src/UI/WebBundle/Controller/Security/SecurityController.php line 93

Open in your IDE?
  1. <?php
  3. namespace Whater\UI\WebBundle\Controller\Security;
  5. use Whater\UI\WebBundle\Controller\AbstractBusController;
  6. use Whater\Infrastructure\SecurityBundle\Form\Type\LoginType;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Symfony\Component\Security\Core\Security;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\Routing\Annotation\Route;
  11. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  12. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  13. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  14. use Symfony\Component\Security\Http\SecurityEvents;
  15. use Whater\Application\UseCase\Security\CommandRequest\LoginCommand;
  16. use Whater\Application\UseCase\Security\CommandRequest\ForgotPasswordCommand;
  17. use Whater\Infrastructure\SecurityBundle\Form\Type\ForgotPaswordType;
  18. use Whater\Infrastructure\SecurityBundle\Form\Type\ResetPaswordType;
  19. use Whater\Application\UseCase\Security\CommandRequest\ResetPasswordCommand;
  20. use Whater\Application\UseCase\Security\CommandRequest\SignupCommand;
  21. use Whater\Domain\User\Exception\UserNotFoundException;
  22. use Whater\Domain\User\Exception\ResetTokenExpiredException;
  23. use Whater\Application\UseCase\User\CommandRequest\GetUserByUsernameCommand;
  24. use Whater\Domain\Security\Exception\InvalidUsernameException;
  25. use Whater\Infrastructure\SecurityBundle\Form\Type\SignupType;
  26. use Whater\Infrastructure\SecurityBundle\Security\Model\Auth;
  28. /**
  29. * @Route("")
  30. */
  31. class SecurityController extends AbstractBusController
  32. {
  33. /**
  34. * @Route("/login", name="web_login", defaults={"_format" = "html"})
  35. */
  36. public function loginAction(Request $request)
  37. {
  38. // If user is authenticated redirect to user dashboard
  39. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  40. return new RedirectResponse($this->router()->generate('web_app_user_dashboard'));
  41. }
  43. $targetPath = $request->get('_target_path');
  44. $form = $this->getFormFactory()->create(LoginType::class, LoginCommand::convertToDTO(), array(
  45. 'action' => $this->router()->generate('web_login_check', array('_target_path' => $targetPath), true),
  46. 'method' => 'POST',
  47. 'csrf_protection' => true
  48. ));
  50. $session = $request->getSession();
  52. if ($request->attributes->has(Security::AUTHENTICATION_ERROR)) {
  53. $error = $request->attributes->get(Security::AUTHENTICATION_ERROR);
  54. } elseif (null !== $session && $session->has(Security::AUTHENTICATION_ERROR)) {
  55. $error = $session->get(Security::AUTHENTICATION_ERROR);
  56. $session->remove(Security::AUTHENTICATION_ERROR);
  57. } else {
  58. $error = null;
  59. }
  60. if (!$error instanceof AuthenticationException) {
  61. $error = null;
  62. }
  64. if (!empty($error)) {
  65. $this->setFlash('error', $this->translator()->trans($error->getMessageKey(), $error->getMessageData(), 'security'));
  66. }
  68. return $this->render('Security/login.html.twig', array('form' => $form->createView()));
  69. }
  71. /**
  72. * @Route("/login_check", name="web_login_check", defaults={"_format" = "html"})
  73. */
  74. public function loginCheckAction(Request $request)
  75. {
  76. throw new \RuntimeException('You must configure the check path to be handled by the firewall using form_login in your security firewall configuration.');
  77. }
  79. /**
  80. * @Route("/logout", name="web_logout", defaults={"_format" = "html"})
  81. */
  82. public function logoutAction()
  83. {
  84. throw new \RuntimeException('You must activate the logout in your security firewall configuration.');
  85. }
  87. /**
  88. * @Route("/forgot_password", name="web_forgot_password", defaults={"_format" = "html"})
  89. */
  90. public function forgotPasswordAction(Request $request)
  91. {
  92. // If user is authenticated redirect to user dashboard
  93. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  94. return new RedirectResponse($this->router()->generate('web_init'));
  95. }
  97. $form = $this->getFormFactory()->create(ForgotPaswordType::class, ForgotPasswordCommand::convertToDTO(), array(
  98. 'action' => $this->router()->generate('web_forgot_password', array(), true),
  99. 'method' => 'POST',
  100. 'csrf_protection' => true
  101. ));
  103. if ('POST' === $request->getMethod()) {
  104. $form->handleRequest($request);
  105. $error = '';
  106. if ($form->isSubmitted() && $form->isValid()) {
  107. try {
  108. $this->handle(ForgotPasswordCommand::fromDTO($form->getData()));
