]> Raphaël G. Git Repositories - userbundle/blobdiff - Controller/DefaultController.php
Reorder fields
[userbundle] / Controller / DefaultController.php
index 11c7afbb0ca30d70c67e8c86976e5f579f300f6a..6fed8f54395ad9ba940683d6a44c32d6b1c36933 100644 (file)
-<?php
+<?php declare(strict_types=1);
+
+/*
+ * This file is part of the Rapsys UserBundle package.
+ *
+ * (c) Raphaël Gertz <symfony@rapsys.eu>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
 
 namespace Rapsys\UserBundle\Controller;
 
-use Rapsys\UserBundle\Utils\Slugger;
+use Doctrine\DBAL\Exception\UniqueConstraintViolationException;
 use Symfony\Bridge\Twig\Mime\TemplatedEmail;
-use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
-use Symfony\Component\DependencyInjection\ContainerInterface;
 use Symfony\Component\Form\FormError;
 use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpFoundation\Response;
+use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
 use Symfony\Component\Mailer\Exception\TransportExceptionInterface;
-use Symfony\Component\Mailer\MailerInterface;
-use Symfony\Component\Mime\NamedAddress;
+use Symfony\Component\Mime\Address;
 use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
-use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
 use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
-use Symfony\Component\Translation\TranslatorInterface;
 
+/**
+ * {@inheritdoc}
+ */
 class DefaultController extends AbstractController {
-       //Config array
-       protected $config;
+       /**
+        * Confirm account from mail link
+        *
+        * @param Request $request The request
+        * @param string $mail The shorted mail address
+        * @param string $hash The hashed password
+        * @return Response The response
+        */
+       public function confirm(Request $request, $mail, $hash): Response {
+               //With invalid hash
+               if ($hash != $this->slugger->hash($mail)) {
+                       //Throw bad request
+                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'hash', '%value%' => $hash]));
+               }
+
+               //Get mail
+               $mail = $this->slugger->unshort($smail = $mail);
+
+               //Without valid mail
+               if (filter_var($mail, FILTER_VALIDATE_EMAIL) === false) {
+                       //Throw bad request
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'mail', '%value%' => $smail]));
+               }
 
-       //Translator instance
-       protected $translator;
+               //Without existing registrant
+               if (!($user = $this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($mail))) {
+                       //Add error message mail already exists
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       $this->addFlash('error', $this->translator->trans('Account %mail% do not exists', ['%mail%' => $smail]));
 
-       public function __construct(ContainerInterface $container, TranslatorInterface $translator) {
-               //Retrieve config
-               $this->config = $container->getParameter($this->getAlias());
+                       //Redirect to register view
+                       return $this->redirectToRoute($this->config['route']['register']['name'], ['mail' => $smail, 'field' => $sfield = $this->slugger->serialize([]), 'hash' => $this->slugger->hash($smail.$sfield)]+$this->config['route']['register']['context']);
+               }
+
+               //Set active
+               $user->setActive(true);
+
+               //Persist user
+               $this->manager->persist($user);
+
+               //Send to database
+               $this->manager->flush();
 
-               //Set the translator
-               $this->translator = $translator;
+               //Add error message mail already exists
+               $this->addFlash('notice', $this->translator->trans('Your account has been activated'));
+
+               //Redirect to user view
+               return $this->redirectToRoute($this->config['route']['edit']['name'], ['mail' => $smail, 'hash' => $this->slugger->hash($smail)]+$this->config['route']['edit']['context']);
        }
 
