src/Controller/SecurityController.php line 150

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Token;
  6. use App\Entity\User\Consumer;
  7. use App\Entity\User\Admin;
  8. use App\Entity\User\Identity;
  9. use App\Entity\User\Referent;
  10. use App\Entity\User\User;
  11. use App\Form\RequestResetPasswordType;
  12. use App\Form\User\ResetPasswordType;
  13. use App\Manager\TokenManager;
  14. use App\Message\Email\SendInitializationAccountByEmailMessage;
  15. use App\Repository\MediaObject\MediaObjectRepository;
  16. use App\Service\SendInBlue;
  17. use Doctrine\ORM\EntityManagerInterface;
  18. use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
  19. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  20. use Symfony\Component\HttpFoundation\JsonResponse;
  21. use Symfony\Component\HttpFoundation\RedirectResponse;
  22. use Symfony\Component\HttpFoundation\Request;
  23. use Symfony\Component\HttpFoundation\Response;
  24. use Symfony\Component\Messenger\MessageBusInterface;
  25. use Symfony\Component\Routing\Annotation\Route;
  26. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  27. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  29. class SecurityController extends AbstractController
  30. {
  31.     /**
  32.      * @Route("/security", name="security")
  33.      */
  34.     public function index()
  35.     {
  36.         return $this->render('security/index.html.twig', [
  37.             'controller_name' => 'SecurityController',
  38.         ]);
  39.     }
  41.     /**
  42.      * @Route("/login", name="app_login")
  43.      * @throws \Exception
  44.      */
  45.     public function login(AuthenticationUtils $authenticationUtilsRequest $request): Response
  46.     {
  47.         // get the login error if there is one
  48.         $error $authenticationUtils->getLastAuthenticationError();
  49.         // last username entered by the user
  50.         $lastUsername $authenticationUtils->getLastUsername();
  52.         if ($_ENV['RESTRICTION_ACCESS'] && $_ENV['CHECK_MAINTENANCE_PAGE_ON']) {
  53.             $allowedIp = [];
  54.             $clientIp $request->getClientIp();
  56.             if (isset($_ENV['ALLOWED_IP']) && $_ENV['ALLOWED_IP']) {
  57.                 $allowedIp explode(','$_ENV['ALLOWED_IP']);
  58.             }
  60.             if (in_array($clientIp$allowedIp)) {
  62.                 return $this->render('security/login.html.twig', ['last_username' => $lastUsername'error' => $error'csrf_token' => 'authenticate']);
  63.             }
  65.             return $this->render('error/maintenance.html.twig');
  66.         }
  68.         return $this->render('security/login.html.twig', ['last_username' => $lastUsername'error' => $error'csrf_token' => 'authenticate']);
  69.     }
  71.     /**
  72.      * @Route("/client_login", name="app_client_login")
  73.      */
  74.     public function clientlogin(AuthenticationUtils $authenticationUtilsMediaObjectRepository $mediaObjectRepository): Response
  75.     {
  76.         // get the login error if there is one
  77.         $error $authenticationUtils->getLastAuthenticationError();
  78.         // last username entered by the user
  79.         $lastUsername $authenticationUtils->getLastUsername();
  81.         $logo $mediaObjectRepository->findOneLikeByName(strtolower($_ENV['APP_PROJET']));
  82.         return $this->render('security/client_login.html.twig', [
  83.             'last_username' => $lastUsername,
  84.             'error' => $error,
  85.             'csrf_token' => 'authenticate',
  86.             'logo_path' => $logo $logo->getFilePath() : null
  87.         ]);
  88.     }
  90.     /**
  91.      * @Route("/api/public/request-reset-password", name="app_request_reset_password")
  92.      * @param Request $request
  93.      *
  94.      * @return JsonResponse
  95.      */
  96.     public function requestResetPassword(Request      $requestEntityManagerInterface $entityManagerSendInBlue $sendInBlue,
  97.                                          TokenManager $tokenManagerMessageBusInterface $bus)
  98.     {
  99.         $data json_decode($request->getContent(), true);
  100.         $form $this->createForm(RequestResetPasswordType::class, $data);
  101.         $form->submit($data);
  103.         $email $data['email'];
  104.         if ($form->isValid() && $user $entityManager->getRepository(Consumer::class)->findOneBy(['email' => $email])) {
  106.             if (!$user->isOptinProcess()) {
  107.                 $url $_ENV['PRE_INSCRIPTION_MILLERET'];
  108.                 $templateId $_ENV['PRE_INSCRIPTION_MILLERET_TEMPLATE_ID'];
  110.                 $token_initialization $entityManager->getRepository(Token::class)->findOneBy(['user' => $user'name' => Token::NAME_INITIALIZATION_PASSWORD]);
  111.                 $token $tokenManager->requestInitializationForgottenPassword($token_initialization);
  113.                 $identity $entityManager->getRepository(Identity::class)->findOneBy(['id' => $user->getIdentity()->getId()]);
  114.                 $url $url $token->getId();
  116.                 $bus->dispatch(new SendInitializationAccountByEmailMessage(
  117.                         $user->getId(),
  118.                         $email,
  119.                         $identity->getGender(),
  120.                         $identity->getFirstName(),
  121.                         $identity->getLastName(),
  122.                         $templateId,
  123.                         $url)
  124.                 );
  125.             } else {
  126.                 if ($entityManager->getRepository(Token::class)->countActiveToken($userToken::NAME_FORGOTTEN_PASSWORD) >= Token::MAX_REQUEST_FORGOTTEN_PASSWORD) {
  127.                     return new JsonResponse(['error' => 'limit'], 200);
