src/Controller/SecurityController.php line 77

Open in your IDE?
  1. <?php
  2. /**
  3.  * Created by PhpStorm.
  4.  * User: karg
  5.  * Date: 2019-03-27
  6.  * Time: 09:23
  7.  */
  9. namespace App\Controller;
  11. use App\Entity\School;
  12. use App\Entity\User;
  13. use App\Entity\UserHasSchool;
  14. use App\Form\ActivateType;
  15. use App\Form\CreateNewPasswordType;
  16. use App\Form\PasswordFormType;
  17. use App\Form\ProfileType;
  18. use App\Form\ResetPasswordType;
  19. use App\Form\TempPasswordChangeType;
  20. use App\Repository\UserHasSchoolRepository;
  21. use App\Repository\UserRepository;
  22. use Doctrine\ORM\NonUniqueResultException;
  23. use Knp\Menu\MenuItem;
  24. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  25. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  26. use Symfony\Component\HttpFoundation\Request;
  27. use Symfony\Component\HttpFoundation\Response;
  28. use Symfony\Component\Mailer\Exception\TransportExceptionInterface;
  29. use Symfony\Component\Mailer\MailerInterface;
  30. use Symfony\Component\Mime\Address;
  31. use Symfony\Component\Routing\Annotation\Route;
  32. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  33. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  34. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  36. class SecurityController extends AbstractController
  37. {
  38.     public string $logo;
  40.     public function __construct()
  41.     {
  42.         $logo "/img/logo_" $_ENV["APP_STATE_COUNTRY"] . ".jpg";
  44.         $this->logo = \file_exists("../public" $logo) ? $logo "/img/logo.svg";
  45.     }
  47.     /**
  48.      * @Route("/login", name="login")
  49.      * @param AuthenticationUtils $authenticationUtils
  50.      * @return Response
  51.      */
  52.     public function index(AuthenticationUtils $authenticationUtils): Response
  53.     {
  54.         if ($this->getUser()) {
  55.             return $this->redirect('/');
  56.         }
  57.         // get the login error if there is one
  58.         $error $authenticationUtils->getLastAuthenticationError();
  60.         // last username entered by the user
  61.         $lastUsername $authenticationUtils->getLastUsername();
  63.         return $this->render('security/login.html.twig', [
  64.             'last_username' => $lastUsername,
  65.             'error' => $error,
  66.             'logo' => $this->logo,
  67.         ]);
  68.     }
  70.     /**
  71.      * @Route("/reset", name="reset")
  72.      * @param Request $request
  73.      * @param MailerInterface $mailer
  74.      * @return Response
  75.      * @throws TransportExceptionInterface
  76.      */
  77.     public function reset(Request $requestMailerInterface $mailer): Response
  78.     {
  79.         $form $this->createForm(ResetPasswordType::class);
  80.         $form->handleRequest($request);
  82.         if ($form->isSubmitted() && $form->isValid()) {
  83.             $em $this->getDoctrine()->getManager();
  85.             $user $em->getRepository(User::class)->loadUserByUsername($form->getData()['email']);
  86.             if (\is_object($user)) {
  87.                 // create token expiration date
  88.                 $hashCreatedAt = \date_create(\date('Y-m-d H:i:s'));
  89.                 $hashExpDate $hashCreatedAt->modify('+ 1 day');
  90.                 $user->setHashExpirationDate($hashExpDate);
  92.                 // create pw reset token
  93.                 $hash = \md5($user->getEmail() . $user->getCreatedAt()->format('Y-m-d H:i:s'));
  94.                 $user->setResetPasswordHash($hash);
  96.                 $em->persist($user);
  97.                 $em->flush();
  100.                 $email = (new TemplatedEmail())
  101.                     ->subject('Unser Schulessen - Setzen Sie Ihr Passwort zurück. ')
  102.                     ->from(new Address('bb@unser-schulessen.de''Unser Schulessen'))
  103.                     ->to($form->getData()['email'])
  104.                     ->htmlTemplate('emails/reset_password.html.twig')
  105.                     ->context(
  106.                         [
  107.                             'name' => $user->getDisplayName(),
  108.                             'user' => $user,
  109.                             'link' => $this->generateUrl('login_token', [
  110.                                 'token' => \md5(
  111.                                     $user->getEmail() . $user->getCreatedAt()->format('Y-m-d H:i:s')
  112.                                 )
  113.                             ], UrlGeneratorInterface::ABSOLUTE_URL)
  114.                         ]
  115.                     );
  117.                 $mailer->send($email);
  118.             }
  119.             $this->getSuccessMessage('Eine Mail mit dem Aktivierungslink für ein neues Passwort wurde an Sie verschickt.');
  120.             return $this->redirect('login');
  121.         }
  122.         return $this->render('security/reset.html.twig', [
