If we don't login the user after registration it is impossible to validate the email. It would have been interesting to be able to validate them also if the user is not logged in.

Hello, I want to use this bundle on my symfony project. I am on symfony 5.4 and php 8.1.1 but i don't undertand why i have this error. I import those classes, but i don't why i have this error. Can someone have any clues ?

Hello guys, I don't receive my email confirmation and I loggin after that (I am not sure if it should work like that). I was trying to identify where my problem with the internet and I got an interesting article about that.It was written in Feb 2022 I think you ve already figured this issue or you haven't? Should I try to switch to Symfony 5 or there is a problem in my code? Also, I don't see where Gmail has been used in code.

.env

###> symfony/google-mailer ###

MAILER_DSN=gmail://xxxxxxxx@default #with using URL encode 
###< symfony/google-mailer ###

RegistrationController.php

$this->emailVerifier->sendEmailConfirmation('app_verify_email', $user,
                (new TemplatedEmail())
                    ->from(new Address('[email protected]', 'Nurbek'))
                    ->to($user->getEmail())
                    ->subject('Please Confirm your Email')
                    ->htmlTemplate('registration/confirmation_email.html.twig')
            );

return $userAuthenticator->authenticateUser(
                $user,
                $authenticator,
                $request
            );

EmailVerifier.php

 public function sendEmailConfirmation(string $verifyEmailRouteName, UserOriginal $user, TemplatedEmail $email): void
    {
        $signatureComponents = $this->verifyEmailHelper->generateSignature(
            $verifyEmailRouteName,
            $user->getId(),
            $user->getEmail(),
            ['id' => $user->getId()]
        );

        $context = $email->getContext();
        $context['signedUrl'] = $signatureComponents->getSignedUrl();
        $context['expiresAtMessageKey'] = $signatureComponents->getExpirationMessageKey();
        $context['expiresAtMessageData'] = $signatureComponents->getExpirationMessageData();

        $email->context($context);

        $this->mailer->send($email);

Sorry if I forgot something to mention, and thanks in advance.

The URL in the email link is HTTP which we have set Apache to redirect to HTTPS.

IF the user is logged in already, clicks the link in the email, it wants them to login again. Is there a way I have have the signedURL include the HTTPS?

I just ran the following commands to create an authentication system with email confirmation:

composer require symfonycasts/verify-email-bundle
composer require symfony/security-bundle
php bin/console make:user
php bin/console make:auth
php bin/console make:registration-form

My mailer is configured. I am using Symfony 5 with PHP 7.4. I get the following error:

Cannot autowire service "App\Security\EmailVerifier": argument "$helper" of method "__construct()" references interface "SymfonyCasts\Bundle\VerifyEmail\VerifyEmailHelperInterface" but no such service exists. Did you create a class that implements this interface?

Hi,

I would like to show the InvalidSignatureException, ExpiredSignatureException and WrongEmailVerifyException error message translated in my language (italian), but I cannot find a way for to do it. Can you help me?

Thanks

mirrors https://github.com/SymfonyCasts/reset-password-bundle/pull/149

Context:

This link will expire in 1 year which in Polish is Link wygaśnie w ciągu 1 roku This link will expire in 3 years which in Polish is Link wygaśnie w ciągu 3 lat This link will expire in 5 years which in Polish is Link wygaśnie w ciągu 5 lat This link will expire in 6 years which in Polish is Link wygaśnie w ciągu 6 lat This link will expire in 17 years which in Polish is Link wygaśnie w ciągu 17 lat

the same context applies for month|months, day|days, hour|hours, minute|minutes

Im getting the following errors on symfony5:

Problem 1 - Installation request for symfonycasts/verify-email-bundle ^1.0 -> satisfiable by symfonycasts/verify-email-bundle[v1.0.0]. - symfonycasts/verify-email-bundle v1.0.0 requires symfony/config ^4.4 | ^5.0 -> no matching package found.

