Implement email verification feature, add registration form, and update user entity for verification status

2026-03-05 20:44:19 +01:00 · 2025-04-20 19:34:27 +02:00
parent c70f713f7e
commit 4bcab2724a
40 changed files with 1149 additions and 269 deletions
--- a/tests/LoginControllerTest.php
+++ b/tests/LoginControllerTest.php
@@ -1,85 +0,0 @@
-<?php
-
-declare(strict_types=1);
-
-namespace App\Tests;
-
-use App\Entity\User;
-use Symfony\Bundle\FrameworkBundle\KernelBrowser;
-use Symfony\Bundle\FrameworkBundle\Test\WebTestCase;
-use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
-
-final class LoginControllerTest extends WebTestCase
-{
-    private KernelBrowser $client;
-
-    protected function setUp(): void
-    {
-        $this->client = static::createClient();
-        $container = static::getContainer();
-        $em = $container->get('doctrine.orm.entity_manager');
-        $userRepository = $em->getRepository(User::class);
-
-        // Remove any existing users from the test database
-        foreach ($userRepository->findAll() as $user) {
-            $em->remove($user);
-        }
-
-        $em->flush();
-
-        // Create a User fixture
-        /** @var UserPasswordHasherInterface $passwordHasher */
-        $passwordHasher = $container->get('security.user_password_hasher');
-
-        $user = (new User())->setEmail('email@example.com');
-        $user->setPassword($passwordHasher->hashPassword($user, 'password'));
-
-        $em->persist($user);
-        $em->flush();
-    }
-
-    public function testLogin(): void
-    {
-        // Denied - Can't login with invalid email address.
-        $this->client->request('GET', '/login');
-        $this->assertResponseIsSuccessful();
-
-        $this->client->submitForm('Sign in', [
-            '_username' => 'doesNotExist@example.com',
-            '_password' => 'password',
-        ]);
-
-        $this->assertResponseRedirects('/login');
-        $this->client->followRedirect();
-
-        // Ensure we do not reveal if the user exists or not.
-        $this->assertSelectorTextContains('.alert-danger', 'Invalid credentials.');
-
-        // Denied - Can't login with invalid password.
-        $this->client->request('GET', '/login');
-        $this->assertResponseIsSuccessful();
-
-        $this->client->submitForm('Sign in', [
-            '_username' => 'email@example.com',
-            '_password' => 'bad-password',
-        ]);
-
-        $this->assertResponseRedirects('/login');
-        $this->client->followRedirect();
-
-        // Ensure we do not reveal the user exists but the password is wrong.
-        $this->assertSelectorTextContains('.alert-danger', 'Invalid credentials.');
-
-        // Success - Login with valid credentials is allowed.
-        $this->client->submitForm('Sign in', [
-            '_username' => 'email@example.com',
-            '_password' => 'password',
-        ]);
-
-        $this->assertResponseRedirects('/');
-        $this->client->followRedirect();
-
-        $this->assertSelectorNotExists('.alert-danger');
-        $this->assertResponseIsSuccessful();
-    }
-}