Level 4
I have redacted the guard with a generic "foo" for privacy.
Dec 2, 2025
5
Level 4
Alternative way to achieve this kind of validation
Hello,
don't kill me please. I tried the Laravel "validation" style but I'm unable to get the same result for the following (dirty) code.
public function update(Request $request)
{
if (empty($request->current_password)) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.current_password.error.required')
->with('hasLinkBack', true);
}
if (empty($request->new_password)) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.new_password.error.required')
->with('hasLinkBack', true);
}
if (strlen($request->new_password) < 8) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.new_password.error.min')
->with('hasLinkBack', true);
}
if (empty($request->new_password_verify)) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.new_password_verify.error.required')
->with('hasLinkBack', true);
}
if ($request->new_password !== $request->new_password_verify) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.new_password_verify.error.different')
->with('hasLinkBack', true);
}
// Check current password
if (!Hash::check($request->current_password, auth('foo')->user()->password)) {
return back()->withInput()
->with('error', 'lang.profile.settings.preferences.password.current_password.error.incorrect')
->with('hasLinkBack', true);
}
// Update password
auth('foo')->user()->update(['password' => Hash::make($request->new_password)]);
return redirect()
->route('my.profile.settings.preferences.password.edit')
->with('success', 'lang.profile.settings.preferences.password.updated_successfully');
}
Basically I want to flash one error at time. Could you please suggest a cleaner approach?
Thanks Simon
Level 104
The framework's validator will be more robust; you can bail or stopOnFirstFailure on the first failure on any attribute, you can validate the current_password for a given guard. You can specify your custom error messages, and even return only the first failure if that's what you want (although this is horrible UX in my opinion - if the user makes multiple mistakes, then let them know to fix all of them:
$validator = Validator::make($request->all(), [
'current_password' => ['bail', 'required', 'current_password:foo'],
'new_password' => ['bail', 'required'],
'new_password_verify' => ['bail', 'required'],
], [
'current_password.required' => 'lang.profile.settings.preferences.password.current_password.error.required',
'new_password.required' => 'lang.profile.settings.preferences.password.new_password.error.required',
'new_password_verify.required' => 'lang.profile.settings.preferences.password.new_password_verify.error.required',
]);
if ($validator->stopOnFirstFailure()->fails()) {
return back()
->withInput()
->withErrors()
->with('hasLinkBack', true);
}
// Update password
auth('foo')->user()->update(['password' => Hash::make($request->new_password)]);
return redirect()
->route('my.profile.settings.preferences.password.edit')
->with('success', 'lang.profile.settings.preferences.password.updated_successfully');
1 like
Level 80
@thesimons What is the motivation for only showing one error at a time? Because as @tykus says, if there are multiple errors, and I resolve one, re-submit, and just get presenting with a different error, there’s only so many times I’m going to go through that process before I go, “F— this” and leave your site and never return.
1 like
Level 4
That's a good point! However this is the logic for panel into the "private area".
Many errors would "redundant". In example if new_password is missing, I just need to have an error saying "password missing". I don't need "password missing" and "passwords don't match".
Level 73
You won't as long as you mind the order you add the validations.
Please or to participate in this conversation.