-       public function login(Request $request, AuthenticationUtils $authenticationUtils) {
+       /**
+        * Edit account by shorted mail
+        *
+        * @param Request $request The request
+        * @param string $mail The shorted mail address
+        * @param string $hash The hashed password
+        * @return Response The response
+        */
+       public function edit(Request $request, $mail, $hash): Response {
+               //With invalid hash
+               if ($hash != $this->slugger->hash($mail)) {
+                       //Throw bad request
+                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'hash', '%value%' => $hash]));
+               }
+
+               //Get mail
+               $mail = $this->slugger->unshort($smail = $mail);
+
+               //With existing subscriber
+               if (empty($user = $this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($mail))) {
+                       //Throw not found
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       throw $this->createNotFoundException($this->translator->trans('Unable to find account %mail%', ['%mail%' => $smail]));
+               }
+
+               //Prevent access when not admin, user is not guest and not currently logged user
+               if (!$this->isGranted('ROLE_ADMIN') && $user != $this->getUser() || !$this->isGranted('IS_AUTHENTICATED_FULLY')) {
+                       //Throw access denied
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       throw $this->createAccessDeniedException($this->translator->trans('Unable to access user: %mail%', ['%mail%' => $smail]));
+               }
+
+               //Create the RegisterType form and give the proper parameters
+               $edit = $this->createForm($this->config['edit']['view']['edit'], $user, [
+                       //Set action to register route name and context
+                       'action' => $this->generateUrl($this->config['route']['edit']['name'], ['mail' => $smail, 'hash' => $this->slugger->hash($smail)]+$this->config['route']['edit']['context']),
+                       //Set civility class
+                       'civility_class' => $this->config['class']['civility'],
+                       //Set civility default
+                       'civility_default' => $this->doctrine->getRepository($this->config['class']['civility'])->findOneByTitle($this->config['default']['civility']),
+                       //Disable mail
+                       'mail' => $this->isGranted('ROLE_ADMIN'),
+                       //Disable password
+                       'password' => false,
+                       //Set method
+                       'method' => 'POST'
+               ]+$this->config['edit']['field']);
+
+               //With admin role
+               if ($this->isGranted('ROLE_ADMIN')) {
+                       //Create the LoginType form and give the proper parameters
+                       $reset = $this->createForm($this->config['edit']['view']['reset'], $user, [
+                               //Set action to register route name and context
+                               'action' => $this->generateUrl($this->config['route']['edit']['name'], ['mail' => $smail, 'hash' => $this->slugger->hash($smail)]+$this->config['route']['edit']['context']),
+                               //Disable mail
+                               'mail' => false,
+                               //Set method
+                               'method' => 'POST'
+                       ]);
+
+                       //With post method
+                       if ($request->isMethod('POST')) {
+                               //Refill the fields in case the form is not valid.
+                               $reset->handleRequest($request);
+
+                               //With reset submitted and valid
+                               if ($reset->isSubmitted() && $reset->isValid()) {
+                                       //Set data
+                                       $data = $reset->getData();
+
+                                       //Set password
+                                       $data->setPassword($this->hasher->hashPassword($data, $data->getPassword()));
+
+                                       //Queue snippet save
+                                       $this->manager->persist($data);
+
+                                       //Flush to get the ids
+                                       $this->manager->flush();
+
+                                       //Add notice
+                                       $this->addFlash('notice', $this->translator->trans('Account %mail% password updated', ['%mail%' => $mail = $data->getMail()]));
+
+                                       //Redirect to cleanup the form
+                                       return $this->redirectToRoute($this->config['route']['edit']['name'], ['mail' => $smail = $this->slugger->short($mail), 'hash' => $this->slugger->hash($smail)]+$this->config['route']['edit']['context']);
+                               }
+                       }
+
+                       //Add reset view
+                       $this->config['edit']['view']['context']['reset'] = $reset->createView();
+               }
+
+               //With post method
+               if ($request->isMethod('POST')) {
+                       //Refill the fields in case the form is not valid.
+                       $edit->handleRequest($request);
+
+                       //With edit submitted and valid
+                       if ($edit->isSubmitted() && $edit->isValid()) {
+                               //Set data
+                               $data = $edit->getData();
+
+                               //Queue snippet save
+                               $this->manager->persist($data);
+
+                               //Try saving in database
+                               try {
+                                       //Flush to get the ids
+                                       $this->manager->flush();
+
+                                       //Add notice
+                                       $this->addFlash('notice', $this->translator->trans('Account %mail% updated', ['%mail%' => $mail = $data->getMail()]));
+
+                                       //Redirect to cleanup the form
+                                       return $this->redirectToRoute($this->config['route']['edit']['name'], ['mail' => $smail = $this->slugger->short($mail), 'hash' => $this->slugger->hash($smail)]+$this->config['route']['edit']['context']);
+                               //Catch double slug or mail
+                               } catch (UniqueConstraintViolationException $e) {
+                                       //Add error message mail already exists
+                                       $this->addFlash('error', $this->translator->trans('Account %mail% already exists', ['%mail%' => $data->getMail()]));
+                               }
+                       }
+               //Without admin role
+               //XXX: prefer a reset on login to force user unspam action
+               } elseif (!$this->isGranted('ROLE_ADMIN')) {
+                       //Add notice
+                       $this->addFlash('notice', $this->translator->trans('To change your password login with your mail and any password then follow the procedure'));
+               }
+
+               //Render view
+               return $this->render(
+                       //Template
+                       $this->config['edit']['view']['name'],
+                       //Context
+                       ['edit' => $edit->createView(), 'sent' => $request->query->get('sent', 0)]+$this->config['edit']['view']['context']
+               );
+       }
+
+       /**
+        * Login
+        *
+        * @param Request $request The request
+        * @param AuthenticationUtils $authenticationUtils The authentication utils
+        * @param string $mail The shorted mail address
+        * @param string $hash The hashed password
+        * @return Response The response
+        */
+       public function login(Request $request, AuthenticationUtils $authenticationUtils, $mail, $hash): Response {
                //Create the LoginType form and give the proper parameters
-               $form = $this->createForm($this->config['login']['view']['form'], null, [
+               $login = $this->createForm($this->config['login']['view']['form'], null, [
                        //Set action to login route name and context
                        'action' => $this->generateUrl($this->config['route']['login']['name'], $this->config['route']['login']['context']),
+                       //Disable repeated password
+                       'password_repeated' => false,
+                       //Set method
                        'method' => 'POST'
                ]);
 
+               //Init context
+               $context = [];
+
+               //With mail
+               if (!empty($mail) && !empty($hash)) {
+                       //With invalid hash
+                       if ($hash != $this->slugger->hash($mail)) {
+                               //Throw bad request
+                               throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'hash', '%value%' => $hash]));
+                       }
+
+                       //Get mail
+                       $mail = $this->slugger->unshort($smail = $mail);
+
+                       //Without valid mail
+                       if (filter_var($mail, FILTER_VALIDATE_EMAIL) === false) {
+                               //Throw bad request
+                               throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'mail', '%value%' => $smail]));
+                       }
+
+                       //Prefilled mail
+                       $login->get('mail')->setData($mail);
+               //Last username entered by the user
+               } elseif ($lastUsername = $authenticationUtils->getLastUsername()) {
+                       $login->get('mail')->setData($lastUsername);
+               }
+
                //Get the login error if there is one
                if ($error = $authenticationUtils->getLastAuthenticationError()) {
                        //Get translated error
                        $error = $this->translator->trans($error->getMessageKey());
 
                        //Add error message to mail field
-                       $form->get('mail')->addError(new FormError($error));
-               }
-
-               //Last username entered by the user
-               if ($lastUsername = $authenticationUtils->getLastUsername()) {
-                       $form->get('mail')->setData($lastUsername);
+                       $login->get('mail')->addError(new FormError($error));
+
+                       //Create the LoginType form and give the proper parameters
+                       $recover = $this->createForm($this->config['recover']['view']['form'], null, [
+                               //Set action to recover route name and context
+                               'action' => $this->generateUrl($this->config['route']['recover']['name'], $this->config['route']['recover']['context']),
+                               //Without password
+                               'password' => false,
+                               //Set method
+                               'method' => 'POST'
+                       ]);
+
+                       //Get recover mail entity
+                       $recover->get('mail')
+                               //Set mail from login form
+                               ->setData($login->get('mail')->getData())
+                               //Add recover error
+                               ->addError(new FormError($this->translator->trans('Use this form to recover your account')));
+
+                       //Add recover form to context
+                       $context['recover'] = $recover->createView();
+               } else {
+                       //Add notice
+                       $this->addFlash('notice', $this->translator->trans('To change your password login with your mail and any password then follow the procedure'));
                }
 
