Roadiz

Appearance

Building contact forms

With Roadiz you can easily create simple contact forms with ContactFormManager class. Your controller has a convenient shortcut to create this manager with $this->createContactFormManager() method.

If you want to add your own fields, you can use the manager form-builder with $contactFormManager->getFormBuilder(). Then add your field using standard Symfony form syntax. Do not forget to use Constraints to handle errors.

One contact-form for one action

Here is an example to create your contact form in your controller action.

php
use Symfony\Component\Validator\Constraints\File;
use Symfony\Component\Form\Extension\Core\Type\CheckboxType;
use Symfony\Component\Form\Extension\Core\Type\FileType;
use Symfony\Component\Form\Extension\Core\Type\SubmitType;
use RZ\Roadiz\CoreBundle\Mailer\ContactFormManagerFactory;

// …
// Create contact-form manager and add 3 default fields.
$contactFormManager = $this->contactFormManagerFactory
                           ->create()        
                           ->withDefaultFields();
/*
 * (Optional) Add custom fields…
 */
$formBuilder = $contactFormManager->getFormBuilder();
$formBuilder->add('callMeBack', CheckboxType::class, [
        'label' => 'call.me.back',
        'required' => false,
    ])
    ->add('document', FileType::class, [
        'label' => 'document',
        'required' => false,
        'constraints' => [
            new File([
                'maxSize' => $contactFormManager->getMaxFileSize(),
                'mimeTypes' => $contactFormManager->getAllowedMimeTypes(),
            ]),
        ]
    ])
    ->add('send', SubmitType::class, [
        'label' => 'send.contact.form',
    ]);

/*
 * This is the most important point. handle method will perform form
 * validation and send email.
 *
 * Handle method should return a Response object if everything is OK.
 */
if (null !== $response = $contactFormManager->handle()) {
    return $response;
}

$form = $contactFormManager->getForm();

In this example, we used withDefaultFields method which add automatically email, name and message fields with right validation constraints. This method is optional and you can add any field you want manually, just keep in mind that you should always ask for an email.

Then in your contact page Twig template:

twig
{#
 # Display contact errors
 #}
{% for label, messages in app.flashes(['warning', 'error']) %}
   {% for message in messages %}
       <p class="alert alert-{{ label }}">
           {{- message -}}
       </p>
   {% endfor %}
{% endfor %}
{#
 # Display contact form
 #}
{% form_theme contactForm '@MyTheme/forms.html.twig' %}
{{ form(contactForm) }}

Using contact-form in block controllers

If you want to use contact-forms in blocks instead of a full page, you will need to make your redirection response bubble through Twig render. The only way to stop Twig is to throw an exception and to pass your Redirect or Json response within your Exception.

Roadiz makes this possible with RZ\Roadiz\CoreBundle\Exception\ForceResponseException. For example, in a App/Controllers/ContactBlockController, instead of returning the contactFormManager response, you will have to throw a ForceResponseException with it as an argument.

php
// ./src/Controllers/ContactBlockController.php

use RZ\Roadiz\CoreBundle\Exception\ForceResponseException;
use RZ\Roadiz\CoreBundle\Mailer\ContactFormManagerFactory;


// Create contact-form manager and add 3 default fields.
$contactFormManager = $this->contactFormManagerFactory
                           ->create()        
                           ->withDefaultFields();

if (null !== $response = $contactFormManager->handle()) {
    /*
     * Force response to bubble through Twig rendering process.
     */
    throw new ForceResponseException($response);
}

$form = $contactFormManager->getForm();

Then, in your master controller (i.e. PageController), render method will automatically catch your ForceResponseException exception in order to extract the forced response object. Then it will return your response instead of your page twig rendered output.

Alter email configuration after form submit

If you want to customize emails sent with form data, you can use Symfony form events to change the contact form manager options: The following example alters the email subject to add the user email and makes the subject unique for the receiver.

php
$formBuilder->addEventListener(FormEvents::SUBMIT, function (FormEvent $event) use ($contactFormManager) {
   $contactFormManager->setSubject($contactFormManager->getSubject() . ': ' . $event->getForm()->get('email')->getData());
});

You can also use this behaviour to change dynamically the contact form receiver after the user chose it in a select box input.

TIP

You can read more about form events at https://symfony.com/doc/current/form/events.html

Securing your form with a Captcha

Roadiz can seamlessly use a Captcha service to secure your contact form against robots. All you need to do is to register on one of the supported Captcha services to ask for a sitekey and a secret. Once you've got these two keys, add them to your .env.local or Symfony secrets.

  • APP_CAPTCHA_PRIVATE_KEY: Your reCAPTCHA or Friendly Captcha secret key.
  • APP_CAPTCHA_PUBLIC_KEY: Your reCAPTCHA or Friendly Captcha sitekey.
  • APP_CAPTCHA_VERIFY_URL: The URL to verify the captcha response, for example https://www.google.com/recaptcha/api/siteverify for reCAPTCHA or https://global.frcapi.com/api/v2/captcha/siteverify for Friendly Captcha.

Then, you can use the withCaptcha() method on your contact-form manager to add a captcha field to your form.

php
// Create contact-form manager, add 3 default fields and add a reCAPTCHA.
$contactFormManager = $this->contactFormManagerFactory
                           ->create()        
                           ->withDefaultFields()
                           ->withCaptcha();

Do not forget to add captcha form-template.

twig
{# In your theme’ forms.html.twig file #}
{% block recaptcha_widget -%}
   <input id="my-form-recaptcha" type="hidden" name="{{ form.vars.name }}" />
   <script src="https://www.google.com/recaptcha/api.js?render={{ configs.publicKey }}"></script>
   <script>
       /*
        * Google Recaptcha v3
        * @see https://developers.google.com/recaptcha/docs/v3
        */
       (function() {
           if (!window.grecaptcha) {
               console.warn('Recaptcha is not loaded');
           }
           var form = document.getElementById('my-form');
           form.addEventListener('submit', function (event) {
               event.preventDefault();
               window.grecaptcha.ready(function() {
                   window.grecaptcha.execute('{{ configs.publicKey }}', {action: 'submit'}).then(function(token) {
                       var input = document.getElementById('my-form-recaptcha');
                       if (input) {
                           input.value = token;
                       }
                       form.submit()
                   });
               });
           });
       })();
   </script>
{%- endblock recaptcha_widget %}

{% block friendlycaptcha_widget -%}
    {# FriendlyCaptcha widget frc-captcha-response #}
    {# https://developer.friendlycaptcha.com/docs/v2/getting-started/verify #}
    <script type="module" src="https://cdn.jsdelivr.net/npm/@friendlycaptcha/[email protected]/site.min.js" async defer></script>
    <script nomodule src="https://cdn.jsdelivr.net/npm/@friendlycaptcha/[email protected]/site.compat.min.js" async defer></script>
    <div class="frc-captcha" id="{{ form.vars.id }}" data-sitekey="{{ configs.publicKey }}" data-form-field-name="{{ form.vars.full_name }}"></div>
{%- endblock friendlycaptcha_widget %}

{% block hcaptcha_widget -%}
    <script src="https://js.hcaptcha.com/1/api.js" async defer></script>
    <div class="h-captcha" id="{{ form.vars.id }}" data-sitekey="{{ configs.publicKey }}" data-form-field-name="{{ form.vars.full_name }}"></div>
{%- endblock hcaptcha_widget %}

Roadiz is proudly maintained by Rezo Zero Team. © Copyright 2013-present, Ambroise Maupate, Julien Blanchet.