src/App/Controller/AuthenticationController.php line 287

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Association\Adherent;
  6. use App\Entity\Parametre\Utilisateur;
  7. use App\Form\Authenticator\AdherentActivateAccountType;
  8. use App\Form\Authenticator\ForgotPasswordType;
  9. use App\Form\Authenticator\LoginAuthenticatorType;
  10. use App\Form\Authenticator\RenewPasswordType;
  11. use App\Helper\MailerHelper;
  12. use App\Helper\UserHelper;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\Routing\Annotation\Route;
  16. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  17. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  18. use Symfony\Contracts\Translation\TranslatorInterface;
  20. class AuthenticationController extends AbstractAppController {
  22.     /**
  23.      * Reset the password.
  24.      * @Route("/adherent/active-account/{token}", name="adherent_active_account", defaults={"token": null})
  25.      */
  26.     public function activeAccountAdherent(Request $requestTranslatorInterface $translatorUserPasswordEncoderInterface $passwordEncoder$token null) {
  28.         // If user was already connected, redirect to home page.
  29.         if ($this->getUser() !== null || $this->getAppParameter("ASSOCIATION_EXTRANET_ENABLED") !== "1") {
  30.             return $this->redirectToRoute("app");
  31.         }
  33.         // If a token was defined.
  34.         if ($token !== null) {
  35.             // Create form.
  36.             $form $this->createForm(RenewPasswordType::class);
  37.             $form->handleRequest($request);
  39.             $output = [
  40.                 "localeLangage" => $translator->getLocale(),
  41.                 "token"         => $token,
  42.                 "form"          => $form->createView(),
  43.             ];
  45.             // Check if token length is valid.
  46.             if (strlen($token) !== 36) {
  47.                 $output["errorMessage"] = $translator->trans("app_adherent_active_account.error_invalid_link", [], "authenticator");
  48.                 return $this->render('Authentication/create-password.html.twig'$output);
  49.             }
  51.             // Find user by her reset token.
  52.             $user $this->em()->getRepository(Utilisateur::class)->findOneBy([
  53.                 "activeAccountToken" => $token,
  54.             ]);
  56.             // If not found.
  57.             if (null === $user) {
  58.                 $output["errorMessage"] = $translator->trans("app_adherent_active_account.error_invalid_link", [], "authenticator");
  59.                 return $this->render('Authentication/create-password.html.twig'$output);
  60.             }
  62.             // Check the platform.
  63.             if (false === in_array($user->getPlatformId(), [getenv("PLATFORM_ID")])) {
  64.                 $output["errorMessage"] = $translator->trans("app_adherent_active_account.error_invalid_link", [], "authenticator");
  65.                 return $this->render('Authentication/create-password.html.twig'$output);
  66.             }
  68.             // Check date expiration.
  69.             if ($user->getDateActiveAccountExpire()->getTimestamp() < time()) {
  70.                 $output["errorMessage"] = $translator->trans("app_adherent_active_account.error_time_expire", [], "authenticator");
  71.                 return $this->render('Authentication/create-password.html.twig'$output);
  72.             }
  74.             // If new password was submitted.
  75.             if ($form->isSubmitted() && $form->isValid()) {
  77.                 $password      $form->get("_password")->getData();
  78.                 $passwordAgain $form->get("_passwordAgain")->getData();
  80.                 if ($password !== $passwordAgain) {
  81.                     $output["errorMessageForm"] = $translator->trans("app_reset_password.not_similar_password", [], "authenticator");
  82.                     return $this->render('Authentication/create-password.html.twig'$output);
  83.                 }
  85.                 if (false === Utilisateur::isValidPassword($password)) {
  86.                     $output["errorMessageForm"] = $translator->trans("app_reset_password.critere_password", [], "authenticator");
  87.                     return $this->render('Authentication/create-password.html.twig'$output);
  88.                 }
  90.                 // Set the new password.
  91.                 $password $passwordEncoder->encodePassword($user$password);
  92.                 $user->setPassword($password);
  93.                 $user->setActiveAccountToken(null);
  94.                 $user->setDateActiveAccountExpire(null);
  95.                 $this->em()->flush();
  97.                 $output["successMessage"] = $translator->trans("app_adherent_active_account.success", [], "authenticator");
  98.                 return $this->render('Authentication/create-password.html.twig'$output);
  99.             }
  101.             $output["infoMessage"] = $translator->trans("app_adherent_active_account.finalize_when_password_defined", [], "authenticator");
  102.             return $this->render('Authentication/create-password.html.twig'$output);
  103.         }
  105.         // Create form.
