feat: use timestamp instead of bool on is_verified

2025-12-29 16:15:04 +00:00 · 2025-10-04 12:24:20 +02:00
parent b3d75228e9
commit 79589e63eb
6 changed files with 66 additions and 11 deletions
--- a/src/Security/EmailVerifier.php
+++ b/src/Security/EmailVerifier.php
@@ -47,7 +47,7 @@ readonly class EmailVerifier
    {
        $this->verifyEmailHelper->validateEmailConfirmationFromRequest($request, (string) $user->getId(), $user->getEmail());

-        $user->setVerified(true);
+        $user->setVerifiedAt(new \DateTimeImmutable());

        $this->entityManager->persist($user);
        $this->entityManager->flush();
--- a/src/Security/JWTAuthenticator.php
+++ b/src/Security/JWTAuthenticator.php
@@ -33,7 +33,7 @@ class JWTAuthenticator implements AuthenticationSuccessHandlerInterface

    public function handleAuthenticationSuccess(UserInterface $user, $jwt = null): Response
    {
-        if (($user instanceof User) && !$user->isVerified()) {
+        if (($user instanceof User) && null === $user->getVerifiedAt()) {
            throw new AccessDeniedHttpException('You have not yet validated your email address.');
        }

--- a/src/Security/OAuthAuthenticator.php
+++ b/src/Security/OAuthAuthenticator.php
@@ -57,8 +57,8 @@ class OAuthAuthenticator extends OAuth2Authenticator implements AuthenticationEn
                    return $existingUser;
                }

-                $user = new User();
-                $user->setEmail($userFromToken->getEmail())->setVerified(true);
+                $user = (new User())->setCreatedAt(new \DateTimeImmutable());
+                $user->setEmail($userFromToken->getEmail())->setVerifiedAt($user->getCreatedAt());
                $this->em->persist($user);
                $this->em->flush();