src/Controller/SecurityController.php line 40

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Annotation\CmsComponent;
  6. use App\Entity\User;
  7. use App\Form\ProfileType;
  8. use App\Form\UserChangePasswordType;
  9. use App\Form\UserProfileType;
  10. use App\Form\UserType;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  13. use Symfony\Component\Form\Extension\Core\Type\PasswordType;
  14. use Symfony\Component\Form\Extension\Core\Type\RepeatedType;
  15. use Symfony\Component\Form\Extension\Core\Type\TextType;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. class SecurityController extends AbstractController
  22. {
  23.     public function __construct(protected EntityManagerInterface $em, protected UserPasswordHasherInterface $hasher) {}
  25.     // //////////////////////////////////
  26.     // CMS USER PAGES
  27.     // ///////////////////////////////////
  29.     #[Route(path'/takeflight/login'name'control_login')]
  30.     public function login(AuthenticationUtils $authenticationUtils): \Symfony\Component\HttpFoundation\Response
  31.     {
  32.         // get the login error if there is one
  33.         $error $authenticationUtils->getLastAuthenticationError();
  34.         if ($error) {
  35.             $this->addFlash('error''Invalid Username or Password');
  36.         }
  37.         // last username entered by the user
  38.         $lastUsername $authenticationUtils->getLastUsername();
  40.         return $this->render('takeflight/login-control.html.twig', [
  41.             'last_username' => $lastUsername,
  42.         ]);
  43.     }
  45.     #[Route(path'/forgot-cms-password'name'forgot_cms_password')]
  46.     public function forgotCMSPassword(Request $request): \Symfony\Component\HttpFoundation\Response
  47.     {
  48.         $error null;
  49.         $data = [];
  50.         $form $this->createFormBuilder($data)
  51.             ->add('email'TextType::class, ['label' => 'Email Address''attr' => ['placeholder' => 'Email']])
  52.             ->getForm()
  53.         ;
  55.         $form->handleRequest($request);
  56.         if ($form->isSubmitted() && $form->isValid()) {
  57.             $data $form->getData();
  59.             $user $this->em->getRepository(User::class)->findOneByEmail($data['email']);
  60.             if ($user) {
  61.                 $url_encrypt substr(md5(random_int(0999).'5h0rtt3rmm3m0ry1055?'.random_int(0999)), 020);
  62.                 $user->setEmailresetkey($url_encrypt);
  63.                 $this->em->persist($user);
  64.                 $this->em->flush();
  66.                 $message = (new \Swift_Message())
  67.                     ->setSubject('CMS Password reset request for '.$this->getParameter('sitename'))
  68.                     ->setFrom($this->getParameter('email_norely'))
  69.                     ->setTo($user->getEmail())
  70.                     ->setBody(
  71.                         $this->renderView('takeflight/email-password-reset.html.twig', [
  72.                             'url_encrypt' => $url_encrypt,
  73.                             'user' => $user,
  74.                         ]),
  75.                         'text/html'
  76.                     )
  77.                 ;
  79.                 $this->get('mailer')->send($message);
  80.             }
  82.             $this->addFlash('success''If an account is found with that email address then instructions to reset your password will be sent ');
  83.         }
  85.         return $this->render('takeflight/admin-forgot.html.twig', [
  86.             'form' => $form->createView(),
  87.             'error' => $error,
  88.         ]);
  89.     }
  91.     #[Route(path'/password-cms-reset/{url_encrypt}'name'password_cms_reset')]
  92.     public function passwordCMSReset(Request $requestmixed $url_encrypt)
  93.     {
  94.         $user $this->em->getRepository(User::class)->findOneByEmailresetkey($url_encrypt);
  95.         if (!$user) {
  96.             $this->addFlash('error''Email reset key not valid or has expired - please try to reset your password again.');
  98.             return $this->redirectToRoute('forgot_password');
  99.         }
  100.         if ($user) {
  101.             $error null;
  102.             $data = [];
  103.             $form $this->createFormBuilder($data)
  104.                 ->add('plainPassword'RepeatedType::class, [
  105.                     'type' => PasswordType::class,
  106.                     'invalid_message' => 'The password fields must match.',
  107.                     'first_options' => ['label' => 'Password'],
