src/Diplix/KMGBundle/Controller/AuthController.php line 64

Open in your IDE?
  1. <?php
  2. namespace Diplix\KMGBundle\Controller;
  5. use Diplix\Commons\DataHandlingBundle\Repository\SysLogRepository;
  6. use Diplix\KMGBundle\Entity\User;
  7. use Diplix\KMGBundle\Form\ForgotPasswordForm;
  8. use Diplix\KMGBundle\Form\ResetPasswordForm;
  9. use Diplix\KMGBundle\Helper\ClientConfigProvider;
  10. use Diplix\KMGBundle\Service\MailHelper;
  11. use Doctrine\ORM\NonUniqueResultException;
  12. use Symfony\Component\Form\FormError;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  16. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  17. use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
  18. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  20. class AuthController extends BaseController
  21. {
  22.     public function __construct(
  23.         protected ClientConfigProvider $ccp,
  24.         protected MailHelper $mailHelper,
  25.         protected UserPasswordHasherInterface $hasher,
  26.         private readonly \Doctrine\Persistence\ManagerRegistry $managerRegistry
  27.     )
  28.     {
  29.     }
  31.     /**
  32.      * Set encrypted pw using the default provider
  33.      * @param User $row
  34.      * @param string $newPw
  35.      * @return true
  36.      */
  37.     protected function setEncryptedUserPw(User $row$newPw)
  38.     {
  39.         $password $this->hasher->hashPassword($row,$newPw);
  40.         $row->setPassword($password);
  41.         return true;
  42.     }
  45.     public function loginAction(Request $request,AuthenticationUtils $authenticationUtils)
  46.     {
  47.         // get the login error if there is one
  48.         $error $authenticationUtils->getLastAuthenticationError();
  49.         // last username entered by the user
  50.         $lastUsername $authenticationUtils->getLastUsername();
  52.         return $this->render(
  53.             'Auth/login.html.twig',
  54.             array(
  55.                 // last username entered by the user
  56.                 'last_username' => $lastUsername,
  57.                 'error'         => $error,
  58.                 'platformSetup' => $this->ccp
  59.             )
  60.         );
  61.     }
  64.     public function forgotPasswordAction(Request $request)
  65.     {
  66.         $rep $this->managerRegistry->getManager()->getRepository(User::class);
  67.         $form $this->createForm(ForgotPasswordForm::class);
  68.         $form->handleRequest($request);
  69.         if ($form->isSubmitted())
  70.         {
  71.             $valid $form->isValid();
  72.             $email $form->get('email')->getData();
  73.             /** @var User $row */
  74.             try
  75.             {
  76.                 $row $rep->loadUserByUsername($email);
  77.             }
  78.             catch (\Throwable $x)
  79.             {
  80.                 $row false;
  81.                 $this->addFlash('danger',$x->getMessage());
  82.             }
  83.             if ( (!$valid) || (!is_object($row)) )
  84.             {
  85.                 $form->addError(new FormError("message.please-check-email"));
  86.                 return $this->render('@DiplixKMG/forgot_password.html.twig',array (
  87.                     "form" => $form->createView(),
  88.                 ));
  89.             }
  91.             $row->setMailActionMode(User::MAIL_ACTION_RESET_PASSWORD);
  92.             $row->setMailActionHashsha1(uniqid('',true)) );
  93.             $rep->flush($row);
  95.             $mh $this->mailHelper;
  96.             try {
  97.                 $mh->ResetPasswordMail($row);
  98.             }
  99.             catch (\Throwable $ex)
  100.             {
  101.                 SysLogRepository::logError($this->managerRegistry->getConnection(),$ex->getMessage(),null,0,'Mail');
  102.                 $this->addFlash('warning',$ex->getMessage());
  103.             }
  105.             $this->addFlash('success'"message.reset-instructions-by-mail");
  106.             return $this->redirect($this->generateUrl('forgot_password'));
  107.     }
  108.         else
  109.         {
  110.             $e $request->query->get("email","");
  111.             if ($e!=""$form->get('email')->setData($e);
  112.             return $this->render('@DiplixKMG/forgot_password.html.twig',array (
  113.                     "form" => $form->createView()
  114.             ));
  115.         }
  116.     }
  118.      public function resetPasswordAction(Request $request$email,$hash)
  119.     {
  120.         $rep $this->managerRegistry->getManager()->getRepository(User::class);
  121.         /** @var User $row */
  122.         $row $rep->getPendingPasswordResetUser($email,$hash);
  123.         if (is_object($row))
  124.         {
  125.             $form $this->createForm(ResetPasswordForm::class);
  126.             $form->handleRequest($request);
  127.             if ($form->isSubmitted())
  128.             {
  129.                 if ($form->isValid())
  130.                 {
  131.                     $this->setEncryptedUserPw($row$form->get('password')->getData());
  132.                     $row->setMailActionMode(User::MAIL_ACTION_NONE);
  133.                     $row->setMailActionHash("");
  134.                     $row->setLastPasswordChange(new \DateTime());
  135.                     $row->setSharedKey(''); // key was encrypted with old pw - it is not usable any more anyway - remove it
  136.                     $rep->flush($row);
  138.                     $this->addFlash('info'"message.password-was-reset");
  139.                     return $this->redirect($this->generateUrl("sys-login"));
  140.                 }
  141.             }
  142.             return $this->render('@DiplixKMG/reset_password.html.twig',array (
  143.                     "form" => $form->createView(),
  144.                     'show_key_warning' => ($row->getSharedKey()!==''),
  145.                     "row"=> $row,
  146.             ));
  147.         }
  148.         else
  149.         {
  150.             $this->addFlash("warning","message.invalid-link");
  151.             return $this->redirectToRoute("kmg_home");
  152.         }
  153.     }
  155.     public function registerAction(Request $request)
  156.     {
  157.         return $this->render('@DiplixKMG/register.html.twig');
  158.     }
  160.     public function unregisterAction(Request $request)
  161.     {
  162.         $ff $this->createForm(ForgotPasswordForm::class);
  163.         $ff->handleRequest($request);
  164.         if ($ff->isSubmitted()&&$ff->isValid())
  165.         {
  166.             $mh $this->mailHelper;
  167.             try {
  168.                 $mh->sendUserRemovalRequest($ff->get('email')->getData());
  169.             }
  170.             catch (\Throwable $ex)
  171.             {
  172.                 SysLogRepository::logError($this->managerRegistry->getConnection(),$ex->getMessage(),null,0,'Mail');
  173.                 //$this->addFlash('warning',$ex->getMessage());
  174.             }
  176.             $this->addFlash('success','Vielen Dank. Wir haben Ihre Anfrage erhalten und werden Sie in Kürze kontaktieren.');
  177.             return $this->redirectToRoute('unregister');
  178.         }
  179.         return $this->render('@DiplixKMG/unregister.html.twig',
  180.         [
  181.             'form'=>$ff->createView()
  182.         ]);
  183.     }
  185.     public function jsonLoginAction(Request $request) :Response
  186.     {
  187.         /** @var User $user */
  188.         $user $this->getUser();
  189.         return $this->json([
  190.             'username' => $user->getUsername(),
  191.             'success' => true,
  192.         ]);
  193.     }
  196. }