                //Render view
@@ -58,110 +297,201 @@ class DefaultController extends AbstractController {
                        //Template
                        $this->config['login']['view']['name'],
                        //Context
-                       ['form' => $form->createView(), 'error' => $error]+$this->config['login']['view']['context']
+                       ['login' => $login->createView()]+$context+$this->config['login']['view']['context']
                );
        }
 
-       public function recover(Request $request, Slugger $slugger, MailerInterface $mailer) {
-               //Create the RecoverType form and give the proper parameters
-               $form = $this->createForm($this->config['recover']['view']['form'], null, array(
-                       //Set action to recover route name and context
-                       'action' => $this->generateUrl($this->config['route']['recover']['name'], $this->config['route']['recover']['context']),
-                       'method' => 'POST'
-               ));
-
-               if ($request->isMethod('POST')) {
-                       //Refill the fields in case the form is not valid.
-                       $form->handleRequest($request);
+       /**
+        * Recover account
+        *
+        * @param Request $request The request
+        * @param string $mail The shorted mail address
+        * @param string $pass The shorted password
+        * @param string $hash The hashed password
+        * @return Response The response
+        */
+       public function recover(Request $request, $mail, $pass, $hash): Response {
+               //Without mail, pass and hash
+               if (empty($mail) && empty($pass) && empty($hash)) {
+                       //Create the LoginType form and give the proper parameters
+                       $form = $this->createForm($this->config['recover']['view']['form'], null, [
+                               //Set action to recover route name and context
+                               'action' => $this->generateUrl($this->config['route']['recover']['name'], $this->config['route']['recover']['context']),
+                               //Without password
+                               'password' => false,
+                               //Set method
+                               'method' => 'POST'
+                       ]);
 
-                       if ($form->isValid()) {
-                               //Get doctrine
-                               $doctrine = $this->getDoctrine();
+                       if ($request->isMethod('POST')) {
+                               //Refill the fields in case the form is not valid.
+                               $form->handleRequest($request);
 
-                               //Set data
-                               $data = $form->getData();
+                               if ($form->isValid()) {
+                                       //Set data
+                                       $data = $form->getData();
 
-                               //Try to find user
-                               if ($user = $doctrine->getRepository($this->config['class']['user'])->findOneByMail($data['mail'])) {
-                                       //Set mail shortcut
-                                       $mail =& $this->config['recover']['mail'];
-
-                                       //Generate each route route
-                                       foreach($mail['route'] as $route => $tag) {
-                                               //Only process defined routes
-                                               if (empty($mail['context'][$tag]) && !empty($this->config['route'][$route])) {
-                                                       //Process for recover mail url
-                                                       if ($route == 'recover_mail') {
-                                                               //Prepend recover context with tag
-                                                               $this->config['route'][$route]['context'] = [
-                                                                       'recipient' => $slugger->short($user->getMail()),
-                                                                       'hash' => $slugger->hash($user->getPassword())
-                                                               ]+$this->config['route'][$route]['context'];
+                                       //Find user by data mail
+                                       if ($user = $this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($data['mail'])) {
+                                               //Set mail shortcut
+                                               $recoverMail =& $this->config['recover']['mail'];
+
+                                               //Set mail
+                                               $mail = $this->slugger->short($user->getMail());
+
+                                               //Set pass
+                                               $pass = $this->slugger->hash($user->getPassword());
+
+                                               //Generate each route route
+                                               foreach($this->config['recover']['route'] as $route => $tag) {
+                                                       //Only process defined routes
+                                                       if (!empty($this->config['route'][$route])) {
+                                                               //Process for recover mail url
+                                                               if ($route == 'recover') {
+                                                                       //Set the url in context
+                                                                       $recoverMail['context'][$tag] = $this->router->generate(
+                                                                               $this->config['route'][$route]['name'],
+                                                                               //Prepend recover context with tag
+                                                                               [
+                                                                                       'mail' => $mail,
+                                                                                       'pass' => $pass,
+                                                                                       'hash' => $this->slugger->hash($mail.$pass)
+                                                                               ]+$this->config['route'][$route]['context'],
+                                                                               UrlGeneratorInterface::ABSOLUTE_URL
+                                                                       );
+                                                               }
                                                        }
-                                                       //Set the url in context
-                                                       $mail['context'][$tag] = $this->get('router')->generate(
-                                                               $this->config['route'][$route]['name'],
-                                                               $this->config['route'][$route]['context'],
-                                                               UrlGeneratorInterface::ABSOLUTE_URL
-                                                       );
+                                               }
 