  110. $this->setFlash('success', $this->translator()->trans('web.security.forgot_password.success'));
  111. } catch (UserNotFoundException $e) {
  112. $this->setFlash('error', $this->translator()->trans('web.security.forgot_password.user_not_found'));
  113. }
  114. } else {
  115. $this->setFlash('error', $this->translator()->trans('web.security.forgot_password.error'));
  116. }
  117. }
  119. return $this->render(
  120. 'Security/forgot_password.html.twig',
  121. array('form' => $form->createView())
  122. );
  123. }
  125. /**
  126. * @Route("/reset_password/{resetToken}", name="web_reset_password", defaults={"_format" = "html"})
  127. */
  128. public function forgotPasswordLandingAction(Request $request, string $resetToken)
  129. {
  130. // If user is authenticated redirect to user dashboard
  131. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  132. return new RedirectResponse($this->router()->generate('web_init'));
  133. }
  135. $form = $this->getFormFactory()->create(ResetPaswordType::class, ResetPasswordCommand::convertToDTO(), array(
  136. 'action' => $this->router()->generate(
  137. 'web_reset_password',
  138. array(
  139. 'resetToken' => $resetToken
  140. ),
  141. true
  142. ),
  143. 'method' => 'POST',
  144. 'csrf_protection' => true,
  145. 'resetToken' => $resetToken
  146. ));
  148. if ('POST' === $request->getMethod()) {
  149. $form->handleRequest($request);
  151. if ($form->isSubmitted() && $form->isValid()) {
  152. try {
  153. $username = $this->handle(ResetPasswordCommand::fromDTO($form->getData()));
  154. $user = $this->handle(new GetUserByUsernameCommand($username));
  156. //Autenticate and go to dashboard
  157. $token = new UsernamePasswordToken(new Auth($user), null, "main", $user->rolesAsArray());
  158. $this->tokenStorage()->setToken($token); //now the user is logged in
  159. $this->session()->set('_security_main', serialize($token));
  160. return new RedirectResponse($this->router()->generate('web_init'));
  161. } catch (ResetTokenExpiredException $e) {
  162. $this->setFlash('error', $this->translator()->trans('web.security.reset_password.invalid_token'));
  163. } catch (UserNotFoundException $e) {
  164. $this->setFlash('error', $this->translator()->trans('web.security.reset_password.user_not_found'));
  165. }
  166. } else {
  167. $this->setFlash('error', $this->translator()->trans('web.security.reset_password.error'));
  168. }
  169. }
  171. return $this->render(
  172. 'Security/reset_password.html.twig',
  173. array('form' => $form->createView())
  174. );
  175. }
  177. /**
  178. * @Route("/signup", name="web_signup", defaults={"_format" = "html"})
  179. */
  180. public function signupUserAction(Request $request)
  181. {
  183. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  184. return new RedirectResponse($this->router()->generate('web_init'));
  185. }
  187. $form = $this->getFormFactory()->create(SignupType::class, SignupCommand::convertToDTO(), array(
  188. 'method' => 'POST',
  189. 'csrf_protection' => true
  190. ));
  192. if ('POST' === $request->getMethod()) {
  193. $form->handleRequest($request);
  195. if ($form->isSubmitted() && $form->isValid()) {
  196. try {
  197. $user = $this->handle(SignupCommand::fromDTO($form->getData()));
  198. //Autenticate and go to dashboard
  199. $roles = ['ROLE_USER'];
  200. foreach ($user->roles() as $role) {
  201. $roles[] = $role->roleType();
  202. }
  203. $token = new UsernamePasswordToken(new Auth($user), null, "main", $roles);
  204. $this->tokenStorage()->setToken($token); //now the user is logged in
  205. $this->session()->set('_security_main', serialize($token));
  206. $loginEvent = new InteractiveLoginEvent($request, $token);
  207. $this->eventDispatcher()->dispatch($loginEvent, SecurityEvents::INTERACTIVE_LOGIN);
  209. $this->setFlash('info', $this->translator()->trans('web.security.signup.success'));
  210. return new RedirectResponse($this->router()->generate('web_app_whater_map'));
  211. } catch (InvalidUsernameException $e) {
  212. $this->setFlash('error', $this->translator()->trans('web.security.signup.invalid_username'));
  213. } catch (\Exception $e) {
  214. $this->logger()->error($e->getMessage());
  215. $this->setFlash('error', $this->translator()->trans('web.security.signup.exception'));
  216. }
  217. } else {
  218. $this->setFlash('error', $this->translator()->trans('web.security.signup.error'));
  219. }
  220. }
  221. $referralCode = $request->get('referral_code');
  223. $response = $this->render(
  224. 'Security/signup.html.twig',
  225. array(
  226. 'form' => $form->createView(),
  227. 'referralCode' => $referralCode
  228. )
  229. );
  230. return $response;
  231. }
  232. }