定义用...
Symfony2插件FOSUserBundle的使用说明
2017-11-21 23:40

weixin_34355559的博客 Provides user persistence for your Symfony2 Project. 为您的Symfony2项目提供用户持久化 Features 功能 ======== - Compatible with Doctrine ORM **and** ODM thanks to a generic repository. - 与Doctr...
symfony框架简单流程
2013-01-23 16:05

bug07250432的博客 1建立一个专案目录 symfony init-project 专案名 2创建一个程式 init-app 程式名 3创建一个模块框架 init-module 程式名模块名 (需手动添加动作和摸版) 3设置虚拟主机 ServerAdmin website1@...
没有解决我的问题, 去提问

悬赏问题

¥80 部署运行web自动化项目
¥15 腾讯云如何建立同一个项目中物模型之间的联系
¥30 VMware 云桌面水印如何添加
¥15 用ns3仿真出5G核心网网元
¥15 matlab答疑关于海上风电的爬坡事件检测
¥88 python部署量化回测异常问题
¥30 酬劳2w元求合作写文章
¥15 在现有系统基础上增加功能
¥15 远程桌面文档内容复制粘贴，格式会变化
¥15 这种微信登录授权谁可以做啊

Symfony 4按用户名更改密码 - 电子邮件不能为空

2条回答 默认 最新

悬赏问题

2条回答默认最新