  128.                 }
  130.                 $token $tokenManager->requestResetPassword($user);
  131.                 $sendInBlue->sendTemplate($data['templateId'], [
  132.                     'to' => [
  133.                         ["email" => $email]
  134.                     ],
  135.                     'templateParameters' =>
  136.                         [
  137.                             'URL' => $data['url'] . $token->getId(),
  138.                             'SURNAME' => $token->getUser()->getIdentity()->getFormatedGender() . ' ' $token->getUser()->getIdentity()->getLastName() . ' ' $token->getUser()->getIdentity()->getFirstName()
  139.                         ],
  140.                 ]);
  141.             }
  142.         }
  144.         return new JsonResponse(null204);
  145.     }
  147.     /**
  148.      * @Route("/forget_password", name="app_forgotten_password")
  149.      */
  150.     public function forgottenPassword(Request                $requestMediaObjectRepository $mediaObjectRepository,
  151.                                       EntityManagerInterface $entityManagerTokenManager $tokenManager,
  152.                                       SendInBlue             $sendInBlue)
  153.     {
  154.         $error "";
  155.         $success false;
  156.         $request->request->add([
  157.             'templateId' => $_ENV['TEMPLATE_RESET_PASSWORD_ADMIN'],
  158.             'url' => $request->getSchemeAndHttpHost() . '/reset_password/',
  159.         ]);
  161.         $form $this->createForm(RequestResetPasswordType::class, $request->request->all());
  162.         $form->submit($request->request->all());
  164.         if ($form->isValid()) {
  165.             $success true;
  167.             $userForgotPassword $entityManager->getRepository(Referent::class)->findOneBy(['email' => $form->getData()['email']]);
  168.             if (!$userForgotPassword) {
  169.                 $userForgotPassword $entityManager->getRepository(Admin::class)->findOneBy(['email' => $form->getData()['email'], 'active' => true]);
  170.             }
  171.             if ($userForgotPassword) {
  172.                 if ($entityManager->getRepository(Token::class)->countActiveToken($userForgotPasswordToken::NAME_FORGOTTEN_PASSWORD) >= Token::MAX_REQUEST_FORGOTTEN_PASSWORD) {
  173.                     return new JsonResponse(['error' => 'limit'], 200);
  174.                 }
  176.                 $token $tokenManager->requestResetPassword($userForgotPassword);
  177.                 $sendInBlue->sendTemplate($form->getData()['templateId'], [
  178.                     'to' => [
  179.                         ["email" => $userForgotPassword->getEmail()]
  180.                     ],
  181.                     'templateParameters' =>
  182.                         [
  183.                             'URL' => $form->getData()['url'] . $token->getId(),
  184.                             'SURNAME' => ''
  185.                         ],
  186.                 ]);
  187.             }
  188.         } else if (isset($form->getData()['email'])) {
  189.             $error "Veuillez renseignez une adresse mail valide";
  190.         }
  192.         $logo $mediaObjectRepository->findOneLikeByName(strtolower($_ENV['APP_PROJET']));
  193.         return $this->render('security/forgotten_password.html.twig', [
  194.             'logo_path' => $logo $logo->getFilePath() : null,
  195.             'error' => $error,
  196.             'success' => $success,
  197.         ]);
  198.     }
  200.     /**
  201.      * @Route("/reset_password/{token}", name="app_client_reset_password")
  202.      * @ParamConverter("token", class="App:Token", options={"id"= "token"})
  203.      */
  204.     public function resetPassword(Token                        $tokenRequest $requestMediaObjectRepository $mediaObjectRepository,
  205.                                   UserPasswordHasherInterface $passwordEncoderTokenManager $tokenManager,
  206.                                   EntityManagerInterface       $entityManager)
  207.     {
  208.         $form $this->createForm(ResetPasswordType::class);
  209.         $form->handleRequest($request);
  210.         $redirectionPage 'security/reset_password.html.twig';
  211.         $success false;
  212.         $loginRoute $token->getReferent() ? 'app_client_login' 'app_login';
  214.         $user $token->getReferent() ?? $token->getUser();
  215.         if ($tokenManager->checkValidityToken($token) && $user) {
  216.             if ($form->isSubmitted() && $form->isValid()) {
  217.                 $encodedPassword $passwordEncoder->hashPassword($user$form->getData()['plainPassword']);
  218.                 $user->setPassword($encodedPassword);
  220.                 // We reset the token so that the user can reset his password once
  221.                 $token
  222.                     ->setUser(null)
  223.                     ->setReferent(null);
  225.                 $entityManager->flush();
  226.                 $success true;
  227.             }
  228.         } else {
  229.             $redirectionPage 'security/expired_token.html.twig';
  230.         }
  232.         $logo $mediaObjectRepository->findOneLikeByName(strtolower($_ENV['APP_PROJET']));
  233.         return $this->render($redirectionPage, [
  234.             'logo_path' => $logo $logo->getFilePath() : null,
  235.             'login_route' => $loginRoute,
  236.             'form' => $form->createView(),
  237.             'token' => $token->getId(),
  238.             'success' => $success
  239.         ]);
  240.     }
  242.     /**
  243.      * @Route("/logout", name="app_logout")
  244.      */
  245.     public function logout()
  246.     {
  247.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  248.     }
  249. }