  108.                     'second_options' => ['label' => 'Repeat Password'],
  109.                 ])
  110.                 ->getForm()
  111.             ;
  113.             $form->handleRequest($request);
  114.             if ($form->isSubmitted() && $form->isValid()) {
  115.                 $data $form->getData();
  117.                 $password $this->hasher->hashPassword($user$data['plainPassword']);
  118.                 $user->setEmailresetkey(null);
  119.                 $user->setPassword($password);
  120.                 $this->em->persist($user);
  121.                 $this->em->flush();
  122.                 $this->addFlash('success''Your password has been reset');
  124.                 return $this->redirectToRoute('control_login');
  125.             }
  127.             return $this->render('takeflight/admin-reset.html.twig', [
  128.                 'form' => $form->createView(),
  129.                 'error' => $error,
  130.                 'url_encrypt' => $url_encrypt,
  131.             ]);
  132.         }
  133.     }
  135.     #[Route(path'/takeflight/user/create'name'admin_create')]
  136.     public function adminCreate(Request $request)
  137.     {
  138.         $user = new User();
  139.         $form $this->createForm(UserType::class, $user);
  141.         $form->handleRequest($request);
  142.         if ($form->isSubmitted() && $form->isValid()) {
  143.             $password $this->hasher->hashPassword($user$user->getPlainPassword());
  144.             $user->setPassword($password);
  145.             $user->setRoles([
  146.                 'ROLE_ADMIN',
  147.             ]);
  149.             $this->em->persist($user);
  150.             $this->em->flush();
  151.             $this->addFlash('success''User Created Successfully');
  153.             return $this->redirectToRoute('control_dash');
  154.         }
  156.         return $this->render('takeflight/admin-create.html.twig', [
  157.             'form' => $form->createView(),
  158.         ]);
  159.     }
  161.     #[Route(path'/takeflight/user/profile'name'control_profile')]
  162.     public function adminProfile(Request $request)
  163.     {
  164.         // 1) build the form
  165.         $user $this->getUser();
  166.         $form $this->createForm(ProfileType::class, $user);
  168.         // 2) handle the submit (will only happen on POST)
  169.         $form->handleRequest($request);
  170.         if ($form->isSubmitted() && $form->isValid()) {
  171.             // $user->resizeImage($this->get('image.handling'));
  173.             $this->em->persist($user);
  174.             $this->em->flush();
  175.             $this->addFlash('success''Profile Updated Successfully');
  177.             return $this->redirectToRoute('control_profile');
  178.         }
  180.         return $this->render('takeflight/admin-profile.html.twig', [
  181.             'form' => $form->createView(),
  182.             'user' => $user,
  183.         ]);
  184.     }
  186.     #[Route(path'/takeflight/admin_check'name'control_check')]
  187.     public function adminCheck() {}
  189.     // route is handled by the Security system
  190.     // //////////////////////////////////
  191.     // MEMBER PAGES
  192.     // ///////////////////////////////////
  193.     /**
  194.      * @CmsComponent("User Login", active=false, routeName="member_login")
  195.      */
  196.     #[Route(path'/member-login'name'member_login')]
  197.     public function loginMember(): \Symfony\Component\HttpFoundation\Response
  198.     {
  199.         $authenticationUtils $this->get('security.authentication_utils');
  200.         // get the login error if there is one
  201.         $error $authenticationUtils->getLastAuthenticationError();
  202.         // last username entered by the user
  203.         $lastUsername $authenticationUtils->getLastUsername();
  205.         return $this->render('@theme/members/members-login.html.twig', [
  206.             'last_username' => $lastUsername,
  207.             'error' => $error,
  208.         ]);
  209.     }
  211.     #[Route(path'/members/member_check'name'member_check')]
  212.     public function memberCheck() {}
  214.     // route is handled by the Security system
  215.     /**
  216.      * @CmsComponent("User Register", active=false, routeName="member_register")
  217.      */
  218.     #[Route(path'/member-register'name'member_register')]
  219.     public function userRegister(Request $request)
  220.     {
  221.         $user = new User();
  222.         $form $this->createForm(UserType::class, $user);
