src/Controller/SecurityController.php line 43

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\User;
  6. use App\Form\Security\ForgotPasswordForm;
  7. use App\Form\Security\ResetPasswordForm;
  8. use App\Form\Security\SignInForm;
  9. use App\Service\TokenGenerator;
  10. use Carbon\Carbon;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Doctrine\ORM\NonUniqueResultException;
  13. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  18. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  19. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  20. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  23. /**
  24.  * Class SecurityController.
  25.  *
  26.  * @Route("", name="security")
  27.  */
  28. class SecurityController extends AbstractController
  29. {
  30.     /**
  31.      * @var int
  32.      */
  33.     private $lockoutPolicy;
  35.     public function __construct(int $lockoutPolicy)
  36.     {
  37.         $this->lockoutPolicy $lockoutPolicy;
  38.     }
  40.     /**
  41.      * @Route("/sign-in", name=".sign-in")
  42.      */
  43.     public function index(AuthenticationUtils $authenticationUtils): Response
  44.     {
  45.         $utils $authenticationUtils;
  46.         $error $utils->getLastAuthenticationError();
  47.         $last $utils->getLastUsername();
  48.         $attempts 0;
  49.         $user $this->getDoctrine()->getRepository(User::class)->findUser($last);
  50.         if ($user instanceof User) {
  51.             $attempts $this->lockoutPolicy $user->getFailures();
  52.             if (=== $attempts) {
  53.                 $attempts null;
  54.             }
  55.             if (=== $attempts) {
  56.                 $error = new CustomUserMessageAuthenticationException(
  57.                     'account.locked'
  58.                 );
  59.             }
  60.         }
  62.         $form $this->createForm(SignInForm::class, [
  63.             '_username' => $last,
  64.         ]);
  66.         return $this->render('security/sign-in.html.twig', [
  67.             'form' => $form->createView(),
  68.             'error' => $error,
  69.             'attempts' => $attempts,
  70.         ]);
  71.     }
  73.     /**
  74.      * @Route("/forgot-password", name=".forgot-password")
  75.      */
  76.     public function forgotPasswordAction(Request $requestEntityManagerInterface $emTokenGenerator $generator)
  77.     {
  78.         $form $this->createForm(ForgotPasswordForm::class);
  79.         $form->handleRequest($request);
  80.         if ($form->isSubmitted()) {
  81.             $email $form->get('email')->getData();
  82.             $this->addFlash('success''Please check your mailbox to continue.');
  83.             $user $em->getRepository(User::class)->findUser($email);
  84.             if ($user instanceof User && !$user->isRemoved() && $user->getFailures() < $this->lockoutPolicy) {
  85.                 $generator->generate($user);
  86.             }
  88.             return $this->redirectToRoute('security.sign-in');
  89.         }
  91.         return $this->render('security/forgot-password.html.twig', [
  92.             'form' => $form->createView(),
  93.         ]);
  94.     }
  96.     /**
  97.      * @Route("/{token}/{email}/reset-password", name=".reset-password")
  98.      *
  99.      * @return Response
  100.      *
  101.      * @throws NonUniqueResultException
  102.      */
  103.     public function resetPasswordAction(Request $requestEntityManagerInterface $emTokenStorageInterface $tokenStorageEventDispatcherInterface $eventDispatcherstring $emailstring $token)
  104.     {
  105.         $now Carbon::now();
  106.         /** @var User $user */
  107.         $user $em->createQueryBuilder()
  108.             ->from(User::class, 'user')
  109.             ->select('user')
  110.             ->where('user.email = :email')
  111.             ->andWhere('user.token.string = :token')
  112.             ->andWhere('user.token.expires >= :now')
  113.             ->andWhere('user.removed = FALSE')
  114.             ->andWhere('user.failures < :lockout')
  115.             ->setParameters(['email' => $email'token' => $token'now' => $now'lockout' => $this->lockoutPolicy])
  116.             ->setMaxResults(1)
  117.             ->getQuery()->getOneOrNullResult();
  118.         if (!$user instanceof User) {
  119.             throw $this->createNotFoundException();
  120.         }
  122.         $form $this->createForm(ResetPasswordForm::class);
  123.         $form->handleRequest($request);
  124.         if ($form->isSubmitted() && $form->isValid()) {
  125.             $password $form->get('password')->getData();
  126.             $user->setPlainPassword($password);
  127.             $user->getToken()->reset();
  128.             $em->flush();
  129.             $token = new UsernamePasswordToken($user$password'main'$user->getRoles());
  130.             $tokenStorage->setToken($token);
  131.             $event = new InteractiveLoginEvent($request$token);
  132.             $eventDispatcher->dispatch($event);
  134.             $this->addFlash('success''Your password was successfully updated.');
  136.             return $this->redirectToRoute('dashboard');
  137.         }
  139.         return $this->render('security/reset-password.html.twig', [
  140.             'form' => $form->createView(),
  141.             'email' => $email,
  142.             'token' => $token,
  143.         ]);
  144.     }
  146.     /**
  147.      * @Route("/sign-out", name=".sign-out")
  148.      */
  149.     public function signOutAction()
  150.     {
  151.         throw new \Exception('');
  152.     }
  153. }