src/Diplix/KMGBundle/Controller/AuthController.php line 57

Open in your IDE?
  1. <?php
  2. namespace Diplix\KMGBundle\Controller;
  5. use Diplix\Commons\DataHandlingBundle\Repository\SysLogRepository;
  6. use Diplix\KMGBundle\Entity\User;
  7. use Diplix\KMGBundle\Form\ForgotPasswordForm;
  8. use Diplix\KMGBundle\Form\ResetPasswordForm;
  9. use Diplix\KMGBundle\Helper\ClientConfigProvider;
  10. use Diplix\KMGBundle\Service\MailHelper;
  11. use Doctrine\ORM\NonUniqueResultException;
  12. use Symfony\Component\Form\FormError;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  15. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  16. use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
  17. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  19. class AuthController extends BaseController
  20. {
  21.     public function __construct(
  22.         protected ClientConfigProvider $ccp,
  23.         protected MailHelper $mailHelper,
  24.         protected UserPasswordHasherInterface $hasher,
  25.         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
  26.     )
  27.     {
  28.     }
  30.     /**
  31.      * Set encrypted pw using the default provider
  32.      * @param User $row
  33.      * @param string $newPw
  34.      * @return true
  35.      */
  36.     protected function setEncryptedUserPw(User $row$newPw)
  37.     {
  38.         $password $this->hasher->hashPassword($row,$newPw);
  39.         $row->setPassword($password);
  40.         return true;
  41.     }
  44.     public function loginAction(Request $request,AuthenticationUtils $authenticationUtils)
  45.     {
  46.         // get the login error if there is one
  47.         $error $authenticationUtils->getLastAuthenticationError();
  48.         // last username entered by the user
  49.         $lastUsername $authenticationUtils->getLastUsername();
  51.         return $this->render(
  52.             'Auth/login.html.twig',
  53.             array(
  54.                 // last username entered by the user
  55.                 'last_username' => $lastUsername,
  56.                 'error'         => $error,
  57.                 'platformSetup' => $this->ccp
  58.             )
  59.         );
  60.     }
  63.     public function forgotPasswordAction(Request $request)
  64.     {
  65.         $rep $this->managerRegistry->getManager()->getRepository(User::class);
  66.         $form $this->createForm(ForgotPasswordForm::class);
  67.         $form->handleRequest($request);
  68.         if ($form->isSubmitted())
  69.         {
  70.             $valid $form->isValid();
  71.             $email $form->get('email')->getData();
  72.             /** @var User $row */
  73.             try
  74.             {
  75.                 $row $rep->loadUserByUsername($email);
  76.             }
  77.             catch (\Throwable $x)
  78.             {
  79.                 $row false;
  80.                 $this->addFlash('danger',$x->getMessage());
  81.             }
  82.             if ( (!$valid) || (!is_object($row)) )
  83.             {
  84.                 $form->addError(new FormError("message.please-check-email"));
  85.                 return $this->render('@DiplixKMG/forgot_password.html.twig',array (
  86.                     "form" => $form->createView(),
  87.                 ));
  88.             }
  90.             $row->setMailActionMode(User::MAIL_ACTION_RESET_PASSWORD);
  91.             $row->setMailActionHashsha1(uniqid('',true)) );
  92.             $rep->flush($row);
  94.             $mh $this->mailHelper;
  95.             try {
  96.                 $mh->ResetPasswordMail($row);
  97.             }
  98.             catch (\Throwable $ex)
  99.             {
  100.                 SysLogRepository::logError($this->managerRegistry->getConnection(),$ex->getMessage(),null,0,'Mail');
  101.                 $this->addFlash('warning',$ex->getMessage());
  102.             }
  104.             $this->addFlash('success'"message.reset-instructions-by-mail");
  105.             return $this->redirect($this->generateUrl('forgot_password'));
  106.     }
  107.         else
  108.         {
  109.             $e $request->query->get("email","");
  110.             if ($e!=""$form->get('email')->setData($e);
  111.             return $this->render('@DiplixKMG/forgot_password.html.twig',array (
  112.                     "form" => $form->createView()
  113.             ));
  114.         }
  115.     }
  117.      public function resetPasswordAction(Request $request$email,$hash)
  118.     {
  119.         $rep $this->managerRegistry->getManager()->getRepository(User::class);
  120.         /** @var User $row */
  121.         $row $rep->getPendingPasswordResetUser($email,$hash);
  122.         if (is_object($row))
  123.         {
  124.             $form $this->createForm(ResetPasswordForm::class);
  125.             $form->handleRequest($request);
  126.             if ($form->isSubmitted())
  127.             {
  128.                 if ($form->isValid())
  129.                 {
  130.                     $this->setEncryptedUserPw($row$form->get('password')->getData());
  131.                     $row->setMailActionMode(User::MAIL_ACTION_NONE);
  132.                     $row->setMailActionHash("");
  133.                     $row->setLastPasswordChange(new \DateTime());
  134.                     $row->setSharedKey(''); // key was encrypted with old pw - it is not usable any more anyway - remove it
  135.                     $rep->flush($row);
  137.                     $this->addFlash('info'"message.password-was-reset");
  138.                     return $this->redirect($this->generateUrl("sys-login"));
  139.                 }
  140.             }
  141.             return $this->render('@DiplixKMG/reset_password.html.twig',array (
  142.                     "form" => $form->createView(),
  143.                     'show_key_warning' => ($row->getSharedKey()!==''),
  144.                     "row"=> $row,
  145.             ));
  146.         }
  147.         else
  148.         {
  149.             $this->addFlash("warning","message.invalid-link");
  150.             return $this->redirectToRoute("kmg_home");
  151.         }
  152.     }
  154.     public function registerAction(Request $request)
  155.     {
  156.         return $this->render('@DiplixKMG/register.html.twig');
  157.     }
  159.     public function unregisterAction(Request $request)
  160.     {
  161.         $ff $this->createForm(ForgotPasswordForm::class);
  162.         $ff->handleRequest($request);
  163.         if ($ff->isSubmitted()&&$ff->isValid())
  164.         {
  165.             $mh $this->get('diplix.mailhelper');
  166.             try {
  167.                 $mh->sendUserRemovalRequest($ff->get('email')->getData());
  168.             }
  169.             catch (\Throwable $ex)
  170.             {
  171.                 SysLogRepository::logError($this->managerRegistry->getConnection(),$ex->getMessage(),null,0,'Mail');
  172.                 //$this->addFlash('warning',$ex->getMessage());
  173.             }
  175.             $this->addFlash('success','Vielen Dank. Wir haben Ihre Anfrage erhalten und werden Sie in Kürze kontaktieren.');
  176.             return $this->redirectToRoute('unregister');
  177.         }
  178.         return $this->render('@DiplixKMG/unregister.html.twig',
  179.         [
  180.             'form'=>$ff->createView()
  181.         ]);
  182.     }
  184.     public function jsonLoginAction(Request $request)
  185.     {
  186.         /** @var User $user */
  187.         $user $this->getUser();
  188.         return $this->json([
  189.             'username' => $user->getUserIdentifier(),
  190.             'success' => true,
  191.         ]);
  192.     }
  195. }