src/Controller/PasswordController.php line 43

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Form\PasswordNewFormType;
  6. use App\Form\PasswordResetEmailFormType;
  7. use App\Form\PasswordResetFormType;
  8. use Carbon\Carbon;
  9. use Pimcore\Model\Document;
  10. use App\Classes\Controller\AbstractFrontController as AbstractFrontController;
  11. use App\Repository\CustomerRepository;
  12. use App\Repository\PasswordRepository;
  13. use App\Service\Contract\RecaptchaValidationServiceInterface;
  14. use Symfony\Component\Form\FormError;
  15. use Symfony\Component\HttpFoundation\RedirectResponse;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  18. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  19. use Symfony\Contracts\Translation\TranslatorInterface;
  21. class PasswordController extends AbstractFrontController
  22. {
  23.     protected $customerRepository;
  25.     protected $passwordRepository;
  27.     protected $recaptchaValidationService;
  28.     private TranslatorInterface $translator;
  30.     public function __construct(
  31.         CustomerRepository $customerRepository,
  32.         PasswordRepository $passwordRepository,
  33.         RecaptchaValidationServiceInterface $recaptchaValidationService,
  34.         TranslatorInterface $translator
  35.     )
  36.     {
  37.         $this->customerRepository $customerRepository;
  38.         $this->passwordRepository $passwordRepository;
  39.         $this->recaptchaValidationService $recaptchaValidationService;
  40.         $this->translator $translator;
  41.     }
  43.     public function passwordResetRequestAction(Request $request)
  44.     {
  45.         $user $this->getUser();
  47.         if ($user) {
  48.             return $this->redirectToRoute('account_show_password', ['division' => $request->get('division')]);
  49.         }
  51.         $form $this->createForm(
  52.             PasswordResetEmailFormType::class
  53.         );
  55.         $form->handleRequest($request);
  56.         $registeredSuccess false;
  57.         if ($form->isSubmitted() && $form->isValid()) {
  58.             $data $form->getData();
  60.             if (!$this->recaptchaValidationService->isValid($data)) {
  61.                 $payload array_merge(
  62.                     $request->query->all(),
  63.                     $request->request->all()
  64.                 );
  65.                 $this->addFlash('_oldFormData'serialize($payload));
  66.                 $this->addFlash('error''stoelting.recaptcha-failed.error');
  68.                 return $this->redirectBack($request);
  69.             }
  71.             $email $form['_email']->getData();
  73.             $customer $this->customerRepository->getUserByEmail($email);
  75.             if (!$customer) {
  76.                 $form->get('_email')->addError(new FormError($this->translator->trans('stoelting.user.not_found')));
  77.             } else {
  78.                 $token $this->passwordRepository->generateToken();
  79.                 $timestamp Carbon::now()->addDay(1)->timestamp;
  81.                 $this->customerRepository->setUserPasswordToken($customer$token);
  83.                 $link $this->generateUrl(
  84.                     'password-reset',
  85.                     [
  86.                         'action' => 'password-reset',
  87.                         'token'  => $token '-token-' $timestamp
  88.                     ],
  89.                     UrlGeneratorInterface::ABSOLUTE_URL
  90.                 );
  91.                 $division $request->get('division');
  92.                 $link str_replace('%division'$division$link);
  93.                 $this->passwordRepository->sendResetPasswordMail(
  94.                     $customer,
  95.                     [
  96.                         'link' => $link
  97.                     ]
  98.                 );
  100.                 $registeredSuccess true;
  101.             }
  102.         }
  104.         $division $request->get('division');
  106.         return $this->render(
  107.             '@App/division/auth/password-reset-request.html.twig',
  108.             [
  109.                 'form' => $form->createView(),
  110.                 'document' => Document::getByPath('/' $division),
  111.                 'success' => $registeredSuccess
  112.             ]
  113.         );
  114.     }
  116.     public function passwordResetAction(Request $request)
