src/Controller/SecurityController.php line 98

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\CBRCResetPassword;
  6. use App\Entity\CBRCUser;
  7. use App\Form\Type\AddUserRoleType;
  8. use App\Form\Type\ResetPassword1Type;
  9. use App\Form\Type\ResetPassword2Type;
  10. use App\Utilities\Secure;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\Form\FormError;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  18. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  19. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  20. use App\Utilities\Mail;
  22. class SecurityController extends AbstractController
  23. {
  24.     /**
  25.      * @Route("/connexion", name="app_login")
  26.      */
  27.     public function login(AuthenticationUtils $authenticationUtils): Response
  28.     {
  29.         /*if ($this->getUser()) {
  30.             return $this->redirectToRoute('home');
  31.         }*/
  33.         // get the login error if there is one
  34.         $error $authenticationUtils->getLastAuthenticationError();
  35.         // last username entered by the user
  36.         $lastUsername $authenticationUtils->getLastUsername();
  38.         return $this->render('security/login.html.twig', ['last_username' => $lastUsername'error' => $error]);
  39.     }
  41.     /**
  42.      * @Route("/logout", name="app_logout")
  43.      */
  44.     public function logout()
  45.     {
  46.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  47.     }
  49.     /**
  50.      * @Route("/admin/acces", name="app_accessmanager")
  51.      */
  52.     public function ShowAccessManager(Request $request)
  53.     {
  54.         $this->denyAccessUnlessGranted('ROLE_ADMIN');
  56.         $adminusers $this->getDoctrine()->getRepository(CBRCUser::class)->findByRole('ROLE_ADMIN');
  57.         $writterusers $this->getDoctrine()->getRepository(CBRCUser::class)->findByRole('ROLE_WRITER');
  59.         $formaddrole $this->createForm(AddUserRoleType::class);
  60.         $formaddrole->handleRequest($request);
  61.         if($formaddrole->isSubmitted() && $formaddrole->isValid())
  62.         {
  63.             $email=$formaddrole->get('email')->getData();
  64.             $role $formaddrole->get('role')->getData();
  66.             $user$this->getDoctrine()->getRepository(CBRCUser::class)->findOneBy(['email'=>$email]);
  68.             if($user==null) {
  69.                 $this->addFlash('danger''L\'utilisateur n\'existe pas');
  70.                 return $this->redirect($request->getUri());
  71.             }
  73.             $user->setRoles(array($role));
  75.             $em=$this->getDoctrine()->getManager();
  76.             $em->persist($user);
  77.             $em->flush();
  79.             return $this->redirect($request->getUri());
  80.         }
  81.         if ($formaddrole->isSubmitted() && !$formaddrole->isValid()) {
  82.             foreach ($formaddrole->getErrors(true) as $error)
  83.                 $this->addFlash('danger'"(" $error->getOrigin()->getName() . ") " $error->getMessage());
  84.             $formaddrole->clearErrors(true);
  85.         }
  87.         return $this->render('security/adminaccessmanager.html.twig',[
  88.             'adminusers' => $adminusers,
  89.             'writterusers' => $writterusers,
  90.             'formrole' => $formaddrole->createView(),
  91.             'idactive' => 7
  92.         ]);
  93.     }
  95.     /**
  96.      * @Route("/security/resetpassword" , name="app_resetpassword")
  97.      */
  98.     public function ResetPassword(Request $request)
  99.     {
  100.         $formreset $this->createForm(ResetPassword1Type::class);
  102.         $formreset->handleRequest($request);
  103.         if($formreset->isSubmitted() && $formreset->isValid()){
  104.             $email=$formreset->getData()['email'];
  106.             //get the user
  107.             $user=$this->getDoctrine()->getRepository(CBRCUser::class)->findOneBy(array('email'=>$email));
  109.             if($user==null)
  110.             {
  111.                 $formreset->get('email')->addError(new FormError('Email inconnu'));
  112.             }
  113.             else
  114.             {
  115.                 $this->ClearUserResetPassword($user);
  117.                 $datetime = new \DateTime();
  118.                 $datetime->add(new \DateInterval("P1D")); //add 1day
  120.                 $resetpassword = new CBRCResetPassword();
  121.                 $resetpassword->setUser($user);
  122.                 $resetpassword->setToken($this->GetUniqueToken());
  123.                 $resetpassword->setValiditydate($datetime);
  125.                 $entityManager $this->getDoctrine()->getManager();