+                                               //Set recipient_name
+                                               $recoverMail['context']['recipient_mail'] = $user->getMail();
+
+                                               //Set recipient_name
+                                               $recoverMail['context']['recipient_name'] = $user->getRecipientName();
+
+                                               //Init subject context
+                                               $subjectContext = $this->slugger->flatten(array_replace_recursive($this->config['recover']['view']['context'], $recoverMail['context']), null, '.', '%', '%');
+
+                                               //Translate subject
+                                               $recoverMail['subject'] = ucfirst($this->translator->trans($recoverMail['subject'], $subjectContext));
+
+                                               //Create message
+                                               $message = (new TemplatedEmail())
+                                                       //Set sender
+                                                       ->from(new Address($this->config['contact']['mail'], $this->config['contact']['title']))
+                                                       //Set recipient
+                                                       //XXX: remove the debug set in vendor/symfony/mime/Address.php +46
+                                                       ->to(new Address($recoverMail['context']['recipient_mail'], $recoverMail['context']['recipient_name']))
+                                                       //Set subject
+                                                       ->subject($recoverMail['subject'])
+
+                                                       //Set path to twig templates
+                                                       ->htmlTemplate($recoverMail['html'])
+                                                       ->textTemplate($recoverMail['text'])
+
+                                                       //Set context
+                                                       //XXX: require recursive merge to avoid loosing subkeys
+                                                       //['subject' => $recoverMail['subject']]+$recoverMail['context']+$this->config['recover']['view']['context']
+                                                       ->context(array_replace_recursive($this->config['recover']['view']['context'], $recoverMail['context'], ['subject' => $recoverMail['subject']]));
+
+                                               //Try sending message
+                                               //XXX: mail delivery may silently fail
+                                               try {
+                                                       //Send message
+                                                       $this->mailer->send($message);
+
+                                                       //Redirect on the same route with sent=1 to cleanup form
+                                                       return $this->redirectToRoute($request->get('_route'), ['sent' => 1]+$request->get('_route_params'));
+                                               //Catch obvious transport exception
+                                               } catch(TransportExceptionInterface $e) {
+                                                       //Add error message mail unreachable
+                                                       $form->get('mail')->addError(new FormError($this->translator->trans('Account found but unable to contact: %mail%', array('%mail%' => $data['mail']))));
                                                }
+                                       //Accout not found
+                                       } else {
+                                               //Add error message to mail field
+                                               $form->get('mail')->addError(new FormError($this->translator->trans('Unable to find account %mail%', ['%mail%' => $data['mail']])));
                                        }
+                               }
+                       }
 
-                                       //Set recipient_name
-                                       $mail['context']['recipient_mail'] = $data['mail'];
+                       //Render view
+                       return $this->render(
+                               //Template
+                               $this->config['recover']['view']['name'],
+                               //Context
+                               ['form' => $form->createView(), 'sent' => $request->query->get('sent', 0)]+$this->config['recover']['view']['context']
+                       );
+               }
 
-                                       //Set recipient_name
-                                       $mail['context']['recipient_name'] = trim($user->getForename().' '.$user->getSurname().($user->getPseudonym()?' ('.$user->getPseudonym().')':''));
+               //With invalid hash
+               if ($hash != $this->slugger->hash($mail.$pass)) {
+                       //Throw bad request
+                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'hash', '%value%' => $hash]));
+               }
 
-                                       //Init subject context
-                                       $subjectContext = [];
+               //Get mail
+               $mail = $this->slugger->unshort($smail = $mail);
 
-                                       //Process each context pair
-                                       foreach($mail['context'] as $k => $v) {
-                                               //Reinsert each context pair with the key surrounded by %
-                                               $subjectContext['%'.$k.'%'] = $v;
-                                       }
+               //Without valid mail
+               if (filter_var($mail, FILTER_VALIDATE_EMAIL) === false) {
+                       //Throw bad request
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'mail', '%value%' => $smail]));
+               }
+
+               //With existing subscriber
+               if (empty($user = $this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($mail))) {
+                       //Throw not found
+                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                       throw $this->createNotFoundException($this->translator->trans('Unable to find account %mail%', ['%mail%' => $smail]));
+               }
+
+               //With unmatched pass
+               if ($pass != $this->slugger->hash($user->getPassword())) {
+                       //Throw not found
+                       //XXX: prevent use of outdated recover link
+                       throw $this->createNotFoundException($this->translator->trans('Outdated recover link'));
+               }
+
+               //Create the LoginType form and give the proper parameters
+               $form = $this->createForm($this->config['recover']['view']['form'], $user, [
+                       //Set action to recover route name and context
+                       'action' => $this->generateUrl($this->config['route']['recover']['name'], ['mail' => $smail, 'pass' => $pass, 'hash' => $hash]+$this->config['route']['recover']['context']),
+                       //Without mail
+                       'mail' => false,
+                       //Set method
+                       'method' => 'POST'
+               ]);
 
-                                       //Translate subject
-                                       $mail['subject'] = ucfirst($this->translator->trans($mail['subject'], $subjectContext));
+               if ($request->isMethod('POST')) {
+                       //Refill the fields in case the form is not valid.
+                       $form->handleRequest($request);
 
-                                       //Create message
-                                       $message = (new TemplatedEmail())
-                                               //Set sender
-                                               ->from(new NamedAddress($this->config['contact']['mail'], $this->config['contact']['name']))
-                                               //Set recipient
-                                               //XXX: remove the debug set in vendor/symfony/mime/Address.php +46
-                                               ->to(new NamedAddress($mail['context']['recipient_mail'], $mail['context']['recipient_name']))
-                                               //Set subject
-                                               ->subject($mail['subject'])
+                       if ($form->isValid()) {
+                               //Set data
+                               $data = $form->getData();
 
-                                               //Set path to twig templates
-                                               ->htmlTemplate($mail['html'])
-                                               ->textTemplate($mail['text'])
+                               //Set hashed password
+                               $hashed = $this->hasher->hashPassword($user, $user->getPassword());
 
-                                               //Set context
-                                               ->context(['subject' => $mail['subject']]+$mail['context']);
+                               //Update pass
+                               $pass = $this->slugger->hash($hashed);
 
-                                       //Try sending message
-                                       //XXX: mail delivery may silently fail
-                                       try {
-                                               //Send message
-                                               $mailer->send($message);
+                               //Set user password
+                               $user->setPassword($hashed);
 