  117.     {
  118.         $division $request->get('division');
  120.         $user $this->getUser();
  122.         if ($user) {
  123.             return $this->redirectToRoute('account_show_password', ['division' => $request->get('division')]);
  124.         }
  126.         $form $this->createForm(PasswordResetFormType::class);
  127.         $form->handleRequest($request);
  129.         if ($form->isSubmitted() && $form->isValid()) {
  130.             $translator $this->translator;
  132.             if ($form['_password']->getData() != $form['_passwordConfirmation']->getData()) {
  133.                 $error = new FormError($translator->trans('stoelting.passwords-dont-match'));
  134.                 $form->get('_passwordConfirmation')->addError($error);
  135.             } else {
  136.                 $tokenAndTimestamp $request->get('token');
  137.                 $tokenAndTimestampExploded explode('-token-'$tokenAndTimestamp);
  139.                 $expirationTimestamp end($tokenAndTimestampExploded);
  140.                 $token reset($tokenAndTimestampExploded);
  142.                 $user $this->customerRepository->getUserByPasswordResetToken($token);
  144.                 if ($user && Carbon::now()->timestamp $expirationTimestamp) {
  145.                     $this->customerRepository->setPassword($user$form['_password']->getData());
  147.                     $this->addFlash('success'$translator->trans('stoelting.password-reset.success'));
  149.                     $token = new UsernamePasswordToken($usernull'main'$user->getRoles());
  150.                     $this->container->get('security.token_storage')->setToken($token);
  151.                     $this->container->get('session')->set('_security_main'serialize($token));
  153.                     return new RedirectResponse('/' $division);
  154.                 }
  155.             }
  156.         }
  158.         return $this->render(
  159.             '@App/division/auth/password-reset.html.twig',
  160.             [
  161.                 'form' => $form->createView(),
  162.                 'document' => Document::getByPath('/' $division)
  163.             ]
  164.         );
  165.     }
  167.     public function passwordNewAction(Request $request)
  168.     {
  169.         $division $request->get('division');
  171.         $user $this->getUser();
  173.         if ($user) {
  174.             return $this->redirectToRoute('account_show_password', ['division' => $request->get('division')]);
  175.         }
  177.         $form $this->createForm(PasswordNewFormType::class);
  178.         $form->handleRequest($request);
  180.         if ($form->isSubmitted() && $form->isValid()) {
  181.             $translator $this->translator;
  183.             if ($form['_password']->getData() != $form['_passwordConfirmation']->getData()) {
  184.                 $error = new FormError($translator->trans('stoelting.passwords-dont-match'));
  185.                 $form->get('_passwordConfirmation')->addError($error);
  186.             } else {
  187.                 $tokenAndTimestamp $request->get('token');
  188.                 $tokenAndTimestampExploded explode('-token-'$tokenAndTimestamp);
  190.                 $expirationTimestamp end($tokenAndTimestampExploded);
  191.                 $token reset($tokenAndTimestampExploded);
  193.                 $user $this->customerRepository->getUserByPasswordResetToken($token);
  195.                 if ($user && Carbon::now()->timestamp $expirationTimestamp) {
  196.                     $this->customerRepository->setPassword($user$form['_password']->getData());
  198.                     $this->addFlash('success'$translator->trans('stoelting.password-new.success'));
  200.                     $token = new UsernamePasswordToken($usernull'main'$user->getRoles());
  201.                     $this->container->get('security.token_storage')->setToken($token);
  202.                     $this->container->get('session')->set('_security_main'serialize($token));
  204.                     return new RedirectResponse('/' $division);
  205.                 }
  206.             }
  207.         }
  209.         return $this->render(
  210.             '@App/division/auth/password-new.html.twig',
  211.             [
  212.                 'form' => $form->createView(),
  213.                 'document' => Document::getByPath('/' $division)
  214.             ]
  215.         );
  216.     }
  217. }