  126.                 $entityManager->persist($resetpassword);
  127.                 $entityManager->flush($resetpassword);
  129.                 //Send mail
  131.                 $link $this->generateUrl('app_resetpassword_token', ['token'=>$resetpassword->getToken()], UrlGeneratorInterface::ABSOLUTE_URL);
  133.                 $txtmessage "Pour reinitialier votre mot de passe rendez vous sur: ".$link;
  134.                 $subject "Reinitialiser le mot de passe";
  136.                 $htmlmessage $this->render('mail/resetpasswordmail.html.twig', [
  137.                     'subject' => $subject,
  138.                     'link' => $link,
  139.                 ]);
  142.                 $return Mail::SendMailToMail($email$subject$htmlmessage$txtmessage);
  144.                 if($return ==false)
  145.                 {
  147.                     $this->addFlash('danger''Erreur lors de l\'envoi du mail');
  148.                 }
  150.                 return $this->render('security/resetpasswordconfirmation.html.twig', [
  151.                     'passwordchanged' => false,
  152.                 ]);
  153.             }
  154.         }
  155.         if($formreset->isSubmitted() && !$formreset->isValid())
  156.         {
  157.             foreach($formreset->getErrors(true) as $error)
  158.                 $this->addFlash('danger'"(".$error->getOrigin()->getName().") ".$error->getMessage());
  159.             return $this->redirect($request->getUri());
  160.         }
  162.         return $this->render('security/resetpassword.html.twig', [
  163.             'formreset' => $formreset->createView(),
  164.         ]);
  165.     }
  167.     /**
  168.      * @Route("/security/resetpassword/{token}", name="app_resetpassword_token")
  169.      */
  170.     public function ResetPasswordWithToken($tokenRequest $requestUserPasswordEncoderInterface $passwordEncoder)
  171.     {
  172.         $resetpassword $this->getDoctrine()->getRepository(CBRCResetPassword::class)->findOneBy(array('token'=>$token));
  173.         $entityManager $this->getDoctrine()->getManager();
  175.         if($resetpassword->getValiditydate()< new \DateTime())
  176.         {
  177.             $entityManager->remove($resetpassword);
  178.             $entityManager->flush();
  179.             $resetpassword=null;
  180.         }
  182.         if($resetpassword==null)
  183.         {
  184.             return $this->redirectToRoute("app_resetpassword");
  185.         }
  187.         $formreset $this->createForm(ResetPassword2Type::class);
  189.         $formreset->handleRequest($request);
  190.         if($formreset->isSubmitted() && $formreset->isValid()){
  191.             $email=$formreset->getData()['email'];
  192.             $user=$resetpassword->getUser();
  194.             //check email with bfresetpassworduser email
  195.             if($email != $resetpassword->getUser()->getEmail())
  196.             {
  197.                 $formreset->get('email')->addError(new FormError('Email inconnu'));
  198.             }
  199.             else
  200.             {
  201.                 $password $passwordEncoder->encodePassword($user$formreset->getData()['plainPassword']);
  202.                 $user->setPassword($password);
  204.                 // 4) save the User!
  205.                 $entityManager $this->getDoctrine()->getManager();
  206.                 $entityManager->persist($user);
  207.                 $entityManager->flush();
  209.                 //remove the resetpasswordrequest
  210.                 $entityManager->remove($resetpassword);
  211.                 $entityManager->flush();
  213.                 return $this->render('security/resetpasswordconfirmation.html.twig', [
  214.                     'passwordchanged' => true,
  215.                 ]);
  216.             }
  217.         }
  218.         if($formreset->isSubmitted() && !$formreset->isValid())
  219.         {
  220.             foreach($formreset->getErrors(true) as $error)
  221.                 $this->addFlash('danger'"(".$error->getOrigin()->getName().") ".$error->getMessage());
  222.             return $this->redirect($request->getUri());
  223.         }
  225.         return $this->render('security/resetpassword.html.twig', [
  226.             'formreset' => $formreset->createView(),
  227.         ]);
  228.     }
  229.     /**
  230.      * @Route ("/security/account/removerole/{role}/{userid}", name="app_removeuserrole")
  231.      */
  232.     public function RemoveRoleFromUser(string $roleint $userid)
  233.     {
  234.         $this->denyAccessUnlessGranted('ROLE_ADMIN');
