src/Controller/SecurityController.php line 37

Open in your IDE?
  1. <?php
  2. /*
  3. * Ce fichier est la propriété de l'association (c) Projets Métiers
  4. *
  5. * (c) crée par Jean-Marc CATALA <jeanmmarccatala@gmail.com>
  6. *
  7. */
  9. namespace App\Controller;
  11. use App\Entity\User;
  12. use App\Form\RegistrationFormType;
  13. use App\Form\ResetPassType;
  14. use App\Repository\UserRepository;
  15. use App\Service\EmailService;
  16. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  17. use Symfony\Component\HttpFoundation\Response;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  20. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use App\Security\PwdFormAuthenticator;
  23. use Symfony\Component\Security\Guard\GuardAuthenticatorHandler;
  25. use function bin2hex;
  26. use function dump;
  27. use function random_bytes;
  29. class SecurityController extends AbstractController
  30. {
  31. /**
  32. * @Route("/login", name="app_login")
  33. */
  34. public function login(AuthenticationUtils $authenticationUtils)
  35. {
  36. // get the login error if there is one
  37. $error = $authenticationUtils->getLastAuthenticationError();
  39. // last username entered by the user
  40. $lastUsername = $authenticationUtils->getLastUsername();
  42. return $this->render('security/login.html.twig', [
  43. 'last_username' => $lastUsername,
  44. 'error' => $error,
  45. ]);
  46. }
  48. /**
  49. * @Route("/logout", name="app_logout")
  50. */
  51. public function logout()
  52. {
  53. throw new \Exception('Interception! - try/catch');
  54. }
  57. /**
  58. * @Route("/recuperation-mot-de-passe", name="app_forgotten_password")
  59. */
  60. public function oubliPass(Request $request, UserRepository $users, EmailService $emailService, UserPasswordEncoderInterface $passwordEncoder
  61. ): Response
  62. {
  63. // On initialise le formulaire
  64. $form = $this->createForm(ResetPassType::class);
  66. // On traite le formulaire
  67. $form->handleRequest($request);
  69. // Si le formulaire est valide
  70. if ($form->isSubmitted() && $form->isValid()) {
  71. // On récupère les données
  72. $donnees = $form->getData();
  74. // On cherche un utilisateur ayant cet e-mail
  75. $user = $users->findOneByEmail($donnees['email']);
  77. // Si l'utilisateur n'existe pas
  78. if ($user === null) {
  79. // On envoie une alerte disant que l'adresse e-mail est inconnue
  80. $this->addFlash('danger', 'Cette adresse e-mail est inconnue');
  82. // On retourne sur la page de connexion
  83. return $this->redirectToRoute('app_login');
  84. }
  86. // On génère un token
  87. $token = $this->newToken() ;
  89. // On essaie d'écrire le token en base de données
  91. $user->setToken($this->newToken());
  92. $entityManager = $this->getDoctrine()->getManager();
  93. $entityManager->persist($user);
  96. $entityManager->flush();
  99. // On génère l'e-mail
  101. $emailService->sendEmail([
  102. 'to' => $user->getEmail(),
  103. 'toName' => $user->getName(),
  104. 'template' => 'emails/recup.email.twig',
  105. 'subject' => 'Récuperation du mot de passe',
  106. 'context' => [
  107. 'user'=> $user,
  108. ],
  109. ]);
  111. // On crée le message flash de confirmation
  112. $this->addFlash('success', 'E-mail de réinitialisation du mot de passe envoyé !');
  114. // On redirige vers la page de login
  115. return $this->redirectToRoute('app_login');
  116. }
  118. // On envoie le formulaire à la vue
  119. return $this->render('security/forgotten_password.html.twig',['emailForm' => $form->createView()]);
  120. }
  122. public function newToken(){
  123. $bytes = random_bytes(15);
  124. return bin2hex($bytes);
  125. }
  129. /**
  130. * @Route("/register-verification-recup/{email}/{token}", name="app_register_verification_recup")
  131. */
  132. public function verifMailrecup(User $user , GuardAuthenticatorHandler $guardHandler, PwdFormAuthenticator $authenticator, Request $request){
  134. $user->setToken($this->newToken());
  135. $em= $this->getDoctrine()->getManager();
  136. $em->flush();
  138. $this->addFlash('success', 'Vous pouvez maintenant changer votre mot de passe');
  140. return $guardHandler->authenticateUserAndHandleSuccess(
  141. $user,
  142. $request,
  143. $authenticator,
  144. 'main' // firewall name in security.yaml
  145. );
  148. }
  151. /**
  152. * @Route("/after-login", name="after_login")
  153. */
  154. public function afterLogin()
  155. {
  156. return $this->render('security/afterLogin.html.twig');
  157. }
  160. }