src/Controller/SecurityController.php line 54

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use DateTimeImmutable;
  6. use App\Entity\Forgotten;
  7. use App\Form\PasswordType;
  8. use App\Form\ForgottenType;
  9. use App\Services\MailerService;
  10. use App\Repository\UidRepository;
  11. use App\Repository\ForgottenRepository;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpFoundation\Response;
  14. use Symfony\Component\Routing\Annotation\Route;
  15. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  16. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  17. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  18. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  19. use Symfony\Component\Security\Csrf\TokenGenerator\TokenGeneratorInterface;
  21. class SecurityController extends AbstractController
  22. {
  23.     /**
  24.      * @Route("/login", name="app_login")
  25.      */
  26.     public function login(AuthenticationUtils $authenticationUtils): Response
  27.     {
  28.         if ($this->getUser()) {
  29.             // On redirige l'utilisateur en fonction de son rôle
  30.             $role strtolower(str_replace('ROLE_'''$this->getUser()->getRoles()[0]));
  31.             $route $role '_dashboard';
  32.             return $this->redirectToRoute("dashboard");
  33.         }
  35.         // get the login error if there is one
  36.         $error $authenticationUtils->getLastAuthenticationError();
  37.         // last username entered by the user
  38.         $lastUsername $authenticationUtils->getLastUsername();
  40.         return $this->render('security/login.html.twig', ['current'=> 'login','last_username' => $lastUsername'error' => $error]);
  41.     }
  43.     /**
  44.      * @Route("/logout", name="app_logout")
  45.      */
  46.     public function logout(SessionInterface $session): void
  47.     {
  48.         unset($session);
  49.     }
  51.     /**
  52.      * @Route("/mot-de-passe-oublie", name="app_forgotten")
  53.      */
  54.     public function forgotten(
  55.         Request $request
  56.         UidRepository $uidRepository,
  57.         ForgottenRepository $forgottenRepository,
  58.         TokenGeneratorInterface $tokenGenerator,
  59.         UserPasswordHasherInterface $encoder,
  60.         MailerService $mailer
  61.     ): Response
  62.     {
  63.         $error = [];
  64.         $params = [];
  65.         $lastUsername '';
  67.         /** Confirmation de la demande */
  68.         if ($request->query->get("_t")) {
  69.             $token $request->query->get("_t");
  70.             $forgotten $forgottenRepository->findOneBy(["token" => $token]);
  71.             $form $this->createForm(PasswordType::class)->handleRequest($request);
  73.             /** Demande trouvée */
  74.             if ($forgotten) {
  75.                 if ($form->isSubmitted() && $form->isValid()) {
  76.                     $uid $uidRepository->find($forgotten->getUid());
  77.                     $data $form->getData();
  78.                     $password $data["password"];
  79.                     $uid->setPassword($encoder->hashPassword($uid$password));
  80.                     $uid->setUpdatedAt(new DateTimeImmutable());
  81.                     /** Suppression de la demande de modification */
  82.                     $this->manager->remove($forgotten);
  83.                     $this->manager->flush();
  84.                     $this->addFlash("success""Votre mot de passe à bien été changé. Vous pouvez dès à présent vous connecter.");
  85.                     return $this->redirectToRoute("app_login");
  86.                 }
  87.             }
  88.             else {
  89.                 $this->addFlash("danger""Une erreur est survenue.");
  90.                 return $this->redirectToRoute("app_forgotten");
  91.             }
  93.             return $this->render('security/new_password.html.twig', [
  94.                 'current' => '',
  95.                 'error' => $error,
  96.                 'form' => $form->createView(),
  97.             ]);
  98.             
  99.         }
  100.         else {
  102.             $form $this->createForm(ForgottenType::class)->handleRequest($request);
  103.             if ($form->isSubmitted() && $form->isValid()) {
  104.                 $data $form->getData();
  105.                 $email $data['email'];
  106.                 $lastUsername $email;
  107.     
  108.                 $existUid $uidRepository->findOneBy(["email" => $email]);
  109.                 /** Utilisateur valide */
  110.                 if (null !== $existUid) {
  111.                     
  112.                     $existForgotten $forgottenRepository->findOneBy(['uid' => $existUid]);
  113.                     if(!$existForgotten){
  114.                         $forgotten = new Forgotten();
  115.                         $forgotten->setUid($existUid);
  116.                         $forgotten->setCreatedAt(new DateTimeImmutable());
  117.                         $token $tokenGenerator->generateToken();
  118.                         $forgotten->setToken($token);
  119.                         $this->manager->persist($forgotten);
  120.                         $this->manager->flush();
  121.     
  122.                         $params = [
  123.                             'user' => $existUid,
  124.                             'token' => $forgotten->getToken(),
  125.                         ];
  126.                         $mailer->send("Demande de ré-initialisation de votre mot de passe - LOTICA", [$email], "forgot",$params);
  127.         
  128.                         $this->addFlash("success""Un e-mail avec un lien de ré-initialisation pour votre mot de passe vient de vous être envoyé.");
  129.                         return $this->redirectToRoute("app_forgotten");
  130.                     }
  131.                     else {
  132.                         $this->addFlash("danger""Demande de ré-initialisation déjà enregistrée. Un e-mail avec un lien de confirmation vous à été envoyé.");
  133.                     }
  134.                 }
  135.                 else {
  136.                     $this->addFlash("danger""Adresse e-mail inconnue.");
  137.                 }
  138.             }
  139.             return $this->render('security/forgotten.html.twig', [
  140.                 'current' => '',
  141.                 'lastUsername' => $lastUsername
  142.                 'error' => $error,
  143.                 'form' => $form->createView(),
  144.             ]);
  145.         }
  147.     }
  148. }