  224.         $form->handleRequest($request);
  225.         if ($form->isSubmitted() && $form->isValid()) {
  226.             $password $this->hasher->hashPassword($user$user->getPlainPassword());
  227.             $user->setPassword($password);
  228.             $user->setRoles(['ROLE_USER']);
  230.             $this->em->persist($user);
  231.             $this->em->flush();
  232.             $this->addFlash('success''User Created Successfully');
  234.             return $this->redirect('/');
  235.         }
  237.         return $this->render('@theme/members/members-register.html.twig', [
  238.             'form' => $form->createView(),
  239.         ]);
  240.     }
  242.     /**
  243.      * @CmsComponent("Member Password Reset", active=false, routeName="member_forgot_password")
  244.      */
  245.     #[Route(path'/member-forgot-password'name'member_forgot_password')]
  246.     public function forgotPassword(Request $request): \Symfony\Component\HttpFoundation\Response
  247.     {
  248.         $error null;
  249.         $data = [];
  250.         $form $this->createFormBuilder($data)
  251.             ->add('email'TextType::class, ['label' => 'Email Address''attr' => ['placeholder' => 'Email']])
  252.             ->getForm()
  253.         ;
  255.         $form->handleRequest($request);
  256.         if ($form->isSubmitted() && $form->isValid()) {
  257.             $data $form->getData();
  259.             $user $this->em->getRepository(User::class)->findOneByEmail($data['email']);
  260.             if (!$user) {
  261.                 $this->addFlash('error''Email Address not found');
  262.             }
  263.             if ($user) {
  264.                 $url_encrypt substr(md5(random_int(0999).'5h0rtt3rmm3m0ry1055?'.random_int(0999)), 020);
  265.                 $user->setEmailresetkey($url_encrypt);
  266.                 $this->em->persist($user);
  267.                 $this->em->flush();
  269.                 $resetUrl '/member-password-reset';
  271.                 $message = (new \Swift_Message())
  272.                     ->setSubject('Password reset request for '.$this->getParameter('sitename'))
  273.                     ->setFrom($this->getParameter('email_norely'))
  274.                     ->setTo($user->getEmail())
  275.                     ->setBody(
  276.                         $this->renderView('@theme/emails/forgot-password.html.twig', [
  277.                             'resetUrl' => $resetUrl,
  278.                             'url_encrypt' => $url_encrypt,
  279.                             'user' => $user,
  280.                         ]),
  281.                         'text/html'
  282.                     )
  283.                 ;
  285.                 $this->get('mailer')->send($message);
  287.                 $this->addFlash('success''An email has been sent with instructions to reset your password');
  288.             }
  289.             // return $this->redirect('/');
  290.         }
  292.         return $this->render('@theme/members/members-forgot.html.twig', [
  293.             'form' => $form->createView(),
  294.             'error' => $error,
  295.         ]);
  296.     }
  298.     #[Route(path'/member-password-reset/{url_encrypt}'name'member_password_reset')]
  299.     public function passwordReset(Request $requestmixed $url_encrypt)
  300.     {
  301.         $user $this->em->getRepository(User::class)->findOneByEmailresetkey($url_encrypt);
  302.         if (!$user) {
  303.             $this->addFlash('error''Email reset key not valid or has expired - please try to reset your password again.');
  305.             return $this->redirectToRoute('forgot_password');
  306.         }
  307.         if ($user) {
  308.             $error null;
  309.             $data = [];
  310.             $form $this->createFormBuilder($data)
  311.                 ->add('plainPassword'RepeatedType::class, [
  312.                     'type' => PasswordType::class,
  313.                     'invalid_message' => 'The password fields must match.',
  314.                     'first_options' => ['label' => 'Password'],
  315.                     'second_options' => ['label' => 'Repeat Password'],
  316.                 ])
  317.                 ->getForm()
  318.             ;
  320.             $form->handleRequest($request);
  321.             if ($form->isSubmitted() && $form->isValid()) {
  322.                 $data $form->getData();
  324.                 $password $this->hasher->hashPassword($user$data['plainPassword']);
  325.                 $user->setEmailresetkey(null);
