The TastyIgniter user extension is a fundamental part of the TastyIgniter platform, providing comprehensive user management capabilities. It allows administrators to manage front-end users (customers) and staff members, handle authentication, registration, password reset, email verification, and user impersonation.
- User Management: Manage front-end users (customers) and staff members.
- Authentication: Handle user authentication.
- Registration: Handle customer registration with optional email verification.
- Password Reset: Provide users with the ability to reset their passwords.
- User Impersonation: Allow administrators to impersonate customers or other staff members for troubleshooting.
- Automation Events & Conditions: Provide automation events for customer registration and conditions for customer attributes.
You can install the extension via composer using the following command:
composer require tastyigniter/ti-ext-user:"^4.0" -WRun the database migrations to create the required tables:
php artisan igniter:upYou can configure the registration settings in the admin area. Navigate to the Manage > Settings > Customer registration admin settings page. Here you can enable/disable customer registration, and where to send registration emails to the customer email and/or location email.
To manage customers, navigate to the Customers admin page. Here you can view a list of all registered customers, search for customers, view customer details, and manage customer accounts.
To manage staff members, navigate to the Manage > Staff members admin page. Here you can view a list of all registered staff members, search for staff members, view staff member details, and manage staff member accounts.
To authenticate a customer, you can use the \Igniter\User\Facades\Auth facade. The attempt method accepts an array of credentials and a boolean value to indicate if the user should be remembered.
use Igniter\User\Facades\Auth;
$credentials = [
'email' => '[email protected]',
'password' => 'password',
];
Auth::attempt($credentials, $remember);The Auth::check method can be used to check if a user is authenticated.
if (Auth::check()) {
// The user is authenticated
}The Auth::logout method can be used to log out a user.
Auth::logout();For a streamlined approach to authenticating customers in TastyIgniter, you can use the \Igniter\User\Actions\LoginUser action class. This class mirrors the authentication process used by the default login form. It also dispatches two key events — igniter.user.beforeAuthenticate and igniter.user.login — which can be used to hook into the login process for custom behavior or integrations.
use Igniter\User\Actions\LoginCustomer;
$loginUser = new LoginCustomer($credentials, $remember);
$loginUser->handle();To authenticate a staff member, you can use the \Igniter\User\Facades\AdminAuth class. The attempt method accepts an array of credentials and a boolean value to indicate if the user should be remembered.
use Igniter\User\Facades\AdminAuth;
$credentials = [
'email' => '[email protected]',
'password' => 'password',
];
AdminAuth::attempt($credentials, $remember);The AdminAuth::check method can be used to check if a staff member is authenticated.
if (AdminAuth::check()) {
// The staff member is authenticated
}The AdminAuth::logout method can be used to log out a staff member.
AdminAuth::logout();To register a customer, you can use the \Igniter\User\Facades\Auth facade. The register method accepts an array of customer data and a boolean value to indicate if the customer should be activated. The method returns the created customer model.
use Igniter\User\Facades\Auth;
$customerData = [
'first_name' => 'John',
'last_name' => 'Doe',
'email' => '[email protected]',
'password' => 'password',
];
Auth::getProvider()->register($customerData);To create a staff member, you can use the \Igniter\User\Auth\UserProvider::register method. The register method accepts an array of staff member data and a boolean value to indicate if the staff member should be activated. The method returns the created staff member model.
use Igniter\User\Facades\AdminAuth;
$staffData = [
'name' => 'John Doe',
'username' => 'johndoe',
'email' => '[email protected]',
'password' => 'password',
];
AdminAuth::getProvider()->register($staffData);For a streamlined approach to registering customers in TastyIgniter, you can use the \Igniter\User\Actions\RegisterUser action class. This class mirrors the registration process used by the default registration form. It also dispatches two key events — igniter.user.beforeRegister and igniter.user.register — which can be used to hook into the registration process for custom behavior or integrations.
use Igniter\User\Actions\RegisterCustomer;
$data = [
'first_name' => 'John',
'last_name' => 'Doe',
'email' => '[email protected]',
'password' => 'password',
];
$registerUser = new RegisterCustomer();
$customer = $registerUser->handle($data);
if ($customer->is_activated) {
// Registration successful
$customer->mailSendRegistered(['account_login_link' => page_url('account.login')]);
} else {
// Registration requires email verification
$customer->mailSendEmailVerification([
'account_activation_link' => page_url('account.register').'?code='.$customer->getActivationCode(),
]);
}The activate method can be used to activate a customer account.
use Igniter\User\Actions\RegisterCustomer;
$registerUser = new RegisterCustomer();
$registerUser->activate();
$registerUser->sendRegisteredMail(['account_login_link' => page_url('account.login')]);To reset a customer's password, you can use the resetPassword method on the \Igniter\User\Models\Customer model. The method returns the reset password code.
use Igniter\User\Models\Customer;
$customer = Customer::where('email', '[email protected]')->first();
$resetCode = $customer->resetPassword();Using the mailSendResetPasswordRequest method, you can send a password reset email to the customer.
$customer->mailSendResetPasswordRequest([
'reset_link' => page_url('account.reset', ['code' => $resetCode]),
]);To complete the password reset process, you can use the completeResetPassword method on the \Igniter\User\Models\Customer model. The method accepts the reset password code and the new password.
