Files
Vasyka 3da1f5412a feat: shop UX polish — password reset / order email / multi-image / customer admin
Shop password reset:
- Configured 'shop_customers' password broker on the existing
  password_reset_tokens table
- ShopCustomer::sendPasswordResetNotification overrides Laravel default to
  send a ShopPasswordResetMail with a tenant-subdomain reset URL
- Routes /shop/password/forgot, /shop/password/email, /shop/password/reset/{token}
  + ShopAuthController showForgotPassword/sendResetLink/showResetPassword/
  resetPassword. Forgot view stays generic ("if it exists, we sent…") to avoid
  email enumeration. Login view links to "Am uitat parola".

Order confirmation email:
- ShopOrderConfirmationMail + nicely formatted HTML email template
- ShopOrderNotifier::placed now also emails customer_email (best-effort,
  warning-only logged on failure) alongside existing Telegram + staff push

Multiple images per Part:
- Part media collection switched from singleFile to multiple (max 8 in form)
- imageUrls() helper for galleries; imageUrl() still returns first for cards
- PartResource form: reorderable multi-upload
- Shop part detail: vertical thumbnails switch the main image via vanilla JS

ShopCustomerResource (tenant Filament, "Magazin" nav group):
- List with name/phone/email/client_id/orders_count/last_login_at
- Edit (no password field exposed)
- "Trimite reset parolă" action uses the new broker
- OrdersRelationManager shows the customer's orders read-only

Tests (7 new):
- forgot sends mail; forgot doesn't disclose unknown email; reset with valid
  token changes password; bad token rejected; order email when customer_email
  set; email skipped without it; Part has imageUrls() collection

Full suite: 130 passed.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-06-03 06:14:45 +00:00

57 lines
1.7 KiB
PHP

<?php
namespace App\Models\Tenant;
use App\Models\Concerns\BelongsToTenant;
use Illuminate\Database\Eloquent\Relations\BelongsTo;
use Illuminate\Database\Eloquent\Relations\HasMany;
use Illuminate\Database\Eloquent\SoftDeletes;
use Illuminate\Foundation\Auth\User as Authenticatable;
use Illuminate\Notifications\Notifiable;
class ShopCustomer extends Authenticatable
{
use BelongsToTenant, Notifiable, SoftDeletes;
protected $fillable = [
'company_id', 'client_id', 'name', 'phone', 'email', 'password', 'last_login_at',
];
protected $hidden = ['password', 'remember_token'];
protected $casts = [
'last_login_at' => 'datetime',
'password' => 'hashed',
];
public function client(): BelongsTo
{
return $this->belongsTo(Client::class);
}
public function orders(): HasMany
{
return $this->hasMany(OnlineOrder::class);
}
/** Auth column for Laravel's session guard. */
public function getAuthIdentifierName()
{
return 'id';
}
/** Send custom reset mail with a /shop/password/reset URL on the tenant subdomain. */
public function sendPasswordResetNotification($token): void
{
$tenant = \App\Models\Central\Company::withoutGlobalScopes()->find($this->company_id);
if (! $tenant || ! $this->email) return;
$central = config('app.central_domain') ?: config('tenancy.central_domains.0', 'service.mir.md');
$url = "https://{$tenant->slug}.{$central}/shop/password/reset/{$token}?email=" . urlencode($this->email);
\Illuminate\Support\Facades\Mail::to($this->email)->send(
new \App\Mail\ShopPasswordResetMail($this, $tenant, $url)
);
}
}