feat: use timestamp instead of bool on is_verified

2025-12-29 16:15:04 +00:00 · 2025-10-04 12:24:20 +02:00
parent b3d75228e9
commit 79589e63eb
6 changed files with 66 additions and 11 deletions
--- a/src/Controller/RegistrationController.php
+++ b/src/Controller/RegistrationController.php
@@ -73,10 +73,10 @@ class RegistrationController extends AbstractController
                $user,
                $user->getPassword()
            )
-        );
+        )->setCreatedAt(new \DateTimeImmutable());

        if (false === (bool) $this->getParameter('registration_verify_email')) {
-            $user->setVerified(true);
+            $user->setVerifiedAt($user->getCreatedAt());
        } else {
            $email = $this->emailVerifier->sendEmailConfirmation('app_verify_email', $user,
                (new TemplatedEmail())
--- a/src/Entity/User.php
+++ b/src/Entity/User.php
@@ -75,7 +75,10 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
    private Collection $connectors;

    #[ORM\Column]
-    private bool $isVerified = false;
+    private ?\DateTimeImmutable $createdAt = null;
+
+    #[ORM\Column(nullable: true)]
+    private ?\DateTimeImmutable $verifiedAt = null;

    public function __construct()
    {
@@ -215,14 +218,26 @@ class User implements UserInterface, PasswordAuthenticatedUserInterface
        return $this;
    }

-    public function isVerified(): bool
+    public function getCreatedAt(): ?\DateTimeImmutable
    {
-        return $this->isVerified;
+        return $this->createdAt;
    }

-    public function setVerified(bool $isVerified): static
+    public function setCreatedAt(\DateTimeImmutable $createdAt): static
    {
-        $this->isVerified = $isVerified;
+        $this->createdAt = $createdAt;
+
+        return $this;
+    }
+
+    public function getVerifiedAt(): ?\DateTimeImmutable
+    {
+        return $this->verifiedAt;
+    }
+
+    public function setVerifiedAt(\DateTimeImmutable $verifiedAt): static
+    {
+        $this->verifiedAt = $verifiedAt;

        return $this;
    }
--- a/src/Security/EmailVerifier.php
+++ b/src/Security/EmailVerifier.php
@@ -47,7 +47,7 @@ readonly class EmailVerifier
    {
        $this->verifyEmailHelper->validateEmailConfirmationFromRequest($request, (string) $user->getId(), $user->getEmail());

-        $user->setVerified(true);
+        $user->setVerifiedAt(new \DateTimeImmutable());

        $this->entityManager->persist($user);
        $this->entityManager->flush();
--- a/src/Security/JWTAuthenticator.php
+++ b/src/Security/JWTAuthenticator.php
@@ -33,7 +33,7 @@ class JWTAuthenticator implements AuthenticationSuccessHandlerInterface

    public function handleAuthenticationSuccess(UserInterface $user, $jwt = null): Response
    {
-        if (($user instanceof User) && !$user->isVerified()) {
+        if (($user instanceof User) && null === $user->getVerifiedAt()) {
            throw new AccessDeniedHttpException('You have not yet validated your email address.');
        }

--- a/src/Security/OAuthAuthenticator.php
+++ b/src/Security/OAuthAuthenticator.php
@@ -57,8 +57,8 @@ class OAuthAuthenticator extends OAuth2Authenticator implements AuthenticationEn
                    return $existingUser;
                }

-                $user = new User();
-                $user->setEmail($userFromToken->getEmail())->setVerified(true);
+                $user = (new User())->setCreatedAt(new \DateTimeImmutable());
+                $user->setEmail($userFromToken->getEmail())->setVerifiedAt($user->getCreatedAt());
                $this->em->persist($user);
                $this->em->flush();