src/Controller/SecurityController.php line 79

Open in your IDE?
  1. <?php
  3. /**
  4.  * @author Thomas HERISSON (contact@scaledev.fr)
  5.  * @copyright 2021 - ScaleDEV SAS, 12 RUE CHARLES MORET, 10120 ST ANDRE LES VERGERS
  6.  * @license commercial
  7.  */
  9. declare(strict_types=1);
  11. namespace App\Controller;
  13. use DateTime;
  14. use App\Repository\UserRepository;
  15. use App\Message\PasswordLostMessage;
  16. use Doctrine\ORM\EntityManagerInterface;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\Routing\Annotation\Route;
  20. use Symfony\Component\HttpFoundation\JsonResponse;
  21. use Symfony\Component\Messenger\MessageBusInterface;
  22. use Symfony\Contracts\Translation\TranslatorInterface;
  23. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  24. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  25. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  26. use Symfony\Component\Security\Core\Security;
  28. class SecurityController extends AbstractController
  29. {
  30.     private EntityManagerInterface $em;
  31.     private UserRepository $userRepo;
  32.     private TranslatorInterface $tr;
  34.     public function __construct(EntityManagerInterface $emUserRepository $userRepoTranslatorInterface $tr)
  35.     {
  36.         $this->em $em;
  37.         $this->userRepo $userRepo;
  38.         $this->tr $tr;
  39.     }
  41.     /**
  42.      * @param AuthenticationUtils $authenticationUtils
  43.      * @return Response
  44.      * @Route("/login", name="app_login", host="%app.default_host%")
  45.      */
  46.     public function login(AuthenticationUtils $authenticationUtils): Response
  47.     {
  48.         if ($this->getUser()) {
  49.             return $this->redirectToRoute('app_dashboard');
  50.         }
  52.         $error $authenticationUtils->getLastAuthenticationError();
  53.         $lastUsername $authenticationUtils->getLastUsername();
  55.         return $this->render(
  56.             'security/login.html.twig',
  57.             [
  58.                 'last_username' => $lastUsername,
  59.                 'error' => $error
  60.             ]
  61.         );
  62.     }
  64.     /**
  65.      * @Route("/logout", name="app_logout")
  66.      */
  67.     public function logout()
  68.     {
  69.         // nothing to do here :)
  70.     }
  72.     /**
  73.      * @param AuthenticationUtils $authenticationUtils
  74.      * @param Request $request
  75.      * @param MessageBusInterface $messageBus
  76.      * @return Response
  77.      * @Route("/password-lost", name="app_password_lost", host="%app.default_host%")
  78.      */
  79.     public function passwordLost(
  80.         AuthenticationUtils $authenticationUtils,
  81.         Request $request,
  82.         MessageBusInterface $messageBus
  83.     ): Response {
  84.         $lastUsername $authenticationUtils->getLastUsername();
  86.         if ($request->isMethod('post')) {
  87.             $user $this->userRepo->findOneBy(['email' => $request->get('email')]);
  89.             if ($user && $user->getPassword()) {
  90.                 $messageBus->dispatch(new PasswordLostMessage($user));
  91.                 $this->addFlash(
  92.                     'success',
  93.                     $this->tr->trans('You will receive an email within a few minutes to reset your password.')
  94.                 );
  95.             } else {
  96.                 $this->addFlash('danger'$this->tr->trans('You cannot reset your password.'));
  97.             }
  99.             return $this->redirectToRoute('app_login');
  100.         }
  102.         return $this->render(
  103.             'security/password_lost.html.twig',
  104.             [
  105.                 'last_username' => $lastUsername
  106.             ]
  107.         );
  108.     }
  110.     /**
  111.      * @param Request $request
  112.      * @param UserPasswordHasherInterface $passwordHasher
  113.      * @param string $email
  114.      * @param string $token
  115.      * @return Response
  116.      * @Route("/password-renew/{email}/{token}", name="app_password_renew", host="%app.default_host%")
  117.      */
  118.     public function passwordRenew(
  119.         Request $request,
  120.         UserPasswordHasherInterface $passwordHasher,
  121.         string $email,
  122.         string $token
  123.     ): Response {
  124.         if (!$email || !$token) {
  125.             $this->addFlash('danger'$this->tr->trans('You can\'t access to this page'));
  126.             return $this->redirectToRoute('app_login');
  127.         }
  129.         $user $this->userRepo->findOneBy(['email' => urldecode($email)]);
  131.         if (
  132.             !$user
  133.             || $token != $user->getToken()
  134.             || $user->getTokenValidity() < new DateTime()
  135.         ) {
  136.             $this->addFlash('danger'$this->tr->trans('Unknown or expired password renewal request'));
  137.             return $this->redirectToRoute('app_login');
  138.         }
  140.         if ($request->isMethod('post')) {
  141.             if ($request->get('password') != $request->get('password_confirm')) {
  142.                 $this->addFlash('danger'$this->tr->trans('Passwords don\'t match'));
  143.             } else {
  144.                 $user->setPassword(
  145.                     $passwordHasher->hashPassword(
  146.                         $user,
  147.                         $request->get('password')
  148.                     )
  149.                 );
  150.                 $user->setToken(null);
  151.                 $user->setTokenValidity(null);
  152.                 $this->em->persist($user);
  153.                 $this->em->flush();
  154.                 $this->addFlash('success'$this->tr->trans('Your password has been changed. Please log in.'));
  155.                 return $this->redirectToRoute('app_login');
  156.             }
  157.         }
  159.         return $this->render('security/password_renew.html.twig');
  160.     }
  162.     /**
  163.      * @param Security $security
  164.      * @param Request $request
  165.      * @return Response
  166.      * @Route("/logged_in_check", name="logged_in_check", methods={"GET","POST"})
  167.      */
  168.     public function loggedInCheck(Security $securityRequest $request): Response
  169.     {
  170.         if ($request->isMethod('get')) {
  171.             return $this->redirectToRoute('app_dashboard');
  172.         }
  173.         return new JsonResponse(['result' => $security->isGranted('IS_AUTHENTICATED_REMEMBERED')]);
  174.     }
  175. }