$customer = Customer::where('email', '[email protected]')->first();
$customer->completeResetPassword($resetCode, 'new-password');Using the mailSendResetPassword method, you can send a password changed email to the customer.
$customer->mailSendResetPassword([
'account_login_link' => page_url('account.login'),
]);To reset a staff member's password, you can use the resetPassword method on the \Igniter\User\Models\User model. The method returns the reset password code.
use Igniter\User\Models\User;
$user = User::where('email', '[email protected]')->first();
$resetCode = $user->resetPassword();Using the mailSendResetPasswordRequest method, you can send a password reset email to the staff member.
$user->mailSendResetPasswordRequest([
'reset_link' => admin_url('login', ['code' => $resetCode]),
]);To complete the password reset process, you can use the completeResetPassword method on the \Igniter\User\Models\User model. The method accepts the reset password code and the new password.
$user = User::where('email', '[email protected]')->first();
$user->completeResetPassword($resetCode, 'new-password');Using the mailSendResetPassword method, you can send a password changed email to the staff member.
$user->mailSendResetPassword([
'login_link' => admin_url('login'),
]);You can also reset a staff member's password using the igniter:passwd Artisan command. The command accepts the staff's email address and the new password.
php artisan igniter:passwd '[email protected]' 'password'To impersonate a customer, you can use the impersonate method on the \Igniter\User\Facades\Auth facade. The method accepts the customer model.
use Igniter\User\Facades\Auth;
use Igniter\User\Models\Customer;
$customer = Customer::find(1);
Auth::impersonate($customer);Using the stopImpersonate method, you can stop impersonating the customer.
Auth::stopImpersonate();To impersonate a staff member, you can use the impersonate method on the \Igniter\User\Facades\AdminAuth facade. The method accepts the staff member model.
use Igniter\User\Facades\AdminAuth;
use Igniter\User\Models\User;
$user = User::find(1);
AdminAuth::impersonate($user);Using the stopImpersonate method, you can stop impersonating the staff member.
AdminAuth::stopImpersonate();To authorise access to admin pages, you can use the hasPermission method on the \Igniter\User\Models\User model. The method accepts the permission code.
use Igniter\User\Models\User;
$user = User::find(1);
if ($user->hasPermission('Admin.Orders')) {
// User has permission to access the admin orders page
}You can also use the hasAnyPermission method to check if a user has any of the specified permissions.
if ($user->hasAnyPermission(['Admin.Orders', 'Admin.Reservations'])) {
// User has permission to access the admin orders or reservations page
}Use the requiredPermissions property on admin controller classes to specify the permissions required to access the controller actions.
class Orders extends \Admin\Classes\AdminController
{
public $requiredPermissions = ['Admin.Orders'];
}When setting up automation rules through the Admin Panel, you can use the following events registered by this extension:
An automation event class used to capture the igniter.user.register system event when a customer registers. The event class is also used to prepare the customer parameters for automation rules. The following parameters are available:
customer: The customer model instance.data: The customer registration form data.
When setting up automation rules through the Admin Panel, you can use the following automation conditions registered by this extension:
A condition class used to check if an customer attribute match the specified value or rule. The following attributes are available:
first_name: The customer's first name.last_name: The customer's last name.telephone: The customer's telephone number.email: The customer's email address.
The User extension registers the following mail templates:
igniter.user::mail.registration- Registration mail sent to customers.igniter.user::mail.registration_alert- Registration alert mail sent to staff members.igniter.user::mail.activation- Email verification mail sent to customers.igniter.user::mail.invite- Invitation mail sent to staff members.igniter.user::mail.invite_customer- Invitation mail sent to customers.igniter.user::mail.password_reset- Password reset mail sent to customers.igniter.user::mail.password_reset_request- Password reset request mail sent to customers.igniter.user::mail.admin_password_reset_request- Password reset request mail sent to staff members.igniter.user::mail.admin_password_reset- Password reset mail sent to staff members.
The User extension registers the following permissions:
Admin.Customers- Control who can manage customers in the admin area.Admin.CustomerGroups- Control who can manage customer groups in the admin area.Admin.DeleteCustomers- Control who can delete customers in the admin area.Admin.ImpersonateCustomers- Control who can impersonate customers in the admin area.Admin.Staffs- Control who can manage staff members in the admin area.Admin.StaffGroups- Control who can manage staff groups in the admin area.Admin.DeleteStaffs- Control who can delete staff members in the admin area.Admin.Impersonate- Control who can impersonate staff members in the admin area.
This extension will fire some global events that can be useful for interacting with other extensions.
| Event | Description | Parameters |
|---|---|---|
igniter.user.beforeAuthenticate |
Before the user is attempting to authenticate | [ $component, $credentials ] |
igniter.user.login |
The user has logged in successfully | [ $component ] |
igniter.user.beforeRegister |
Before the user is attempting to register | [ &$postData ] |
igniter.user.register |
The user has registered successfully | [ $customer, $postData ] |
igniter.user.logout |
The user has logged out successfully | [ $customer ] |
Here is an example of hooking an event in the boot method of an extension class:
Event::listen('igniter.user.logout', function($customer) {
// ...
});Please see CHANGELOG for more information on what has changed recently.
If you encounter a bug in this extension, please report it using the Issue Tracker on GitHub.
Contributions are welcome! Please read TastyIgniter's contributing guide.
For reporting security vulnerabilities, please see our our security policy.
TastyIgniter User extension is open-source software licensed under the MIT license.
