src/Controller/User/SecurityController.php line 102

Open in your IDE?
  1. <?php
  3. namespace App\Controller\User;
  5. use App\Entity\User\User;
  6. use App\Form\User\InscriptionType;
  7. use App\Repository\Fiche\FicheBatimentRepository;
  8. use App\Repository\User\UserRepository;
  9. use App\Security\User\FormLoginAuthenticator;
  10. use Doctrine\Persistence\ManagerRegistry;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  13. use Symfony\Component\Form\FormError;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Mailer\MailerInterface;
  17. use Symfony\Component\Mime\Email;
  18. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  19. use Symfony\Component\Routing\Annotation\Route;
  20. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  21. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  22. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  23. use App\Form\User\LoginType;
  24. use App\Form\User\MotDePasseOublieType;
  26. /**
  27.  * @Route("/", name="user_security_")
  28.  */
  29. class SecurityController extends AbstractController
  30. {
  31.     const MSG_ERROR_MAIL_INEXISTANT 'Cette adresse mail n\'est pas enregistrée dans la base de données.';
  32.     const MSG_PASSWORD_CHANGED 'Votre mot de passe a été modifié et envoyé à votre adresse mail.';
  33.     const MSG_ACTIVATION_SUCCESS 'Votre compte a bien été activé.';
  34.     const MSG_ACTIVATION_ERROR 'L\'activation n\'a pas pû être effectuée.';
  36.     private $pathAuthenticationHome;
  38.     public function __construct(ParameterBagInterface $theParameterBag)
  39.     {
  40.         $this->pathAuthenticationHome 'postConnexion';
  41.     }
  43.     /**
  44.      * @Route("/login", name="login")
  45.      */
  46.     public function login(
  47.         AuthenticationUtils $authenticationUtils,
  48.         Request $theRequest,
  49.         FicheBatimentRepository $theFicheBatimentRepository
  50.     ): Response
  51.     {
  52.         if ($this->getUser() != null) {
  53.             return $this->redirectToRoute($this->pathAuthenticationHome);
  54.         }
  56.         $theEM $this->getDoctrine()->getManager();
  58.         // retrouver une erreur d'authentification s'il y en a une
  59.         $error $authenticationUtils->getLastAuthenticationError();
  60.         // retrouver le dernier identifiant de connexion utilisé
  61.         $lastUsername $authenticationUtils->getLastUsername();
  63.         $theForm $this->createForm(LoginType::class, null, array('username' => $lastUsername));
  65.         $theForm->handleRequest($theRequest);
  66.         if ($theForm->isSubmitted()) {
  67.         }
  69.         if ($error != null) {
  70.             $theForm->addError(new FormError($error->getMessageKey()));
  71.         }
  73.         return $this->render('user/security/login.html.twig', [
  74.                 'theForm' => $theForm->createView(),
  75.                 'last_username' => $lastUsername,
  76.             ]
  77.         );
  78.     }
  80.     /**
  81.      * @Route("/activation/{activationToken}", name="activation")
  82.      */
  83.     public function activation(UserRepository $theUserRepositoryManagerRegistry $theManagerRegistry $activationToken)
  84.     {
  85.         $theUser $theUserRepository->findByActivationToken($activationToken);
  87.         if ($theUser != null) {
  88.             $theUser->setIsEnabled(true);
  89.             $theUser->setActivationToken(null);
  90.             $theManagerRegistry->getManager()->flush();
  91.             $this->addFlash('success'self::MSG_ACTIVATION_SUCCESS);
  92.         } else {
  93.             $this->addFlash('danger'self::MSG_ACTIVATION_ERROR);
  94.         }
  96.         return $this->redirectToRoute('user_security_login');
  97.     }
  99.     /**
  100.      * @Route("/inscription", name="inscription")
  101.      */
  102.     public function inscription(
  103.         Request $theRequest,
  104.         ManagerRegistry $theManagerRegistry,
  105.         UserPasswordHasherInterface $theUserPasswordHasherInterface,
  106.         TokenStorageInterface $theTokenStorage,
  107.         FormLoginAuthenticator $theFormLoginAuthenticator,
  108.         MailerInterface $theMailer
  109.     ): Response
  110.     {
  111.         if ($this->getUser() != null) {
  112.             return $this->redirectToRoute($this->pathAuthenticationHome);
  113.         }
  115.         $theUser = new User();