-                                               //Redirect on the same route with sent=1 to cleanup form
-                                               #return $this->redirectToRoute('rapsys_user_register', array('sent' => 1));
-                                               return $this->redirectToRoute($request->get('_route'), ['sent' => 1]+$request->get('_route_params'));
-                                       //Catch obvious transport exception
-                                       } catch(TransportExceptionInterface $e) {
-                                               //Add error message mail unreachable
-                                               $form->get('mail')->addError(new FormError($this->translator->trans('Account found but unable to contact: %mail%', array('%mail%' => $data['mail']))));
-                                       }
-                               //Accout not found
-                               } else {
-                                       //Add error message to mail field
-                                       $form->get('mail')->addError(new FormError($this->translator->trans('Unable to find account: %mail%', ['%mail%' => $data['mail']])));
-                               }
+                               //Persist user
+                               $this->manager->persist($user);
+
+                               //Send to database
+                               $this->manager->flush();
+
+                               //Add notice
+                               $this->addFlash('notice', $this->translator->trans('Account %mail% password updated', ['%mail%' => $mail]));
+
+                               //Redirect to user login
+                               return $this->redirectToRoute($this->config['route']['login']['name'], ['mail' => $smail, 'hash' => $this->slugger->hash($smail)]+$this->config['route']['login']['context']);
                        }
                }
 
@@ -174,261 +504,337 @@ class DefaultController extends AbstractController {
                );
        }
 
-       public function recoverMail(Request $request, UserPasswordEncoderInterface $encoder, Slugger $slugger, MailerInterface $mailer, $recipient, $hash) {
-               //Create the RecoverType form and give the proper parameters
-               $form = $this->createForm($this->config['recover_mail']['view']['form'], null, array(
-                       //Set action to recover route name and context
-                       'action' => $this->generateUrl($this->config['route']['recover_mail']['name'], ['recipient' => $recipient, 'hash' => $hash]+$this->config['route']['recover_mail']['context']),
-                       'method' => 'POST'
-               ));
-
-               //Get doctrine
-               $doctrine = $this->getDoctrine();
-
-               //Init not found
-               $notfound = 1;
-
-               //Retrieve user
-               if (($user = $doctrine->getRepository($this->config['class']['user'])->findOneByMail($slugger->unshort($recipient))) && $hash == $slugger->hash($user->getPassword())) {
-                       //User was found
-                       $notfound = 0;
-
-                       if ($request->isMethod('POST')) {
-                               //Refill the fields in case the form is not valid.
-                               $form->handleRequest($request);
-
-                               if ($form->isValid()) {
-                                       //Set data
-                                       $data = $form->getData();
+       /**
+        * Register an account
+        *
+        * @param Request $request The request
+        * @param string $mail The shorted mail address
+        * @param string $field The serialized then shorted form field array
+        * @param string $hash The hashed serialized field array
+        * @return Response The response
+        */
+       public function register(Request $request, $mail, $field, $hash): Response {
+               //With mail
+               if (!empty($_POST['register']['mail'])) {
+                       //Log new user infos
+                       $this->logger->emergency(
+                               $this->translator->trans(
+                                       'register: mail=%mail% locale=%locale% confirm=%confirm%',
+                                       [
+                                               '%mail%' => $postMail = $_POST['register']['mail'],
+                                               '%locale%' => $request->getLocale(),
+                                               '%confirm%' => $this->router->generate(
+                                                       $this->config['route']['confirm']['name'],
+                                                       //Prepend subscribe context with tag
+                                                       [
+                                                               'mail' => $postSmail = $this->slugger->short($postMail),
+                                                               'hash' => $this->slugger->hash($postSmail)
+                                                       ]+$this->config['route']['confirm']['context'],
+                                                       UrlGeneratorInterface::ABSOLUTE_URL
+                                               )
+                                       ]
+                               )
+                       );
+               }
 
-                                       //set encoded password
-                                       $encoded = $encoder->encodePassword($user, $data['password']);
+               //With mail and field
+               if (!empty($field) && !empty($hash)) {
+                       //With invalid hash
+                       if ($hash != $this->slugger->hash($mail.$field)) {
+                               //Throw bad request
+                               throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'hash', '%value%' => $hash]));
+                       }
 
-                                       //Set user password
-                                       $user->setPassword($encoded);
+                       //With mail
+                       if (!empty($mail)) {
+                               //Get mail
+                               $mail = $this->slugger->unshort($smail = $mail);
 
-                                       //Get manager
-                                       $manager = $doctrine->getManager();
+                               //Without valid mail
+                               if (filter_var($mail, FILTER_VALIDATE_EMAIL) === false) {
+                                       //Throw bad request
+                                       //XXX: prevent slugger reverse engineering by not displaying decoded mail
+                                       throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'mail', '%value%' => $smail]));
+                               }
 
-                                       //Persist user
-                                       $manager->persist($user);
+                               //With existing registrant
+                               if ($existing = $this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($mail)) {
+                                       //With disabled existing
+                                       if ($existing->isDisabled()) {
+                                               //Render view
+                                               $response = $this->render(
+                                                       //Template
+                                                       $this->config['register']['view']['name'],
+                                                       //Context
+                                                       ['title' => $this->translator->trans('Access denied'), 'disabled' => 1]+$this->config['register']['view']['context']
+                                               );
 
