src/Controller/SecurityController.php line 47

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use ContainerOt7jKaL\getConsole_Command_FormDebugService;
  6. use Firebase\JWT\JWT;
  7. use LogicException;
  8. use Swift_Mailer;
  9. use Swift_Message;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\HttpFoundation\Cookie;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  18. use Symfony\Contracts\Translation\TranslatorInterface;
  19. use function strlen;
  21. class SecurityController extends AbstractController
  22. {
  23.     #[Route(path'/login'name'app_login')]
  24.     public function login(Request $requestAuthenticationUtils $authenticationUtilsSessionInterface $session): Response
  25.     {
  27.         if ($this->getUser()) {
  29.             $url_target_path $request->getSession()->get('_security.main.target_path');
  31.             if (!empty($url_target_path)) {
  32.                 $path $url_target_path;
  33.             } else {
  34.                 $path $this->generateUrl("home");
  35.             }
  37.             $response = new RedirectResponse($path);
  38.             $response->sendHeaders();
  39.             return $response;
  40.         }
  42.         // get the login error if there is one
  43.         $error $authenticationUtils->getLastAuthenticationError();
  45.         // last username entered by the user
  46.         $lastUsername $authenticationUtils->getLastUsername();
  47.         $lastKadh $session->get('_security.last_k_adherent');
  49.         return $this->render('security/login.html.twig', ['last_username' => $lastUsername'last_kadherent' => $lastKadh'error' => $error]);
  50.     }
  52.     #[Route(path'/logout'name'app_logout')]
  53.     public
  54.     function logout(): never
  55.     {
  56.         throw new LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  57.     }
  59.     #[Route(path'/resetting/init-{init}'name'app_first_password')]
  60.     #[Route(path'/resetting/init'name'app_forget_password')]
  61.     public
  62.     function forgetPassword($init false): Response
  63.     {
  64.         return $this->render('security/forget_password.html.twig', [
  65.             'init' => $init
  66.         ]);
  67.     }
  69.     #[Route(path'/resetting/check/{init}'name'reseting_check')]
  70.     public
  71.     function resetCheckAction(Request $requestTranslatorInterface $translatorSwift_Mailer $mailer$init null): Response
  72.     {
  74.         if ($request->isMethod('post') && !empty($request->request->get('_submit'))) {
  76.             $new_datas = [
  77.                 'K_ADHERENT' => $request->request->get('username'),
  78.                 'EMAIL' => $request->request->get('email')
  79.             ];
  81.             $ch curl_init($this->getParameter("auth_url")."/reset-password-token");
  82.             curl_setopt($chCURLOPT_RETURNTRANSFERtrue);
  83.             curl_setopt($chCURLOPT_SSL_VERIFYHOST0);
  84.             curl_setopt($chCURLOPT_SSL_VERIFYPEER0);
  85.             curl_setopt($chCURLOPT_POSTFIELDSjson_encode($new_datas));
  86.             curl_setopt($chCURLOPT_HTTPHEADER, ['Content-Type:application/json']);
  87.             $response curl_exec($ch);
  89.             $response json_decode($responsetrue);
  91.             if ($response['status'] == "200" && !empty($response['user']['TOKEN'])) {
  93.                 if ($response['user']['PAYS'] == "BE" && $response['user']['LANGUE'] == "NL") {
  94.                     $translator->setLocale("nl");
  95.                 }
  97.                 $url_confirmed $request->getHttpHost() . $this->generateUrl("resetting_token_check", ['token' => $response['user']['TOKEN']]);
  99.                 $title = (!is_null($init)) ? $translator->trans("Initialisation de votre mot de passe") : $translator->trans("Réinitialisation de votre mot de passe");
  101.                 $message = (new Swift_Message('[Groupe All] - ' $title))
  102.                     ->setFrom('contact@groupeall.fr')
  103.                     ->setTo($response['user']['EMAIL'])
  104.                     ->setBody(
  105.                         $this->renderView(
  106.                             (!is_null($init)) ? 'security/email/email_first_password.html.twig' 'security/email/email_forget_password.html.twig',
  107.                             ['username' => $response['user']['K_ADHERENT'], "confirmationUrl" => $url_confirmed]
  108.                         ),
  109.                         'text/html'
  110.                     );
  112.                 $mailer->send($message);
  114.                 $this->addFlash('success'$translator->trans('Un e-mail a été envoyé sur votre adresse'));
  115.                 return $this->render('security/forget_password.html.twig', ['init' => $init]);
  116.             } else {
  117.                 $this->addFlash('danger''Identifiants invalides');