  326.                 $user->setPassword($password);
  327.                 $this->em->persist($user);
  328.                 $this->em->flush();
  329.                 $this->addFlash('success''Your password has been reset');
  331.                 return $this->redirectToRoute('member_login');
  332.             }
  334.             return $this->render('@theme/members/members-reset.html.twig', [
  335.                 'form' => $form->createView(),
  336.                 'error' => $error,
  337.                 'url_encrypt' => $url_encrypt,
  338.             ]);
  339.         }
  340.     }
  342.     #[Route(path'/member/profile'name'member_profile')]
  343.     public function memberProfile(Request $request)
  344.     {
  345.         $user $this->getUser();
  346.         $form $this->createForm(ProfileType::class, $user);
  348.         $form->handleRequest($request);
  349.         if ($form->isSubmitted() && $form->isValid()) {
  350.             $this->em->persist($user);
  351.             $this->em->flush();
  352.             $this->addFlash('success''Profile Updated Successfully');
  354.             return $this->redirectToRoute('member_profile');
  355.         }
  357.         return $this->render('@theme/members/members-profile.html.twig', [
  358.             'form' => $form->createView(),
  359.             'user' => $user,
  360.         ]);
  361.     }
  363.     // /////////////////////////////////////////
  364.     // SECONDARY USER (MEMBER) PAGES : Seperated from admin and member users!
  365.     // Uses a completly different firewall setup
  366.     // Only used in very few circumstances - uses a seperate user table.
  367.     // I took the liberty to setup multiple security providers just in case we
  368.     // ever needed them - i think theres only been a couple of
  369.     // instances where this feature could of been used.
  370.     // THIS IS NOT FOR CMS USERS SO DONT MIX THEM WITH ADMIN OR MEMBER USERS!
  371.     //
  372.     // This should only be used for seperate public access to a site,
  373.     // i.e comments section profiles, register-to-access content or shop customers
  374.     // USE ONLY FOR NON CMS USERS - (due to foreign key constraints)
  375.     // ////////////////////////////////////////
  377.     #[Route(path'/user/user-check'name'user_login_check')]
  378.     public function loginCheck() {}
  380.     #[Route(path'/user/profile'name'user_profile')]
  381.     public function userProfile(Request $request)
  382.     {
  383.         $user $this->getUser();
  384.         $form $this->createForm(UserProfileType::class, $user);
  386.         $form->handleRequest($request);
  387.         if ($form->isSubmitted() && $form->isValid()) {
  388.             $this->em->persist($user);
  389.             $this->em->flush();
  390.             $this->addFlash('success''Profile Updated Successfully');
  392.             return $this->redirectToRoute('user_profile');
  393.         }
  395.         return $this->render('@theme/user/user-profile.html.twig', [
  396.             'form' => $form->createView(),
  397.             'user' => $user,
  398.         ]);
  399.     }
  401.     #[Route(path'/user/edit-password'name'user_edit_password')]
  402.     public function userEditPassword(Request $requestUserPasswordHasherInterface $hasher)
  403.     {
  404.         $user $this->getUser();
  405.         $editForm $this->createForm(UserChangePasswordType::class, $user);
  406.         $editForm->handleRequest($request);
  408.         if ($editForm->isSubmitted()) {
  409.             if ($editForm->isValid()) {
  410.                 $data $editForm->getData();
  411.                 $password $hasher->hashPassword($user$data->getPlainPassword());
  412.                 // @var User $user
  413.                 $user->setEmailresetkey(null);
  414.                 $user->setPassword($password);
  415.                 $this->em->persist($user);
  416.                 $this->em->flush();
  417.                 $this->addFlash('success''Success - User Credentials updated');
  419.                 return $this->redirectToRoute('user_profile');
  420.             }
  421.             $this->addFlash('error''Error - User not saved');
  422.         }
  424.         return $this->render('@theme/user/user-password.html.twig', [
  425.             'user' => $user,
  426.             'form' => $editForm->createView(),
  427.         ]);
  428.     }
  430.     #[Route(path'/logout'name'logout')]
  431.     public function logout() {}
  433.     // route is handled by the Security system
  434. }