-                                       //Send to database
-                                       $manager->flush();
-
-                                       //Set mail shortcut
-                                       $mail =& $this->config['recover_mail']['mail'];
-
-                                       //Regen hash
-                                       $hash = $slugger->hash($encoded);
-
-                                       //Generate each route route
-                                       foreach($mail['route'] as $route => $tag) {
-                                               //Only process defined routes
-                                               if (empty($mail['context'][$tag]) && !empty($this->config['route'][$route])) {
-                                                       //Process for recover mail url
-                                                       if ($route == 'recover_mail') {
-                                                               //Prepend recover context with tag
-                                                               $this->config['route'][$route]['context'] = [
-                                                                       'recipient' => $recipient,
-                                                                       'hash' => $hash
-                                                               ]+$this->config['route'][$route]['context'];
+                                               //Set 403
+                                               $response->setStatusCode(403);
+
+                                               //Return response
+                                               return $response;
+                                       //With unactivated existing
+                                       } elseif (!$existing->isActivated()) {
+                                               //Set mail shortcut
+                                               $activateMail =& $this->config['register']['mail'];
+
+                                               //Generate each route route
+                                               foreach($this->config['register']['route'] as $route => $tag) {
+                                                       //Only process defined routes
+                                                       if (!empty($this->config['route'][$route])) {
+                                                               //Process for confirm url
+                                                               if ($route == 'confirm') {
+                                                                       //Set the url in context
+                                                                       $activateMail['context'][$tag] = $this->router->generate(
+                                                                               $this->config['route'][$route]['name'],
+                                                                               //Prepend subscribe context with tag
+                                                                               [
+                                                                                       'mail' => $smail = $this->slugger->short($existing->getMail()),
+                                                                                       'hash' => $this->slugger->hash($smail)
+                                                                               ]+$this->config['route'][$route]['context'],
+                                                                               UrlGeneratorInterface::ABSOLUTE_URL
+                                                                       );
+                                                               }
                                                        }
-                                                       //Set the url in context
-                                                       $mail['context'][$tag] = $this->get('router')->generate(
-                                                               $this->config['route'][$route]['name'],
-                                                               $this->config['route'][$route]['context'],
-                                                               UrlGeneratorInterface::ABSOLUTE_URL
-                                                       );
                                                }
-                                       }
 
-                                       //Set recipient_name
-                                       $mail['context']['recipient_mail'] = $user->getMail();
+                                               //Set recipient_name
+                                               $activateMail['context']['recipient_mail'] = $existing->getMail();
+
+                                               //Set recipient name
+                                               $activateMail['context']['recipient_name'] = $existing->getRecipientName();
+
+                                               //Init subject context
+                                               $subjectContext = $this->slugger->flatten(array_replace_recursive($this->config['register']['view']['context'], $activateMail['context']), null, '.', '%', '%');
+
+                                               //Translate subject
+                                               $activateMail['subject'] = ucfirst($this->translator->trans($activateMail['subject'], $subjectContext));
+
+                                               //Create message
+                                               $message = (new TemplatedEmail())
+                                                       //Set sender
+                                                       ->from(new Address($this->config['contact']['mail'], $this->config['contact']['title']))
+                                                       //Set recipient
+                                                       //XXX: remove the debug set in vendor/symfony/mime/Address.php +46
+                                                       ->to(new Address($activateMail['context']['recipient_mail'], $activateMail['context']['recipient_name']))
+                                                       //Set subject
+                                                       ->subject($activateMail['subject'])
+
+                                                       //Set path to twig templates
+                                                       ->htmlTemplate($activateMail['html'])
+                                                       ->textTemplate($activateMail['text'])
+
+                                                       //Set context
+                                                       ->context(['subject' => $activateMail['subject']]+$activateMail['context']);
+
+                                               //Try sending message
+                                               //XXX: mail delivery may silently fail
+                                               try {
+                                                       //Send message
+                                                       $this->mailer->send($message);
+                                               //Catch obvious transport exception
+                                               } catch(TransportExceptionInterface $e) {
+                                                       //Add error message mail unreachable
+                                                       $this->addFlash('error', $this->translator->trans('Account %mail% tried activate but unable to contact', ['%mail%' => $existing->getMail()]));
+                                               }
 
-                                       //Set recipient_name
-                                       $mail['context']['recipient_name'] = trim($user->getForename().' '.$user->getSurname().($user->getPseudonym()?' ('.$user->getPseudonym().')':''));
+                                               //Get route params
+                                               $routeParams = $request->get('_route_params');
 
-                                       //Init subject context
-                                       $subjectContext = [];
+                                               //Remove mail, field and hash from route params
+                                               unset($routeParams['mail'], $routeParams['field'], $routeParams['hash']);
 
-                                       //Process each context pair
-                                       foreach($mail['context'] as $k => $v) {
-                                               //Reinsert each context pair with the key surrounded by %
-                                               $subjectContext['%'.$k.'%'] = $v;
+                                               //Redirect on the same route with sent=1 to cleanup form
+                                               return $this->redirectToRoute($request->get('_route'), ['sent' => 1]+$routeParams);
                                        }
 
-                                       //Translate subject
-                                       $mail['subject'] = ucfirst($this->translator->trans($mail['subject'], $subjectContext));
-
-                                       //Create message
-                                       $message = (new TemplatedEmail())
-                                               //Set sender
-                                               ->from(new NamedAddress($this->config['contact']['mail'], $this->config['contact']['name']))
-                                               //Set recipient
-                                               //XXX: remove the debug set in vendor/symfony/mime/Address.php +46
-                                               ->to(new NamedAddress($mail['context']['recipient_mail'], $mail['context']['recipient_name']))
-                                               //Set subject
-                                               ->subject($mail['subject'])
-
-                                               //Set path to twig templates
-                                               ->htmlTemplate($mail['html'])
-                                               ->textTemplate($mail['text'])
-
-                                               //Set context
-                                               ->context(['subject' => $mail['subject']]+$mail['context']);
+                                       //Add error message mail already exists
+                                       $this->addFlash('warning', $this->translator->trans('Account %mail% already exists', ['%mail%' => $existing->getMail()]));
+
+                                       //Redirect to user view
+                                       return $this->redirectToRoute(
+                                               $this->config['route']['edit']['name'],
+                                               [
+                                                       'mail' => $smail = $this->slugger->short($existing->getMail()),
+                                                       'hash' => $this->slugger->hash($smail)
+                                               ]+$this->config['route']['edit']['context']
+                                       );
+                               }
+                       //Without mail
+                       } else {
+                               //Set smail
+                               $smail = $mail;
+                       }
 
-                                       //Try sending message
-                                       //XXX: mail delivery may silently fail
-                                       try {
-                                               //Send message
-                                               $mailer->send($message);
+                       //Try
+                       try {
+                               //Unshort then unserialize field
+                               $field = $this->slugger->unserialize($sfield = $field);
+                       //Catch type error
+                       } catch (\Error|\Exception $e) {
+                               //Throw bad request
+                               throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'field', '%value%' => $field]), $e);
+                       }
 