  118.                 return $this->render('security/forget_password.html.twig', ['init' => $init]);
  119.             }
  120.         }
  122.         return $this->render('security/forget_password.html.twig');
  123.     }
  125.     /**
  126.      * @param $token
  127.      */
  128.     #[Route(path'/resetting/password-{token}'name'resetting_token_check')]
  129.     public function resettingTokenCheck($token): Response
  130.     {
  131.         $new_datas = [];
  132.         if (isset($token) && !empty($token)) {
  134.             $new_datas['TOKEN'] = $token;
  136.             $ch curl_init($this->getParameter("auth_url")."/reset-password-check-token");
  137.             curl_setopt($chCURLOPT_RETURNTRANSFERtrue);
  138.             curl_setopt($chCURLOPT_SSL_VERIFYHOST0);
  139.             curl_setopt($chCURLOPT_SSL_VERIFYPEER0);
  140.             curl_setopt($chCURLOPT_POSTFIELDSjson_encode($new_datas));
  141.             curl_setopt($chCURLOPT_HTTPHEADER, ['Content-Type:application/json']);
  142.             $response curl_exec($ch);
  144.             $response json_decode($responsetrue);
  146.             if ($response['status'] == 200) {
  147.                 return $this->render('security/password_resetting.html.twig', ['token' => $token]);
  148.             } else {
  149.                 return $this->render('security/password_resetting.html.twig', ['token' => 'Invalid_token']);
  150.             }
  151.         }
  152.     }
  154.     /**
  155.      * @param $token
  156.      */
  157.     #[Route(path'/resetting/resetting-password-{token}'name'resetting_password')]
  158.     public
  159.     function resettingPasswordAction(Request $request$token): Response
  160.     {
  161.         if (!empty($token) && $request->isMethod('post') && !empty($request->request->get('_submit'))) {
  163.             /**
  164.              * Vérifie que le mot de passe choisi réponde aux exigences.
  165.              */
  166.             $errors = [];
  167.             if (!preg_match('#[A-Z]+#'$request->request->get('password_reset'))) {
  168.                 $errors[] = 'Veuillez choisir un mot de passe contenant au moins une majuscule.';
  169.             }
  170.             if (!preg_match('#[0-9]+#'$request->request->get('password_reset'))) {
  171.                 $errors[] = 'Veuillez choisir un mot de passe contenant au moins un chiffre.';
  172.             }
  173.             if (!preg_match('#[()*.!$%@&§]+#'$request->request->get('password_reset'))) {
  174.                 $errors[] = 'Veuillez choisir un mot de passe contenant au moins un caractère spécial parmi ()*.!$%@&§';
  175.             }
  176.             if (strlen($request->request->get('password_reset')) < 10) {
  177.                 $errors[] = 'Veuillez choisir un mot de passe d`\'au moins 10 caractères.';
  178.             }
  179.             if (!preg_match('#^[()*.!$%@&§A-Za-z0-9]*$#'$request->request->get('password_reset'))) {
  180.                 $errors[] = 'Le mot de passe que vous avez choisi contient des caractères non autorisés.';
  181.             }
  182.             if ($request->request->get('password_reset') != $request->request->get('password_reset_repeat')) {
  183.                 $errors[] = 'Le nouveau mot de passe et celui de validation sont différents.';
  184.             }
  186.             /**
  187.              * Retourne les erreurs si il y en a.
  188.              */
  189.             if (!empty($errors)) {
  190.                 return $this->render('security/password_resetting.html.twig', [
  191.                     'token' => $token,
  192.                     'errors' => $errors
  193.                 ]);
  194.             }
  196.             $new_datas = [
  197.                 'TOKEN' => $token,
  198.                 'PWD' => $request->request->get('password_reset')
  199.             ];
  201.             $ch curl_init($this->getParameter("auth_url")."/reset-password");
  202.             curl_setopt($chCURLOPT_RETURNTRANSFERtrue);
  203.             curl_setopt($chCURLOPT_SSL_VERIFYHOST0);
  204.             curl_setopt($chCURLOPT_SSL_VERIFYPEER0);
  205.             curl_setopt($chCURLOPT_POSTFIELDSjson_encode($new_datas));
  206.             curl_setopt($chCURLOPT_HTTPHEADER, ['Content-Type:application/json']);
  207.             $response curl_exec($ch);
  208.             $response json_decode($responsetrue);
  210.             if ($response['status'] == 200) {
  211.                 return $this->render('security/password_resetting.html.twig', ['token' => $token'success' => true]);
  212.             } else {
  213.                 return $this->render('security/password_resetting.html.twig', ['token' => $token'errors' => ['Une erreur est survenue']]);
  214.             }
  215.         }
  217.     }
  219. }