src/Controller/SecurityController.php line 63

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\TokenUser;
  6. use App\Entity\User;
  7. use App\Form\ConfirmRecuperatePasswordType;
  8. use App\Form\LoginType;
  9. use App\Form\RecuperatePasswordType;
  10. use App\Services\EmailSender;
  11. use DateTime;
  12. use Doctrine\ORM\EntityManagerInterface;
  13. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  14. use Symfony\Component\HttpFoundation\RedirectResponse;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpFoundation\Response;
  17. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  20. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. use Symfony\Contracts\Translation\TranslatorInterface;
  23. class SecurityController extends AbstractController
  24. {
  25.     /**
  26.      * @param AuthenticationUtils $authenticationUtils
  27.      * @return Response
  28.      * @Route("/login", name="login")
  29.      */
  30.     public function index(AuthenticationUtils $authenticationUtils): Response
  31.     {
  32.         // get the login error if there is one
  33.         $error $authenticationUtils->getLastAuthenticationError();
  35.         // last username entered by the user
  36.         $lastUsername $authenticationUtils->getLastUsername();
  37.         $form $this->createForm(LoginType::class, null, [
  38.             'lastUsername' => $lastUsername,
  39.         ]);
  41.         return $this->render('security/login.html.twig', [
  42.             'last_username' => $lastUsername,
  43.             'error'         => $error,
  44.             'form' => $form->createView()
  45.         ]);
  46.     }
  48.     /**
  49.      * @Route("/logout", name="app_logout")
  50.      */
  51.     public function logout(): void
  52.     {
  53.     }
  56.     /**
  57.      * @Route("/recuperate-password", name="forgot")
  58.      *
  59.      * @param Request $request
  60.      *
  61.      * @return RedirectResponse|Response
  62.      */
  63.     public function recuperatePassword(Request $requestEntityManagerInterface $emTranslatorInterface $translatorEmailSender $mailer)
  64.     {
  65.         $form $this->createForm(RecuperatePasswordType::class);
  66.         $form->handleRequest($request);
  67.         $success $request->get('success');
  68.         if ($form->isSubmitted() and $form->isValid()) {
  69.             //get user by email
  70.             $user $em->getRepository(User::class)->findOneBy(['email' => $form->getData()['email']]);
  71.             if(!$user){
  72.                 $this->addFlash(
  73.                     'success',
  74.                     $translator->trans('security.no_user')
  75.                 );
  76.                 return $this->render('security/recuperate_password.html.twig', [
  77.                     'form' => $form->createView(),
  78.                     'title' => $translator->trans('security.recuperate_password'),
  79.                     // 'success' => true
  80.                 ]);
  81.             }
  82.             //create Token
  83.             $token = new TokenUser();
  84.             $token->setType(TokenUser::TOKEN_RECUPERATE_PASSWORD);
  85.             $user->addToken($token);
  86.             $em->persist($token);
  87.             $em->flush();
  89.             $data = [
  90.                 'user' => $user,
  91.                 'path' => $this->generateUrl('confirm_recuperate_password', [
  92.                     'token' => $token->getToken(),
  93.                 ], UrlGeneratorInterface::ABSOLUTE_URL),
  94.             ];
  96.             //send email
  97.             $mailer->sendEmail(
  98.                 'mails/recuperate_password.html.twig',
  99.                 $translator->trans('general.app_name'),
  100.                 $user->getEmail(),
  101.                 null,
  102.                 null,
  103.                 $data
  104.             );
  106.             //Add flash success
  107.             $this->addFlash(
  108.                 'success',
  109.                 $translator->trans('security.recuperate_password_success')
  110.             );
  111.         }
  113.         return $this->render('security/recuperate_password.html.twig', [
  114.             'form' => $form->createView(),
  115.             'title' => $translator->trans('security.recuperate_password'),
  116.            // 'success' => true
  117.         ]);
  118.     }
  120.     /**
  121.      * @Route("/confirm/recuperate-password/{token}/{_locale}", name="confirm_recuperate_password")
  122.      *
  123.      * @param Request $request
  124.      * @param $token
  125.      *
  126.      */
  127.     public function confirmRecuperatePassword(
  128.         Request $request,
  129.         $token,
  130.         UserPasswordHasherInterface $encoder,
  131.         EntityManagerInterface $em
  132.     ) {
  133.         $tokenUser $em->getRepository(TokenUser::class)->findOneBy([
  134.             'token' => $token,
  135.         ]);
  137.         $now = new DateTime();
  138.         if (!$tokenUser->getEnabled() or
  139.             $now >= $tokenUser->getExpiredAt() or
  140.             TokenUser::TOKEN_RECUPERATE_PASSWORD !== $tokenUser->getType()) {
  141.             return $this->redirectToRoute('forgot');
  142.         }
  144.         $form $this->createForm(ConfirmRecuperatePasswordType::class);
  145.         $form->handleRequest($request);
  147.         if ($form->isSubmitted() and $form->isValid()) {
  148.             //Disabled token
  149.             $tokenUser->setEnabled(false);
  150.             //get user from token
  151.             $user $tokenUser->getUser();
  152.             $user->setPassword($encoder->hashPassword($user$form->getData()['password']));
  154.             $em->persist($tokenUser);
  155.             $em->persist($user);
  156.             $em->flush();
  158.             return $this->render('security/confirm_recuperate_password.html.twig', [
  159.                 'form' => $form->createView(),
  160.                 'success' => true
  161.             ]);
  162.         }
  164.         return $this->render('security/confirm_recuperate_password.html.twig', [
  165.             'form' => $form->createView()
  166.         ]);
  167.     }
  168. }