Comments on: CakePHP – Activating User Account via Email

By: David Lefkon

David Lefkon — Tue, 02 Mar 2010 08:40:29 +0000

Nice tutorial .. thx!

Made a mod that should allow the activation code an additional day before it expires:

in app/controllers/users_controller:

function register() {
if (!empty($this->data)) {
$this->User->create();
$this->User->save($this->data);
$this->Session->setFlash(’Your account has not been activated yet!’);
$this->__sendActivationEmail($this->User->getLastInsertID());
$this->redirect(’/line’);
}
}

function activate($user_id = null, $in_hash = null) {
$this->User->find(array(’User.id’ => $this->params['pass'][0]), array(’User.id’, ‘User.email’, ‘User.username’), null, false);
if ($this->User->getActivationHash() == $this->params['pass'][1] || $this->User->getYesterdaysActivationHash() == $this->params['pass'][1])
{
// Update the active flag in the database
$this->User->saveField(’active’, 1);

// Let the user know they can now log in!
$this->Session->setFlash(’Your account has been activated, please log in below’);
$this->redirect(’login’);
}
// Activation failed, render ‘/views/user/activate.ctp’ which should tell the user.
}

… and in app/models/user.php

function getActivationHash()
{
if (!isset($this->id)) {
return false;
}
return substr(Security::hash(Configure::read(’Security.salt’) . $this->field(’created’) . date(’y') . date(’m'). date(’d')), 0, 8);
}

function getYesterdaysActivationHash()
{
if (!isset($this->id)) {
return false;
}
return substr(Security::hash(Configure::read(’Security.salt’) . $this->field(’created’) . date(’y') . date(’m'). date(’d') – 1), 0, 8);
}

By: Ganzgenau

Ganzgenau — Mon, 21 Dec 2009 16:45:51 +0000

Thanks so much!

By: ANAND

ANAND — Tue, 24 Nov 2009 06:59:02 +0000

hi all…
Actually am getting bellow mentioned error

Missing Component File

Error: The component file was not found.

Error: Create the class ‘Auth’Component in file: app\controllers\components\‘auth’.php

Notice: If you want to customize this error message, create app\views\errors\missing_component_file.ctp

not getting wt is the proble…

By: Siddhartha

Siddhartha — Tue, 17 Nov 2009 02:39:51 +0000

Wonderful tutorial.
Just one point to note.

file:// /app/controllers/users_controller.php

Add following line in the UsersController::beforeFilter()
{
…
$this->Auth->autoRedirect = false;
…
}
This will allow you to use further checking on login() action.

By: Glen Barnhardt

Glen Barnhardt — Fri, 31 Jul 2009 18:47:50 +0000

Thanks for the great article. I was able to implement this into my latest application with not to much work. Thanks for all the great comments as they helped me to fix the few errors I ran into during the implementation.

Good Job!!

By: Diogenes (youngwebmaster)

Diogenes (youngwebmaster) — Tue, 07 Jul 2009 15:11:58 +0000

@Steppio, @bryan, @Jonny
The problem is the fact that there is a small oversight/typo in the code.

function activate($user_id = null, $in_hash = null) {
$this->User->id = $id;

should actually be

function activate($user_id = null, $in_hash = null) {
$this->User->id = $user_id;

He referred to $id instead of $user_id, which was the real name of the variable passed to the function via the url, which is why this wouldn’t work/would give you errors if you just copied and pasted the above code. Just goes to show that using someone’s code without really knowing what it’s doing and how is a bad idea.

Cheers!

By: bryan

bryan — Wed, 10 Jun 2009 03:11:03 +0000

This article is exactly what I was looking for but I am experiencing a lot of trouble adjusting the code to work with Cake 1.2 – I am new to Cake. Is there a chance someone can clarify what to do for things such as:

__sendActivationEmail(…)
$user['User']['id']
giving me Undefined index: id

function activate(…)
$this->User->id = $id;
giving me Undefined variable: id

Any chance someone can port this??

I hope this isn’t a stupid question – Sorry in advance if it is!

By: ZedR

ZedR — Thu, 14 May 2009 12:52:51 +0000

Hi!!

How do I authenticate user without login when user clicks on activate link from email & redirect to an action of different controller(this too authenticated). I dont want the user to login when clicked on activation link & is authenticated automatically. I am new to cakephp. Any help will be appreciated. Thanks.

By: james

james — Thu, 26 Mar 2009 21:04:14 +0000

I couldn’t get the email to send out an activation link with the user id in it.

To get that to work i had to change in the email function:

$user = $this->User->find(array(‘User.id’ => $user_id), array(‘User.email’, ‘User.username’), null, false);

to this:

$user = $this->User->find(array(’User.id’ => $user_id), array(’User.id’, ‘User.user_email’, ‘User.username’), null, false);

By: Peter Childs

Peter Childs — Wed, 18 Feb 2009 13:48:06 +0000

Thanks so much for this – it taught me a lot and helped greatly.

Not that it went totally smoothly – because I’m a neophyte programmer teaching myself cake and php simultaneously and my application is laid out differently with additional code embedded within your email activation framework.

My learning’s from yesterday – beware when you are getting only part of the expected result. I use an Auth based permission system (adapted from another tutorial) that defaults to login when a user isn’t permitted to access a URL. When I clicked the email and went to login I thought everything was working – EXCEPT the active field wasn’t getting updated and I couldn’t understand why.

It took a day, and traipsing through increasingly hair-brained possibilities (and learning new stuff along the way) before doing the obvious, change the redirect page and see whether the activate action was being used. It wasn’t. From there it was just a small step understand what was really going on and add activate to Auth’s before filter list.

It’s a long story – but without tutorials like yours, teaching oneself to code would be incredibly difficult, and building a functional site (even if it lives on localhost) would be totally impossible. Thanks!