  123.             'form' => $form->createView(),
  124.             'logo' => $this->logo,
  125.         ]);
  126.     }
  128.     /**
  129.      * @Route("/login/{token}", name="login_token")
  130.      * @param string $token
  131.      * @param Request $request
  132.      * @param UserPasswordEncoderInterface $encoder
  133.      * @return Response
  134.      * @throws NonUniqueResultException
  135.      */
  136.     public function createNewPassword(string $tokenRequest $requestUserPasswordEncoderInterface $encoder): Response
  137.     {
  138.         $em $this->getDoctrine()->getManager();
  139.         $user $em->getRepository(User::class)->findUserByToken($token);
  141.         $form $this->createForm(CreateNewPasswordType::class, $user);
  142.         $form->handleRequest($request);
  144.         $today = \date_create(\date('Y-m-d'));
  146.         // Check if hash is expired & if it belongs to an user
  147.         if (\is_object($user) && ! \is_null($user->getHashExpirationDate()) && $today <= $user->getHashExpirationDate()) {
  148.             if ($form->isSubmitted() && $form->isValid()) {
  149.                 //save new password
  150.                 $encoded $encoder->encodePassword($user$user->getPassword());
  151.                 $user->setPassword($encoded);
  152.                 $user->setResetPasswordHash(null);
  153.                 $user->setHashExpirationDate(null);
  155.                 $em->persist($user);
  156.                 $em->flush();
  158.                 $this->getSuccessMessage('Ihr neues Passwort wurde gespeichert. Sie können sich jetzt damit einloggen.');
  160.                 return $this->redirectToRoute('login');
  161.             }
  163.             return $this->render('security/create_password.html.twig', [
  164.                 'form' => $form->createView(),
  165.                 'logo' => $this->logo,
  166.             ]);
  167.         }
  169.         $this->getErrorMessage(
  170.             'Zeit zum Passwort zurücksetzen überschritten oder falschen Link in Adressleiste eingegeben. 
  171.             Überprüfen sie den Link oder lassen Sie einen neuen generieren.'
  172.         );
  173.         return $this->redirectToRoute('login');
  174.     }
  176.     /**
  177.      * @IsGranted("ROLE_USER")
  178.      * @Route("/profile", name="profile")
  179.      * @param Request $request
  180.      * @param MenuItem $menu
  181.      * @return Response
  182.      */
  183.     public function profile(Request $requestMenuItem $menu): Response
  184.     {
  185.         $menu['dashboard']->addChild("Profil", [
  186.             'route' => 'profile'
  187.         ]);
  189.         $user $this->getUser();
  191.         $form $this->createForm(ProfileType::class, $user->getPerson(), []);
  192.         $form->handleRequest($request);
  194.         if ($form->isSubmitted() && $form->isValid()) {
  195.             $this->getSuccessMessage('Ihr Profil wurde erfolgreich gespeichert');
  196.             /*
  197.             if (! empty($form->get('profile')->get('new_password')->getData())) {
  198.                 $user->setPassword($encoder->encodePassword($user, $form->get('user')->get('new_password')->getData()));
  199.             }*/
  201.             $entityManager $this->getDoctrine()->getManager();
  202.             $entityManager->persist($user);
  203.             $entityManager->flush();
  205.             return $this->redirectToRoute('home');
  206.         }
  208.         return $this->render('security/profile.html.twig', [
  209.             'user' => $user,
  210.             'form' => $form->createView()
  211.         ]);
  212.     }
  214.     /**
  215.      * @IsGranted("ROLE_USER")
  216.      * @Route("/change-password", name="change_password")
  217.      * @param Request $request
  218.      * @param MenuItem $menu
  219.      * @param UserPasswordEncoderInterface $encoder
  220.      * @return Response
  221.      */
  222.     public function changePassword(Request $requestUserPasswordEncoderInterface $encoder): Response
  223.     {
  224.         $user $this->getUser();
  226.         $form $this->createForm(PasswordFormType::class, $user, []);
  227.         $form->handleRequest($request);
  229.         $oldPassword $form->get('oldPassword')->getData();
  231.         if ($form->isSubmitted() && $form->isValid() && $encoder->isPasswordValid($user$oldPassword)) {
  232.             $newPassword $encoder->encodePassword($user$form->get('newPassword')->getData());
  234.             $user->setPassword($newPassword);
  236.             $entityManager $this->getDoctrine()->getManager();
  237.             $entityManager->persist($user);
  238.             $entityManager->flush();
  240.             $this->getSuccessMessage('Ihr Passwort wurde erfolgreich gespeichert!');
  242.             return $this->redirectToRoute('home');
  243.         } elseif (! \is_null($oldPassword) && ! $encoder->isPasswordValid($user$oldPassword)) {
