src/Controller/Admin/SecurityController.php line 79

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Admin;
  5. use App\Entity\Route;
  6. use App\EventListener\FeatureFlagListener;
  7. use App\Renderer\Page;
  8. use App\Templating\Decorator;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Flagception\Manager\FeatureManagerInterface;
  11. use FOS\UserBundle\Controller\ResettingController;
  12. use FOS\UserBundle\Controller\SecurityController as BaseController;
  13. use FOS\UserBundle\Event\FilterUserResponseEvent;
  14. use FOS\UserBundle\Event\FormEvent;
  15. use FOS\UserBundle\Event\GetResponseUserEvent;
  16. use FOS\UserBundle\Form\Factory\FactoryInterface;
  17. use FOS\UserBundle\FOSUserEvents;
  18. use FOS\UserBundle\Model\UserManagerInterface;
  19. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  20. use Symfony\Component\HttpFoundation\RedirectResponse;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use Symfony\Component\HttpFoundation\RequestStack;
  23. use Symfony\Component\HttpFoundation\Response;
  24. use Symfony\Component\Routing\RouterInterface;
  25. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  26. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  27. use Symfony\Contracts\EventDispatcher\EventDispatcherInterface;
  28. use Symfony\Contracts\Translation\TranslatorInterface;
  30. class SecurityController extends BaseController
  31. {
  32.     public const TOKEN_LIFETIME_IN_HOURS 2;
  34.     private RequestStack $requestStack;
  35.     private Page $pageRenderer;
  36.     private RouterInterface $router;
  37.     private ResettingController $resettingController;
  38.     private UserManagerInterface $userManager;
  39.     private FactoryInterface $formFactory;
  40.     private EventDispatcherInterface $eventDispatcher;
  41.     private FeatureManagerInterface $featureManager;
  42.     private EntityManagerInterface $entityManager;
  43.     private ParameterBagInterface $parameterBag;
  45.     public function __construct(
  46.         AuthenticationUtils $authenticationUtils,
  47.         CsrfTokenManagerInterface $tokenManager,
  48.         RequestStack $requestStack,
  49.         Page $pageRenderer,
  50.         RouterInterface $router,
  51.         ResettingController $resettingController,
  52.         UserManagerInterface $userManager,
  53.         FactoryInterface $formFactory,
  54.         EventDispatcherInterface $eventDispatcher,
  55.         FeatureManagerInterface $featureManager,
  56.         EntityManagerInterface $entityManager,
  57.         ParameterBagInterface $parameterBag,
  58.         protected readonly Decorator $decorator,
  59.     ) {
  60.         parent::__construct($authenticationUtils$tokenManager);
  62.         $this->requestStack $requestStack;
  63.         $this->pageRenderer $pageRenderer;
  64.         $this->router $router;
  65.         $this->resettingController $resettingController;
  66.         $this->userManager $userManager;
  67.         $this->formFactory $formFactory;
  68.         $this->eventDispatcher $eventDispatcher;
  69.         $this->featureManager $featureManager;
  70.         $this->entityManager $entityManager;
  71.         $this->parameterBag $parameterBag;
  72.     }
  74.     /**
  75.      * {@inheritdoc}
  76.      *
  77.      * @throws \Exception
  78.      */
  79.     protected function renderLogin(array $data): Response
  80.     {
  81.         $template '@admin/Security/login.html.twig';
  82.         $requestAttributes $this->requestStack->getMainRequest()->attributes;
  83.         $route $this->entityManager->getRepository(Route::class)
  84.             ->findOneBy(['name' => Route::ALIAS_PREFIX.'user_login']);
  86.         $data['enableRegistration'] = false;
  87.         $data['enableForgotPassword'] = true;
  88.         $data['enableCompanyRegistration'] = false;
  89.         $data['loginCheck'] = $this->router->generate('fos_user_security_check');
  90.         $data['forgotPasswordLink'] = $this->router->generate('admin_forgot_password');
  91.         $data['azureLogin'] = $this->featureManager->isActive(FeatureFlagListener::FEATURE_OAUTH_SSO_AZURE);
  92.         $data['googleLogin'] = $this->featureManager->isActive(FeatureFlagListener::FEATURE_OAUTH_SSO_GOOGLE);