  236.         $user$this->getDoctrine()->getRepository(CBRCUser::class)->find($userid);
  237.         if(!$user)
  238.             throw new NotFoundHttpException();
  240.         $roles $user->getRoles();
  242.         if (($key array_search($role$roles)) !== false) {
  243.             unset($roles[$key]);
  244.         }
  246.         $user->setRoles($roles);
  248.         $em $this->getDoctrine()->getManager();
  249.         $em->persist($user);
  250.         $em->flush();
  252.         $this->addFlash('success''Les accès ont été retirés à l\'utilisateur');
  254.         return $this->redirectToRoute('app_accessmanager');
  255.     }
  257.     /**
  258.      * @Route ("/security/account/superadmin/setdefault", name="app_superadmin_setdefault")
  259.      */
  260.     public function SetDefaultSuperAdmin(Request $request): \Symfony\Component\HttpFoundation\RedirectResponse
  261.     {
  262.         $this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');
  264.         //Check if there is an role_super_admin in the database
  265.         $userrepository =$this->getDoctrine()->getRepository(CBRCUser::class);
  266.         $superadmins $userrepository->findByRole('ROLE_SUPER_ADMIN');
  268.         if(count($superadmins)<=1)
  269.         {
  270.             //set the first user
  271.             $firstuser $userrepository->findFirst();
  273.             $firstuser->setRoles(array('ROLE_SUPER_ADMIN'));
  275.             $entityManager $this->getDoctrine()->getManager();
  276.             $entityManager->persist($firstuser);
  277.             $entityManager->flush();
  279.             $this->addFlash('primary''Super admin role add default');
  280.         }
  282.         return $this->redirectToRoute('account');
  284.     }
  286.     /**
  287.      * @Route ("/security/account/superadmin/add/{email}", name="app_superadmin_add")
  288.      */
  289.     public function AddSuperAdmin($emailRequest $request): \Symfony\Component\HttpFoundation\RedirectResponse
  290.     {
  291.         $this->denyAccessUnlessGranted('ROLE_SUPER_ADMIN');
  293.         //Check if there is an role_super_admin in the database
  294.         $user =$this->getDoctrine()->getRepository(CBRCUser::class)->findOneBy(['email'=>$email]);
  296.         if($user!=null)
  297.         {
  298.             //set the first user
  300.             $user->setRoles(array('ROLE_SUPER_ADMIN'));
  302.             $entityManager $this->getDoctrine()->getManager();
  303.             $entityManager->persist($user);
  304.             $entityManager->flush();
  306.             $this->addFlash('primary''Super admin role add');
  307.         }
  309.         return $this->redirectToRoute('account');
  311.     }
  313.     /**
  314.      * @Route ("/security/account/superadmin/remove/{email}", name="app_superadmin_remove")
  315.      */
  316.     public function RemoveSuperAdmin($emailRequest $request): \Symfony\Component\HttpFoundation\RedirectResponse
  317.     {
  318.         $this->denyAccessUnlessGranted('ROLE_SUPER_ADMIN');
  320.         //Check if there is an role_super_admin in the database
  321.         $user =$this->getDoctrine()->getRepository(CBRCUser::class)->findOneBy(['email'=>$email]);
  323.         if($user!=null)
  324.         {
  325.             //set the first user
  327.             $user->setRoles(array(''));
  329.             $entityManager $this->getDoctrine()->getManager();
  330.             $entityManager->persist($user);
  331.             $entityManager->flush();
  333.             $this->addFlash('primary''Super admin role remove');
  334.         }
  336.         return $this->redirectToRoute('account');
  337.     }
  339.     private function ClearUserResetPassword(CBRCUser $user)
  340.     {
  341.         //get bfreset from user id
  342.         $resetpassword $this->getDoctrine()->getRepository(CBRCResetPassword::class)->findOneBy(['user'=>$user]);
  344.         if($resetpassword!=null)
  345.         {
  346.             $entityManager $this->getDoctrine()->getManager();
  347.             $entityManager->remove($resetpassword);
  348.             $entityManager->flush();
  349.         }
  351.     }
  353.     private function GetUniqueToken()
  354.     {
  355.         $randomstring="";
  356.         $unique=false;
  358.         $resetrepository $this->getDoctrine()->getRepository(CBRCResetPassword::class);
  360.         while(!$unique)
  361.         {
  362.             $randomstring Secure::GenerateKey(20);
  364.             $resetpassword $resetrepository->findOneBy(array('token'=>$randomstring));
  366.             $unique=($resetpassword==null);
  367.         }
  369.         return $randomstring;
  370.     }
  372. }