  106.         $form $this->createForm(AdherentActivateAccountType::class);
  107.         $form->handleRequest($request);
  109.         if ($form->isSubmitted() && $form->isValid()) {
  111.             $locale $translator->getLocale();
  113.             $currentPlatformId getenv("PLATFORM_ID");
  114.             $email             $form->get("_username")->getData();
  116.             // Find user.
  117.             $findUser $this->em()->getRepository(Utilisateur::class)->findOneBy([
  118.                 "email"      => $email,
  119.                 "platformId" => $currentPlatformId,
  120.             ]);
  122.             // Si aucun compte n'existe avec l'adresse email de l'adhérent, on lui créer un compte.
  123.             if ($findUser === null) {
  125.                 $findAdherent $this->em()->getRepository(Adherent::class)->findBy([
  126.                     "email"         => $email,
  127.                     "platformId"    => $currentPlatformId,
  128.                     "accesExtranet" => true,
  129.                 ]);
  131.                 if (count($findAdherent) > 0) {
  132.                     $utilisateur = new Utilisateur();
  133.                     $utilisateur->setCivilite($findAdherent[0]->getCivilite());
  134.                     $utilisateur->setPrenom($findAdherent[0]->getPrenom());
  135.                     $utilisateur->setNom($findAdherent[0]->getNom());
  136.                     $utilisateur->setEmail($findAdherent[0]->getEmail());
  137.                     $utilisateur->setLang($this->getAppParameter("LANGUAGE"));
  138.                     $utilisateur->setRoles([Utilisateur::ROLE_ADHERENT]);
  139.                     $utilisateur->setPassword(-1);
  140.                     $utilisateur->setSocieteSelected($findAdherent[0]->getSociete());
  142.                     // Generate new token forgot password.
  143.                     $token $utilisateur->generateActiveAccountToken();
  145.                     $this->em()->persist($utilisateur);
  147.                     // If token was returned, new token was generated.
  148.                     if (false !== $token) {
  149.                         $this->em()->flush();
  151.                         // Set locale lang.
  152.                         if (null !== $utilisateur->getLang()) {
  153.                             $locale $utilisateur->getLang();
  154.                         }
  156.                         // Submit mail to user.
  157.                         $mailer = new MailerHelper($this->getParameter("smtp"), $this->container->get("twig"), $locale);
  158.                         $mailer->sendMail(
  159.                             "Authentication/email/adherent/active-account.html.twig",
  160.                             [
  161.                                 "token" => $utilisateur->getActiveAccountToken(),
  162.                             ],
  163.                             $utilisateur->getEmail()
  164.                         );
  165.                     }
  166.                 }
  167.             } else {
  169.                 // Si un compte existe avec l'adresse email et qu'il s'agit d'un compte adhérent non activé, on renvoi le mail d'activation.
  170.                 if (UserHelper::hasRole(Utilisateur::ROLE_ADHERENT$findUser) && $findUser->getActiveAccountToken() !== null) {
  171.                     // Generate new token forgot password.
  172.                     $token $findUser->generateActiveAccountToken();
  174.                     // If token was returned, new token was generated.
  175.                     if (false !== $token) {
  176.                         $this->em()->flush();
  178.                         // Set locale lang.
  179.                         if (null !== $findUser->getLang()) {
  180.                             $locale $findUser->getLang();
  181.                         }
  183.                         // Submit mail to user.
  184.                         $mailer = new MailerHelper($this->getParameter("smtp"), $this->container->get("twig"), $locale);
  185.                         $mailer->sendMail(
  186.                             "Authentication/email/adherent/active-account.html.twig",
  187.                             [
  188.                                 "token" => $findUser->getActiveAccountToken(),
  189.                             ],
  190.                             $findUser->getEmail()
  191.                         );
  192.                     }
  193.                 }
  195.                 // Si un compte existe avec l'adresse email et qu'il s'agit d'un compte adhérent déjà activé, on envoi un mail d'information.
  196.                 if (UserHelper::hasRole(Utilisateur::ROLE_ADHERENT$findUser) && $findUser->getActiveAccountToken() === null) {
  197.                     // Submit mail to user.