-                                               //Redirect on the same route with sent=1 to cleanup form
-                                               return $this->redirectToRoute($request->get('_route'), ['recipient' => $recipient, 'hash' => $hash, 'sent' => 1]+$request->get('_route_params'));
-                                       //Catch obvious transport exception
-                                       } catch(TransportExceptionInterface $e) {
-                                               //Add error message mail unreachable
-                                               $form->get('mail')->addError(new FormError($this->translator->trans('Account password updated but unable to contact: %mail%', array('%mail%' => $mail['context']['recipient_mail']))));
-                                       }
-                               }
+                       //With non array field
+                       if (!is_array($field)) {
+                               //Throw bad request
+                               throw new BadRequestHttpException($this->translator->trans('Invalid %field% field: %value%', ['%field%' => 'field', '%value%' => $field]));
                        }
-               //Accout not found
+               //Without field and hash
                } else {
-                       //Add error message to mail field
-                       $form->get('mail')->addError(new FormError($this->translator->trans('Unable to find account: %mail%', ['%mail%' => $slugger->unshort($recipient)])));
+                       //Set smail
+                       $smail = $mail;
+
+                       //Set smail
+                       $sfield = $field;
+
+                       //Reset field
+                       $field = [];
                }
 
-               //Render view
-               return $this->render(
-                       //Template
-                       $this->config['recover_mail']['view']['name'],
-                       //Context
-                       ['form' => $form->createView(), 'sent' => $request->query->get('sent', 0), 'notfound' => $notfound]+$this->config['recover_mail']['view']['context']
-               );
-       }
+               //Init reflection
+               $reflection = new \ReflectionClass($this->config['class']['user']);
+
+               //Create new user
+               $user = $reflection->newInstance(strval($mail));
 
-       public function register(Request $request, UserPasswordEncoderInterface $encoder, MailerInterface $mailer) {
                //Create the RegisterType form and give the proper parameters
-               $form = $this->createForm($this->config['register']['view']['form'], null, array(
-                       'class_title' => $this->config['class']['title'],
+               $form = $this->createForm($this->config['register']['view']['form'], $user, $field+[
                        //Set action to register route name and context
-                       'action' => $this->generateUrl($this->config['route']['register']['name'], $this->config['route']['register']['context']),
+                       'action' => $this->generateUrl($this->config['route']['register']['name'], ['mail' => $smail, 'field' => $sfield, 'hash' => $hash]+$this->config['route']['register']['context']),
+                       //Set civility class
+                       'civility_class' => $this->config['class']['civility'],
+                       //Set civility default
+                       'civility_default' => $this->doctrine->getRepository($this->config['class']['civility'])->findOneByTitle($this->config['default']['civility']),
+                       //With mail
+                       'mail' => true,
+                       //Set method
                        'method' => 'POST'
-               ));
+               ]+$this->config['register']['field']);
 
                if ($request->isMethod('POST')) {
-                       // Refill the fields in case the form is not valid.
+                       //Refill the fields in case the form is not valid.
                        $form->handleRequest($request);
 
                        if ($form->isValid()) {
                                //Set data
                                $data = $form->getData();
 
+                               //With existing registrant
+                               if ($this->doctrine->getRepository($this->config['class']['user'])->findOneByMail($mail = $data->getMail())) {
+                                       //Add error message mail already exists
+                                       $this->addFlash('warning', $this->translator->trans('Account %mail% already exists', ['%mail%' => $mail]));
+
+                                       //Redirect to user view
+                                       return $this->redirectToRoute(
+                                               $this->config['route']['edit']['name'],
+                                               [
+                                                       'mail' => $smail = $this->slugger->short($mail),
+                                                       'hash' => $this->slugger->hash($smail)
+                                               ]+$this->config['route']['edit']['context']
+                                       );
+                               }
+
                                //Set mail shortcut
-                               $mail =& $this->config['register']['mail'];
+                               $registerMail =& $this->config['register']['mail'];
+
+                               //Set password
+                               $user->setPassword($this->hasher->hashPassword($user, $user->getPassword()));
+
+                               //Persist user
+                               $this->manager->persist($user);
+
+                               //Iterate on default group
+                               foreach($this->config['default']['group'] as $i => $groupTitle) {
+                                       //Fetch group
+                                       if (($group = $this->doctrine->getRepository($this->config['class']['group'])->findOneByTitle($groupTitle))) {
+                                               //Set default group
+                                               //XXX: see vendor/symfony/security-core/Role/Role.php
+                                               $user->addGroup($group);
+                                       //Group not found
+                                       } else {
+                                               //Throw exception
+                                               //XXX: consider missing group as fatal
+                                               throw new \Exception(sprintf('Group from rapsys_user.default.group[%d] not found by title: %s', $i, $groupTitle));
+                                       }
+                               }
 
                                //Generate each route route
-                               foreach($mail['route'] as $route => $tag) {
-                                       if (empty($mail['context'][$tag]) && !empty($this->config['route'][$route])) {
-                                               $mail['context'][$tag] = $this->get('router')->generate(
-                                                       $this->config['route'][$route]['name'],
-                                                       $this->config['route'][$route]['context'],
-                                                       UrlGeneratorInterface::ABSOLUTE_URL
-                                               );
+                               foreach($this->config['register']['route'] as $route => $tag) {
+                                       //Only process defined routes
+                                       if (!empty($this->config['route'][$route])) {
+                                               //Process for confirm url
+                                               if ($route == 'confirm') {
+                                                       //Set the url in context
+                                                       $registerMail['context'][$tag] = $this->router->generate(
+                                                               $this->config['route'][$route]['name'],
+                                                               //Prepend subscribe context with tag
+                                                               [
+                                                                       'mail' => $smail = $this->slugger->short($data->getMail()),
+                                                                       'hash' => $this->slugger->hash($smail)
+                                                               ]+$this->config['route'][$route]['context'],
+                                                               UrlGeneratorInterface::ABSOLUTE_URL
+                                                       );
+                                               }
                                        }
                                }
 