  244.             $this->getErrorMessage('Sie haben ihr altes Passwort falsch eingegeben!');
  245.         }
  247.         return $this->render('security/change_password.html.twig', [
  248.             'user' => $user,
  249.             'form' => $form->createView(),
  250.             'logo' => $this->logo,
  251.         ]);
  252.     }
  254.     /**
  255.      * @Route("/invitation/{token}/{user}/{school}", name="invitation")
  256.      * @param string $token
  257.      * @param User $user
  258.      * @param School $school
  259.      * @param Request $request
  260.      * @param UserPasswordEncoderInterface $encoder
  261.      * @return Response
  262.      * @throws NonUniqueResultException
  263.      */
  264.     public function invitation(
  265.         string $token,
  266.         User $user,
  267.         School $school,
  268.         Request $request,
  269.         UserPasswordEncoderInterface $encoder
  270.     ): Response {
  271.         /** @var UserRepository $ur */
  272.         $ur $this->getDoctrine()->getRepository(User::class);
  273.         /** @var UserHasSchoolRepository $uhsr */
  274.         $uhsr $this->getDoctrine()->getRepository(UserHasSchool::class);
  276.         $userByToken $ur->findUserByToken($token);
  277.         if ($user !== $userByToken) {
  278.             throw $this->createAccessDeniedException('User not match!');
  279.         }
  280.         $uhs $uhsr->find(['user' => $userByToken'school' => $school]);
  282.         $error null;
  283.         if (\is_null($uhs)) {
  284.             $error 'Die Einladung wurde zurückgezogen!';
  285.         } elseif ($uhs->getState() === UserHasSchool::STATE_ACCEPTED) {
  286.             $error 'Sie haben die Einladung bereits angenommen!';
  287.         } elseif ($uhs->getState() === UserHasSchool::STATE_REJECTED) {
  288.             $error 'Sie haben die Einladung bereits abgelehnt!';
  289.         } elseif ($user->getState() === User::STATE_BLOCKED) {
  290.             $error 'Sie wurden blockiert!';
  291.         }
  293.         if ($error) {
  294.             $this->getErrorMessage($error);
  295.             return $this->redirect('/login');
  296.         }
  298.         if ($user->getState() === User::STATE_NOT_ACTIVATED) {
  299.             $form $this->createForm(ActivateType::class, $user, []);
  300.             $form->handleRequest($request);
  302.             if ($form->isSubmitted() && $form->isValid()) {
  303.                 $user->setPassword($encoder->encodePassword($user$user->getPassword()));
  304.                 $user->setState(User::STATE_ACTIVE);
  306.                 $uhs->setRespondedAt(new \DateTime());
  307.                 $uhs->setState(UserHasSchool::STATE_ACCEPTED);
  309.                 $em $this->getDoctrine()->getManager();
  310.                 $em->flush();
  312.                 $this->getSuccessMessage('Ihr Account wurde erfolgreich aktiviert.');
  314.                 return $this->redirect('/login');
  315.             }
  316.         } elseif ($user->getState() === User::STATE_ACTIVE) {
  317.             // Form mit Buttons zum an und ablehnen rendern
  318.             if ($this->getUser()) {
  319.                 return $this->redirect('/');
  320.             }
  321.         }
  323.         return $this->render('security/invitation.html.twig', [
  324.             'user' => $user,
  325.             'school' => $school,
  326.             'form' => isset($form) ? $form->createView() : null,
  327.             'logo' => $this->logo,
  328.         ]);
  329.     }
  331.     /**
  332.      * @IsGranted("ROLE_USER")
  333.      * @Route("/change-temp-password", name="change_temp_password")
  334.      * @param Request $request
  335.      * @param MenuItem $menu
  336.      * @param UserPasswordEncoderInterface $encoder
  337.      * @return Response
  338.      */
  339.     public function changeTempPassword(Request $requestUserPasswordEncoderInterface $encoder): Response
  340.     {
  341.         $user $this->getUser();
  343.         $form $this->createForm(TempPasswordChangeType::class, $user, []);
  344.         $form->handleRequest($request);
  346.         if ($form->isSubmitted() && $form->isValid()) {
  347.             $newPassword $encoder->encodePassword($user$user->getNewPassword());
  348.             $user->setPassword($newPassword);
  349.             $user->setTempPassword(false);
  351.             $entityManager $this->getDoctrine()->getManager();
  352.             $entityManager->persist($user);
  353.             $entityManager->flush();
  355.             $this->getSuccessMessage('Ihr Passwort wurde erfolgreich gespeichert!');
  357.             return $this->redirectToRoute('home');
  358.         }
  360.         return $this->render('security/change_temp_password.html.twig', [
  361.             'user' => $user,
  362.             'form' => $form->createView(),
  363.             'logo' => $this->logo,
  364.         ]);
  365.     }
  366. }