  198.                     $mailer = new MailerHelper($this->getParameter("smtp"), $this->container->get("twig"), $locale);
  199.                     $mailer->sendMail("Authentication/email/adherent/already-activated.html.twig.html.twig", [], $findUser->getEmail());
  200.                 }
  201.             }
  203.             return $this->render('Authentication/adherent/active-account.html.twig', [
  204.                 "localeLangage" => $translator->getLocale(),
  205.                 "submitted"     => true,
  206.             ]);
  207.         }
  209.         return $this->render('Authentication/adherent/active-account.html.twig', [
  210.             "localeLangage" => $translator->getLocale(),
  211.             "form"          => $form->createView(),
  212.         ]);
  213.     }
  215.     /**
  216.      * Forgot password.
  217.      * @Route("/forgot-password", name="forgot_password")
  218.      */
  219.     public function forgotPassword(Request $requestTranslatorInterface $translator): Response {
  221.         // If user was already connected, redirect to home page.
  222.         if ($this->getUser() !== null) {
  223.             return $this->redirectToRoute("app");
  224.         }
  226.         // Create form.
  227.         $form $this->createForm(ForgotPasswordType::class);
  228.         $form->handleRequest($request);
  230.         if ($form->isSubmitted() && $form->isValid()) {
  232.             $locale $translator->getLocale();
  234.             $currentPlatformId getenv("PLATFORM_ID");
  235.             $email             $form->get("_username")->getData();
  237.             // Find user.
  238.             $findUser $this->em()->getRepository(Utilisateur::class)->findOneBy([
  239.                 "email" => $email,
  240.             ]);
  242.             // If user was found and platform match.
  243.             if ($findUser !== null && true === in_array($currentPlatformId, [false$findUser->getPlatformId()])) {
  245.                 putenv("PLATFORM_ID={$findUser->getPlatformId()}");
  247.                 // Generate new token forgot password.
  248.                 $token $findUser->generateForgotPasswordToken();
  250.                 // If token was returned, new token was generated.
  251.                 if (false !== $token) {
  252.                     $this->em()->flush();
  254.                     // Set locale lang.
  255.                     if (null !== $findUser->getLang()) {
  256.                         $locale $findUser->getLang();
  257.                     }
  259.                     // Submit mail to user.
  260.                     $mailer = new MailerHelper($this->getParameter("smtp"), $this->container->get("twig"), $locale);
  261.                     $mailer->sendMail(
  262.                         "Authentication/email/forgot-password.html.twig",
  263.                         [
  264.                             "token" => $findUser->getResetPasswordToken(),
  265.                         ],
  266.                         $findUser->getEmail()
  267.                     );
  268.                 }
  269.             }
  271.             return $this->render('Authentication/forgot-password.html.twig', [
  272.                 "localeLangage" => $translator->getLocale(),
  273.                 "submitted"     => true,
  274.             ]);
  275.         }
  277.         return $this->render('Authentication/forgot-password.html.twig', [
  278.             "localeLangage" => $translator->getLocale(),
  279.             "form"          => $form->createView(),
  280.         ]);
  281.     }
  283.     /**
  284.      * Login.
  285.      * @Route("/login", name="login")
  286.      */
  287.     public function index(AuthenticationUtils $authenticationUtilsTranslatorInterface $translator): Response {
  289.         // If user was already connected, redirect to home page.
  290.         if ($this->getUser() !== null) {
  291.             return $this->redirectToRoute("app");
  292.         }
  294.         // Create form.
  295.         $form $this->createForm(LoginAuthenticatorType::class);
  297.         // get the login error if there is one
  298.         $error $authenticationUtils->getLastAuthenticationError();
  300.         // last username entered by the user
  301.         $lastUsername $authenticationUtils->getLastUsername();
  303.         return $this->render('Authentication/login.html.twig', [
  304.             'last_username' => $lastUsername,
  305.             'error'         => $error,
  306.             "localeLangage" => $translator->getLocale(),
  307.             "form"          => $form->createView(),
  308.         ]);
  309.     }
  311.     /**
  312.      * Logout user.
