src/Controller/SecurityController.php line 30

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Config\ConfigManager;
  6. use App\Entity\AbstractPage;
  7. use App\Entity\Config;
  8. use App\Entity\User;
  9. use App\Exception\User\PasswordAlreadyDefinedException;
  10. use App\Exception\User\PasswordResetTokenExpired;
  11. use App\Repository\UserRepository;
  12. use App\User\UserPasswordManager;
  13. use Doctrine\ORM\EntityManagerInterface;
  14. use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
  15. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpFoundation\Response;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  20. use Symfony\Component\Security\Core\Encoder\PasswordEncoderInterface;
  21. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  23. class SecurityController extends AbstractController
  24. {
  25.     /**
  26.      * @param AuthenticationUtils $authenticationUtils
  27.      *
  28.      * @return Response
  29.      */
  30.     public function login(AuthenticationUtils $authenticationUtilsConfigManager $configManager): Response
  31.     {
  32.          if ($this->getUser()) {
  33.             $this->redirect($configManager->getConfigLink('home_page_dashboard'));
  34.          }
  36.         $error $authenticationUtils->getLastAuthenticationError();
  37.         $lastUsername $authenticationUtils->getLastUsername();
  39.         return $this->render('security/login.html.twig', ['last_username' => $lastUsername'error' => $error]);
  40.     }
  42.     /**
  43.      * @param User $user
  44.      * @param Request $request
  45.      * @param EntityManagerInterface $entityManager
  46.      * @param EncoderFactoryInterface $encoderFactory
  47.      * @param ConfigManager $configManager
  48.      * @return \Symfony\Component\HttpFoundation\RedirectResponse|Response
  49.      * @throws PasswordAlreadyDefinedException
  50.      */
  51.     public function validation(User $userRequest $requestEntityManagerInterface $entityManagerEncoderFactoryInterface $encoderFactoryConfigManager $configManager)
  52.     {
  53.         if (!empty($user->getPassword())) {
  54.             throw new PasswordAlreadyDefinedException($user);
  55.         }
  57.         $submittedToken $request->request->get('_csrf_token');
  58.         $password $request->request->get('password');
  59.         $confirm $request->request->get('confirm');
  60.         if (empty($password)) {
  61.             return $this->render('security/set-password.html.twig');
  62.         }
  64.         if (!$this->isCsrfTokenValid('set-password'$submittedToken)) {
  65.             return $this->render('security/set-password.html.twig', ['error' => 'Token expiré, merci de remplir à nouveau le formulaire.']);
  66.         }
  68.         if ($confirm !== $password) {
  69.             return $this->render('security/set-password.html.twig', ['error' => 'Merci de saisir le même mot de passe.']);
  70.         }
  72.         $encoder $encoderFactory->getEncoder($user);
  73.         $user->setPassword($encoder->encodePassword($passwordnull));
  74.         $user->setEnabled(true);
  75.         $entityManager->flush();
  78.         $link $configManager->getConfigLink('home_page');
  79.         return $this->redirect($link);
  80.     }
  82.     /**
  83.      * @param Request $request
  84.      * @param UserPasswordManager $passwordManager
  85.      * @param UserRepository $userRepository
  86.      * @return \Symfony\Component\HttpFoundation\JsonResponse
  87.      * @throws \Twig\Error\LoaderError
  88.      * @throws \Twig\Error\RuntimeError
  89.      * @throws \Twig\Error\SyntaxError
  90.      */
  91.     public function askResetPassword(Request $requestUserPasswordManager $passwordManagerUserRepository $userRepository)
  92.     {
  93.         $submittedToken $request->request->get('_csrf_token');
  94.         if (!$this->isCsrfTokenValid('reset-password'$submittedToken)) {
  95.             return $this->json(['success' => false'message' => 'Token invalide. Merci de recharger votre page.']);
  96.         }
  98.         $email $request->request->get('email');
  99.         if (empty($email)) {
  100.             return $this->json(['success' => false'message' => 'Merci de saisir votre email.']);
  101.         }
  103.         $user $userRepository->findOneBy(['email' => $email]);
  104.         if (!$user instanceof User) {
  105.             return $this->json(['success' => false'message' => 'Aucun compte connu avec cette adresse mail.']);
  106.         }
  108.         $passwordManager->askResetPassword($user);
  110.         return $this->json(['success' => true]);
  111.     }
  113.     /**
  114.      * @ParamConverter("user", options={"mapping": {"id": "id", "requestPasswordToken": "requestPasswordToken"}})
  115.      *
  116.      * @param User $user
  117.      * @param UserPasswordManager $passwordManager
  118.      * @param Request $request
  119.      * @param EntityManagerInterface $entityManager
  120.      * @param EncoderFactoryInterface $encoderFactory
  121.      * @param ConfigManager $configManager
  122.      * @return \Symfony\Component\HttpFoundation\RedirectResponse|Response
  123.      * @throws PasswordResetTokenExpired
  124.      */
  125.     public function resetPassword(User $userUserPasswordManager $passwordManagerRequest $requestEntityManagerInterface $entityManagerEncoderFactoryInterface $encoderFactoryConfigManager $configManager)
  126.     {
  127.         if (!$passwordManager->canResetPassword($user)) {
  128.             throw new PasswordResetTokenExpired($user);
  129.         }
  131.         $submittedToken $request->request->get('_csrf_token');
  132.         $password $request->request->get('password');
  133.         $confirm $request->request->get('confirm');
  134.         if (empty($password)) {
  135.             return $this->render('security/set-password.html.twig');
  136.         }
  138.         if (!$this->isCsrfTokenValid('set-password'$submittedToken)) {
  139.             return $this->render('security/set-password.html.twig', ['error' => 'Token expiré, merci de remplir à nouveau le formulaire.']);
  140.         }
  142.         if ($confirm !== $password) {
  143.             return $this->render('security/set-password.html.twig', ['error' => 'Merci de saisir le même mot de passe.']);
  144.         }
  146.         $encoder $encoderFactory->getEncoder($user);
  147.         $user->setPassword($encoder->encodePassword($passwordnull));
  148.         $user->setEnabled(true);
  149.         $entityManager->flush();
  152.         $link $configManager->getConfigLink('home_page');
  153.         return $this->redirect($link);
  154.     }
  156.     /**
  157.      * @throws \Exception
  158.      */
  159.     public function logout()
  160.     {
  161.     }
  162. }