Potential causes:

• A typo in the package name
• The package is not available in a stable-enough version according to your minimum-stability setting see https://getcomposer.org/doc/04-schema.md#minimum-stability for more details.
• It's a private package and you forgot to add a custom repository to find it

I do everythong one by one from tutorial. I can register user, login etc. but link in email i recive is always with exeption "The link to verify your email is invalid. Please request a new link."

I running clear php-apache on docker timezone is OK URL is ok (is in http without ssl) maybe is not good couse i have local addresses for docker ending with ".docker" ? my example url is: http://symofny5.docker/verify/email?expires=1640891770&id=8&signature=%2B%2BqkHGkLMIcXl1qVly%2BhdM9FeXtTLrhTYdQHSJppSZk%3D&token=GEEDqW1Wk2FUfTsy3T2S10%2BzvnVxuXBNo%2B%2BEU2X5NXk%3D

I checked, and ID is ok, in function "verifyUserEmail" it find good user.

I use symfony 5.4.2 php 7.4

Thanks in advanced!

Hello, When the user registers, he receives a validation email. I noticed that if he does not click on the validation link he can still connect to his account. Is this normal and logical behavior?

• AlreadyVerifiedException::class - Used if a users has already been verified.
• InvalidSignatureException::class - Used anytime Helper::isValidSignature returns false.

These exception as more appropriate for user land code. But may prove useful in the yet to be written, VerifyEmailControllerTrait::class (PR #1)

Use case:

 if ($user->isVerified()) {
    throw new AlreadyVerifiedException();
}

if (!$helper->isValidSignature($request->getRequestUri(), $user->getId(), $user->getEmail())) {
    throw new InvalidSignatureException();
}

When running the bin/console make:registration-form command, the wizard asks whether you want the user to be automatically authenticated.

When not having used the MakerBundle's make:auth command (but implementing the form_login following the symfony docs), the command show that no guard authenticators are found, so it cannot enable this functionality. See message below.

Though this is related to the MakerBundle command (and a solution can be found by scouring their issue repository), it might be worth mentioning it here in the docs. Maybe adding a small section on "Enabling automatic authentication" stating that it only works when guard authenticators are present and/or that it can be fixed by having set-up the authentication system through make:auth.

Just a thought, maybe it helps others out that run into the same issue.

https://github.com/SymfonyCasts/verify-email-bundle/blob/7b9b1f59093dd260afa91eb6b3a220906a0fe0e2/src/VerifyEmailHelper.php#L51

time() is timezone independent. Is this effect wanted or a bug?

It causes the expiration dates to differ from the server time if the timezone is not UTC.

Hey! When my user tries to log in when he is not activated, I display a notification telling him to activate his account, and I add a "Resend activation email" link.

If I want to be able to manage this, I will be forced, each time a user tries to connect, to generate a new unique link allowing them to access a route that will use the bundle to send a confirmation email.

In my UserChecker.php class :

    public function checkPreAuth(UserInterface $user)
    {

        if (!$user instanceof User) {
            return;
        }
        if (!$user->getEnabled() && !$user->isVerified()) {
            // $uniqueResendEmailurl = ....
            throw new CustomUserMessageAccountStatusException("Votre compte n'est pas activé. Veuillez confirmer 
            votre inscription en cliquant sur le lien qui vous a été envoyé par email. Pensez à vérifier dans vos spams. <a href=. "$uniqueResendEmailurl" . >Renvoyer l'email de confirmation</a>");
        }
    }

The bundle should really be able to integrate this functionality directly.

To counter this, I thought about using another of your bundles. The symfonycasts/reset-password-bundle

By creating a "ResendConfirmationEmailRequest" entity which is a full clone of the "ResetPasswordRequest" entity from your other bundle. And use the same methods to generate a unique signature to allow a user to receive a confirmation email again.

What do you think ?

Hello, it might be interesting to choose whether or not to add an expiration of the email confirmation link.

In my case, this would be useful because the administrator of my application is able to create accounts for his employees. They must confirm their account within 10 days, otherwise I delete the account with a CRON job. But suddenly with the expiration date, it forces them to confirm their account very quickly