  313.      * @Route("/logout", name="app_logout")
  314.      */
  315.     public function logout() {
  316.         /** @var Utilisateur $user */
  317.         $user $this->getUser();
  319.         if (null !== $user) {
  320.             $user->setDateSessionExpiration(null);
  321.             $user->setSessionToken(null);
  322.         }
  324.         $this->em()->persist($user);
  325.         $this->em()->flush();
  327.         if (isset($_COOKIE['REMEMBERME'])) {
  328.             unset($_COOKIE['REMEMBERME']);
  329.             setcookie('REMEMBERME'null, -1'/');
  330.         }
  332.         session_destroy();
  334.         return $this->redirectToRoute("login");
  335.     }
  337.     /**
  338.      * Logout user.
  339.      * @Route("/process-logout", name="app_process_logout")
  340.      */
  341.     public function processLogout() {
  342.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  343.     }
  345.     /**
  346.      * Reset the password.
  347.      * @Route("/reset/{token}", name="reset_password")
  348.      */
  349.     public function resetPassword(Request $requestTranslatorInterface $translatorUserPasswordEncoderInterface $passwordEncoder$token) {
  351.         // If user was already connected, redirect to home page.
  352.         if ($this->getUser() !== null) {
  353.             return $this->redirectToRoute("app");
  354.         }
  355.         $isCreationPassword $request->query->has("configure");
  356.         $twigView           = ($isCreationPassword "create-password" "reset");
  358.         // Create form.
  359.         $form $this->createForm(RenewPasswordType::class);
  360.         $form->handleRequest($request);
  362.         $output = [
  363.             "localeLangage" => $translator->getLocale(),
  364.             "token"         => $token,
  365.             "form"          => $form->createView(),
  366.         ];
  368.         // Check if token length is valid.
  369.         if (strlen($token) !== 36) {
  370.             $output["errorMessage"] = $translator->trans("app_reset_password.error_invalid_link", [], "authenticator");
  371.             return $this->render('Authentication/' $twigView '.html.twig'$output);
  372.         }
  374.         // Find user by her reset token.
  375.         $user $this->em()->getRepository(Utilisateur::class)->findOneBy([
  376.             "resetPasswordToken" => $token,
  377.         ]);
  379.         // If not found.
  380.         if (null === $user) {
  381.             $output["errorMessage"] = $translator->trans("app_reset_password.error_invalid_link", [], "authenticator");
  382.             return $this->render('Authentication/' $twigView '.html.twig'$output);
  383.         }
  385.         // Check the platform.
  386.         if (false === in_array($user->getPlatformId(), [falsegetenv("PLATFORM_ID")])) {
  387.             $output["errorMessage"] = $translator->trans("app_reset_password.error_invalid_link", [], "authenticator");
  388.             return $this->render('Authentication/' $twigView '.html.twig'$output);
  389.         }
  391.         // Check date expiration.
  392.         if ($user->getDateResetPasswordExpire()->getTimestamp() < time()) {
  393.             $output["errorMessage"] = $translator->trans("app_reset_password.error_time_expire", [], "authenticator");
  394.             return $this->render('Authentication/' $twigView '.html.twig'$output);
  395.         }
  397.         // If new password was submitted.
  398.         if ($form->isSubmitted() && $form->isValid()) {
  400.             $password      $form->get("_password")->getData();
  401.             $passwordAgain $form->get("_passwordAgain")->getData();
  403.             if ($password !== $passwordAgain) {
  404.                 $output["errorMessageForm"] = $translator->trans("app_reset_password.not_similar_password", [], "authenticator");
  405.                 return $this->render('Authentication/' $twigView '.html.twig'$output);
  406.             }
  408.             if (false === Utilisateur::isValidPassword($password)) {
  409.                 $output["errorMessageForm"] = $translator->trans("app_reset_password.critere_password", [], "authenticator");
  410.                 return $this->render('Authentication/' $twigView '.html.twig'$output);
  411.             }
  413.             // Set the new password.
  414.             $password $passwordEncoder->encodePassword($user$password);
  415.             $user->setPassword($password);
  416.             $user->setDateResetPasswordExpire(null);
  417.             $user->setResetPasswordToken(null);
  418.             $this->em()->flush();
  420.             $output["successMessage"] = $translator->trans("app_reset_password.success_change", [], "authenticator");
  421.             return $this->render('Authentication/' $twigView '.html.twig'$output);
  422.         }
  424.         return $this->render('Authentication/' $twigView '.html.twig'$output);
  425.     }
  426. }