catch model exceptions when looking up user from remember me cookies

infusephp · May 13, 2018 · 6c521e9 · 6c521e9
1 parent c9af55d
commit 6c521e9
Showing 1 changed file with 9 additions and 3 deletions.
diff --git a/src/Libs/RememberMeCookie.php b/src/Libs/RememberMeCookie.php
@@ -16,6 +16,7 @@
 use Infuse\Auth\Models\PersistentSession;
 use Infuse\Request;
 use Infuse\Utility as U;
+use Pulsar\Exception\ModelException;
 
 class RememberMeCookie
 {
@@ -199,9 +200,14 @@ public function verify(Request $req, AuthManager $auth)
         }
 
         // look up the user with a matching email address
-        $userClass = $auth->getUserClass();
-        $user = $userClass::where('email', $this->email)
-                          ->first();
+        try {
+            $userClass = $auth->getUserClass();
+            $user = $userClass::where('email', $this->email)
+                ->first();
+        } catch (ModelException $e) {
+            // fail open when unable to look up the user
+            return false;
+        }
 
         if (!$user) {
             return false;