  93.         $data['getnoticedGoogleLogin'] = $this->featureManager->isActive(FeatureFlagListener::FEATURE_OAUTH_SSO_GETNOTICED_GOOGLE);
  94.         $data['pingfederateLogin'] = $this->featureManager->isActive(FeatureFlagListener::FEATURE_OAUTH_SSO_PINGFEDERATE);
  96.         if ('user_login' === $requestAttributes->get('_route')) {
  97.             if (true !== $this->parameterBag->get('site_user_active')) {
  98.                 return $this->redirectToRoute('homepage');
  99.             }
  101.             $data['loginCheck'] = $this->router->generate('user_check');
  102.             $data['forgotPasswordLink'] = $this->router->generate('pages_user_forgot_password');
  103.             $data['enableRegistration'] = $this->parameterBag->get('site_user_enable_registration');
  104.             $data['enableForgotPassword'] = $this->parameterBag->get('site_user_enable_forgot_password');
  105.             $data['enableCompanyRegistration'] = $this->parameterBag->get('site_user_enable_company_registration');
  107.             $response $this
  108.                 ->pageRenderer
  109.                 ->renderPage(
  110.                     '{user_login}',
  111.                     $this->decorator->getTemplate('admin/Security/login_content.html.twig'),
  112.                     $data,
  113.                     [],
  114.                     [],
  115.                     null,
  116.                     $route
  117.                 );
  118.             $response->setMaxAge(0);
  119.             $response->setSharedMaxAge(0);
  121.             return $response;
  122.         }
  123.         $response $this->render($template$data);
  124.         $response->setSharedMaxAge(0);
  126.         return $response;
  127.     }
  129.     public function forgotPasswordAction(Request $request): Response
  130.     {
  131.         if ($request->get('username')) {
  132.             $response $this->resettingController->sendEmailAction($request);
  134.             if ($response instanceof RedirectResponse) {
  135.                 return $this->redirectToRoute('admin_check_mail');
  136.             }
  137.         }
  139.         return $this->render('@admin/Security/forgot_password.html.twig');
  140.     }
  142.     public function checkMailAction(): Response
  143.     {
  144.         return $this->render('@admin/Security/check_mail.html.twig', [
  145.             'tokenLifetime' => self::TOKEN_LIFETIME_IN_HOURS,
  146.         ]);
  147.     }
  149.     public function resetAction(Request $request$tokenTranslatorInterface $translatorRouterInterface $router): Response
  150.     {
  151.         $user $this->userManager->findUserByConfirmationToken($token);
  153.         if (null === $user) {
  154.             return new RedirectResponse($router->generate('admin_dashboard_dashboard_index'));
  155.         }
  157.         $event = new GetResponseUserEvent($user$request);
  158.         $this->eventDispatcher->dispatch($eventFOSUserEvents::RESETTING_RESET_INITIALIZE);
  160.         if (null !== $event->getResponse()) {
  161.             return $event->getResponse();
  162.         }
  164.         $locale $request->getLocale();
  166.         $form $this->formFactory->createForm();
  167.         $form->setData($user);
  169.         $form->handleRequest($request);
  171.         if ($form->isSubmitted() && $form->isValid()) {
  172.             $event = new FormEvent($form$request);
  173.             $this->eventDispatcher->dispatch($eventFOSUserEvents::RESETTING_RESET_SUCCESS);
  175.             $this->userManager->updateUser($user);
  177.             if (null === $response $event->getResponse()) {
  178.                 $url $this->generateUrl('admin_dashboard_dashboard_index');
  179.                 $response = new RedirectResponse($url);
  180.             }
  182.             $this->eventDispatcher->dispatch(
  183.                 new FilterUserResponseEvent($user$request$response),
  184.                 FOSUserEvents::RESETTING_RESET_COMPLETED
  185.             );
  187.             return $response;
  188.         }
  190.         return $this->render('@admin/Security/reset.html.twig', [
  191.             'token' => $token,
  192.             'form' => $form->createView(),
  193.             'site_page_title' => $translator->trans('Reset Password', [], 'admin'$locale),
  194.         ]);
  195.     }
  196. }