                                //Set recipient_name
-                               $mail['context']['recipient_mail'] = $data['mail'];
+                               $registerMail['context']['recipient_mail'] = $data->getMail();
 
-                               //Set recipient_name
-                               $mail['context']['recipient_name'] = trim($data['forename'].' '.$data['surname'].($data['pseudonym']?' ('.$data['pseudonym'].')':''));
+                               //Set recipient name
+                               $registerMail['context']['recipient_name'] = $data->getRecipientName();
 
                                //Init subject context
-                               $subjectContext = [];
-
-                               //Process each context pair
-                               foreach($mail['context'] as $k => $v) {
-                                       //Reinsert each context pair with the key surrounded by %
-                                       $subjectContext['%'.$k.'%'] = $v;
-                               }
+                               $subjectContext = $this->slugger->flatten(array_replace_recursive($this->config['register']['view']['context'], $registerMail['context']), null, '.', '%', '%');
 
                                //Translate subject
-                               $mail['subject'] = ucfirst($this->translator->trans($mail['subject'], $subjectContext));
+                               $registerMail['subject'] = ucfirst($this->translator->trans($registerMail['subject'], $subjectContext));
 
                                //Create message
                                $message = (new TemplatedEmail())
                                        //Set sender
-                                       ->from(new NamedAddress($this->config['contact']['mail'], $this->config['contact']['name']))
+                                       ->from(new Address($this->config['contact']['mail'], $this->config['contact']['title']))
                                        //Set recipient
                                        //XXX: remove the debug set in vendor/symfony/mime/Address.php +46
-                                       ->to(new NamedAddress($mail['context']['recipient_mail'], $mail['context']['recipient_name']))
+                                       ->to(new Address($registerMail['context']['recipient_mail'], $registerMail['context']['recipient_name']))
                                        //Set subject
-                                       ->subject($mail['subject'])
+                                       ->subject($registerMail['subject'])
 
                                        //Set path to twig templates
-                                       ->htmlTemplate($mail['html'])
-                                       ->textTemplate($mail['text'])
+                                       ->htmlTemplate($registerMail['html'])
+                                       ->textTemplate($registerMail['text'])
 
                                        //Set context
-                                       ->context(['subject' => $mail['subject']]+$mail['context']);
-
-                               //Get doctrine
-                               $doctrine = $this->getDoctrine();
-
-                               //Get manager
-                               $manager = $doctrine->getManager();
-
-                               //Init reflection
-                               $reflection = new \ReflectionClass($this->config['class']['user']);
-
-                               //Create new user
-                               $user = $reflection->newInstance();
-
-                               $user->setMail($data['mail']);
-                               $user->setPseudonym($data['pseudonym']);
-                               $user->setForename($data['forename']);
-                               $user->setSurname($data['surname']);
-                               $user->setPhone($data['phone']);
-                               $user->setPassword($encoder->encodePassword($user, $data['password']));
-                               $user->setActive(true);
-                               $user->setTitle($data['title']);
-
-                               //XXX: For now there is no point in setting a role at subscription
-                               //TODO: see if we can't modify group constructor to set role directly from args
-                               //XXX: see vendor/symfony/symfony/src/Symfony/Component/Security/Core/Role/Role.php
-                               #$user->addGroup($doctrine->getRepository($this->config['class']['group'])->findOneByRole('ROLE_USER'));
-
-                               $user->setCreated(new \DateTime('now'));
-                               $user->setUpdated(new \DateTime('now'));
-
-                               //Persist user
-                               $manager->persist($user);
+                                       ->context(['subject' => $registerMail['subject']]+$registerMail['context']);
 
                                //Try saving in database
                                try {
                                        //Send to database
-                                       $manager->flush();
+                                       $this->manager->flush();
+
+                                       //Add error message mail already exists
+                                       $this->addFlash('notice', $this->translator->trans('Your account has been created'));
 
                                        //Try sending message
                                        //XXX: mail delivery may silently fail
                                        try {
                                                //Send message
-                                               $mailer->send($message);
+                                               $this->mailer->send($message);
 
                                                //Redirect on the same route with sent=1 to cleanup form
-                                               #return $this->redirectToRoute('rapsys_user_register', array('sent' => 1));
                                                return $this->redirectToRoute($request->get('_route'), ['sent' => 1]+$request->get('_route_params'));
                                        //Catch obvious transport exception
                                        } catch(TransportExceptionInterface $e) {
                                                //Add error message mail unreachable
-                                               $form->get('mail')->addError(new FormError($this->translator->trans('Account created but unable to contact: %mail%', array('%mail%' => $data['mail']))));
+                                               $form->get('mail')->addError(new FormError($this->translator->trans('Account %mail% tried subscribe but unable to contact', ['%mail%' => $data->getMail()])));
                                        }
                                //Catch double subscription
-                               } catch (\Doctrine\DBAL\Exception\UniqueConstraintViolationException $e) {
+                               } catch (UniqueConstraintViolationException $e) {
                                        //Add error message mail already exists
-                                       $form->get('mail')->addError(new FormError($this->translator->trans('Account already exists: %mail%', ['%mail%' => $data['mail']])));
+                                       $this->addFlash('error', $this->translator->trans('Account %mail% already exists', ['%mail%' => $mail]));
                                }
                        }
                }
@@ -441,11 +847,4 @@ class DefaultController extends AbstractController {
                        ['form' => $form->createView(), 'sent' => $request->query->get('sent', 0)]+$this->config['register']['view']['context']
                );
        }
-
-       /**
-        * {@inheritdoc}
-        */
-       public function getAlias() {
-               return 'rapsys_user';
-       }
 }