  117.         $theForm $this->createForm(InscriptionType::class, $theUser);
  118.         $theForm->handleRequest($theRequest);
  120.         if ($theForm->isSubmitted() && $theForm->isValid()) {
  121.             $theUser->setPassword(
  122.                 $theUserPasswordHasherInterface->hashPassword($theUser$theUser->getPlainPassword())
  123.             );
  124.             $theUser->setActivationToken(bin2hex(random_bytes(16)));
  125.             $theUser->setRolePrincipal('ROLE_UTILISATEUR');
  126.             $theEM $theManagerRegistry->getManager();
  127.             $theEM->persist($theUser);
  128.             $theEM->flush();
  130.             $theEmail $this->getTheEmailInscription($theUser);
  131.             $theMailer->send($theEmail);
  133.             $theToken = new UsernamePasswordToken($theUsernull'main'$theUser->getRoles());
  134.             $theTokenStorage->setToken($theToken);
  135.             $theRequest->getSession()->set('_security_main'serialize($theToken));
  137.             return $theFormLoginAuthenticator->onAuthenticationSuccess($theRequest$theToken'app_user_provider');
  138.         } else {
  139.             $theResponse $this->render('user/security/inscription.html.twig', [
  140.                     'theForm' => $theForm->createView(),
  141.                 ]
  142.             );
  143.         }
  145.         return $theResponse;
  146.     }
  148.     /**
  149.      * @param Request $theRequest
  150.      * @param UserRepository $theUserRepository
  151.      * @return Response
  152.      *
  153.      * @Route("/mot-de-passe-oublie", name="mot_de_passe_oublie")
  154.      */
  155.     public function motDePasseOublie(
  156.         Request $theRequest,
  157.         UserRepository $theUserRepository,
  158.         UserPasswordHasherInterface $theUserPasswordHasherInterface,
  159.         MailerInterface $theMailer,
  160.         ManagerRegistry $theManagerRegistry
  161.     )
  162.     {
  163.         $theForm $this->createForm(MotDePasseOublieType::class);
  165.         $theForm->handleRequest($theRequest);
  167.         if ($theForm->isSubmitted() && $theForm->isValid()) {
  168.             $email $theForm->get('email')->getData();
  169.             $theUser $theUserRepository->findOneByEmail($email);
  171.             if ($theUser == null) {
  172.                 $theForm->addError(new FormError(self::MSG_ERROR_MAIL_INEXISTANT));
  173.             } else {
  174.                 $theUser->setPlainPassword(bin2hex(random_bytes(8)));
  176.                 $theEmail $this->getTheEmailMotDePasseOublie($theUser);
  178.                 $theMailer->send($theEmail);
  180.                 $encodedPassword $theUserPasswordHasherInterface->hashPassword($theUser$theUser->getPlainPassword());
  181.                 $theUser->setPassword($encodedPassword);
  182.                 $theManagerRegistry->getManager()->flush();
  184.                 $this->addFlash('success'self::MSG_PASSWORD_CHANGED);
  185.             }
  186.         }
  188.         return $this->render('user/security/mot-de-passe-oublie.html.twig', array(
  189.             'theForm' => $theForm->createView()
  190.         ));
  191.     }
  193.     private function getTheEmailMotDePasseOublie(User $theUser)
  194.     {
  195.         $theEmail = new Email();
  196.         $theEmail
  197.             ->subject('SOBRO - Nouveau mot de passe')
  198.             ->text($this->renderView('user/security/mot-de-passe-oublie.txt.twig', array(
  199.                 'theUser' => $theUser
  200.             )))
  201.             ->addTo($theUser->getEmail())
  202.             ->addFrom('admin@sobro.fr');
  203.         return $theEmail;
  204.     }
  206.     private function getTheEmailInscription(User $theUser)
  207.     {
  208.         $theEmail = new Email();
  209.         $theEmail
  210.             ->subject('SOBRO - Inscription')
  211.             ->text($this->renderView('user/security/inscription.txt.twig', array(
  212.                 'theUser' => $theUser
  213.             )))
  214.             ->addTo($theUser->getEmail())
  215.             ->addCc('admin@sobro.fr')    
  216.             ->addFrom('admin@sobro.fr');
  217.         return $theEmail;
  218.     }
  220.     /**
  221.      * @Route("/logout", name="logout")
  222.      */
  223.     public function logout(Request $theRequest): void
  224.     {
  225.         throw new \Exception('This should never be reached!');
  226.     }
  227. }