Restrict registration email domain

LucasPereira

Im to be in search of a solution to lock down the email on registration to only one single domain. Anybody got a hint?
Would I be able to accomplish this by extend?

Thanks in advance!
Regards!

LucasPereira

I tried this but to no avail!

<?php

use Flarum\Extend;
use Flarum\User\UserValidator;
use Illuminate\Support\Str;

return [
  // Register extenders here
  (new Extend\Validator(UserValidator::class))
    ->configure(function ($flarumValidator, $validator) {
        $rules = $validator->getRules();

        if (!array_key_exists('email', $rules)) {
            return;
          }
          
          $rules['email'] = array_map(function(string $rule) {
            if (Str::startsWith($rule, 'regex:')) {
              return 'regex:/^[.a-z0-9_]+@mydomain.com.br/i';
            }
            else{
              array_push($rule, 'regex:');
              if (Str::startsWith($rule, 'regex:')) {
              return 'regex:/^[.a-z0-9_]+@mydomain.com.br/i';
              }
          } 
            return $rule;
          }, $rules['email']);

        $validator->setRules($rules);
    }),
];

clarkwinkelmann

In the example for the username validation the existing regex must be replaced because we are adding a rule that's less constrained than the original. But in this situation since we want to add additional constraints that don't conflict with the existing constraints, we can just append a new validation rule.

The Laravel validator also can accept multiple regex: validation rules so there's no need to loop through the existing rules, we can just append a new one at the end.

And finally, don't forget to escape dots 😉

In my example I have shortened the regex for the situation where we only want to check the end of the string and not validate the name before @. i modifier can be removed if we only validate the end of the string and want the domain lowercase.

<?php

use Flarum\Extend;
use Flarum\User\UserValidator;

return [
  // Register extenders here
  (new Extend\Validator(UserValidator::class))
    ->configure(function ($flarumValidator, $validator) {
      $rules = $validator->getRules();

      if (!array_key_exists('email', $rules)) {
        return;
      }

      $rules['email'][] = 'regex:/@example\.com$/';

      $validator->setRules($rules);
    }),
];

This seems to work on my local install. Of course some additional explanation somewhere of the email syntax would be useful otherwise the user just sees "The email format is invalid" without any more details. There's a way to customize the validation error message but I'd need to go dig in the source code to remember how that can be changed.

LucasPereira

clarkwinkelmann Thank you so much for your help, I was stuck in this for a long time. If you can help me with the personalization of the message I would appreciate it, I keep looking for it too

LucasPereira

Justoverclock My extend.php is basically what clarkwinkelmann provided. I'm just trying to find a way to change the alert message.

<?php

use Flarum\Extend;
use Flarum\User\UserValidator;

return [
  // Register extenders here
  (new Extend\Validator(UserValidator::class))
    ->configure(function ($flarumValidator, $validator) {
      $rules = $validator->getRules();

      if (!array_key_exists('email', $rules)) {
        return;
      }

      $rules['email'][] = 'regex:/@faeterj\.com\.br$/i';

      $validator->setRules($rules);
    }),
];

could be: The email must be from the @faeterj.com.br domain

Hari

😙 (whistle) someone gonna make white list domains only eligible for signup extension. ❤️

But can we set a wild card rule to allow other domains if they try to signup using social login?

This is much more better than the block list approach.

Justoverclock

LucasPereira are you working on this extension?

LucasPereira

Justoverclock I'm searching the documentation for a way to issue a specific alert, but without success

Justoverclock

LucasPereira I mean you are about to release an extension that prevent registration from certain domain?

For the translation I think is translated into the core

LucasPereira

Justoverclock I just made changes to extend.php. Now I would like to edit the alert message through this file as well

Justoverclock

If you share the code maybe we could make an extension

Justoverclock

You can use translation inspector extension to translate this line

clarkwinkelmann

Using Linguist it's possible to change the translation for the "regex" error message but the problem would be that it would apply anywhere a regex validation is used in Flarum, which isn't desirable.

The following works if there's a single regex: rule on the UserValidator:

If a different extension were to register a regex rule on the user validation and define a custom error message as well, the last message registered would be used for both rules.

<?php

use Flarum\Extend;
use Flarum\User\UserValidator;

return [
  // Register extenders here
  (new Extend\Validator(UserValidator::class))
    ->configure(function ($flarumValidator, $validator) {
      $rules = $validator->getRules();

      if (!array_key_exists('email', $rules)) {
        return;
      }

      $rules['email'][] = 'regex:/@example\.com$/';

      $validator->setRules($rules);

      $validator->setCustomMessages([
        'email.regex' => 'The email address must use @example.com domain.',
      ]);
    }),
];

If support for multiple regexes are required with each a custom message on the UserValidator, a custom validation callback could be used instead of the regex: rule, so that it can provide a custom error message that doesn't apply to any other rule.

Justoverclock

clarkwinkelmann in this case is better to use

$varName = resolve('translator')->trans('<desc key>');

So if you are going to release this as an extension anyone can translate your message

clarkwinkelmann

Justoverclock yes absolutely! My example was for a solution that's self-contained in the local extend.php.

When making an extension you might even be able to just register a message on validations.custom.email.regex key and the Laravel validator will automatically pick it up (it's this feature from Laravel which I assume might work with Flarum as well https://laravel.com/docs/8.x/validation#specifying-custom-messages-in-language-files). But it's not an easy option for local extend.php since you can't register a new translation key with Linguist so you would have to register a local translation file.

LucasPereira

Thanks clarkwinkelmann and Justoverclock for the help, I implemented the posted code and working fine. In the future when I acquire knowledge in extension I can find a way to translate.