src/StartPlatz/Bundle/UserBundle/Controller/AuthenticationController.php line 231

Open in your IDE?
  1. <?php declare(strict_types=1);
  3. namespace App\StartPlatz\Bundle\UserBundle\Controller;
  5. use App\StartPlatz\Bundle\MemberBundle\Entity\Member;
  6. use App\StartPlatz\Bundle\StartupBundle\Entity\Application;
  7. use App\StartPlatz\Bundle\StartupBundle\Entity\Batch;
  8. use App\StartPlatz\Bundle\UserBundle\Form\SetPasswordFormType;
  9. use App\StartPlatz\Bundle\WebsiteBundle\Utility\Utility;
  10. use Doctrine\DBAL\Driver\Connection;
  11. use Exception;
  12. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  13. use Symfony\Component\Mailer\MailerInterface;
  14. use Symfony\Component\Mime\Address;
  15. use Symfony\Component\Mime\Email;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  18. use App\StartPlatz\Bundle\FeedbackBundle\CallbackService;
  19. use App\StartPlatz\Bundle\UserBundle\Entity\User;
  20. use App\StartPlatz\Bundle\UserBundle\Entity\UserRepository;
  21. use App\StartPlatz\Bundle\UserBundle\Form\LoginFormType;
  22. use App\StartPlatz\Bundle\UserBundle\Form\LostPasswordFormType;
  23. use App\StartPlatz\Bundle\UserBundle\Form\RegistrationFormType;
  24. use App\StartPlatz\Bundle\UserBundle\Security\LoginLink\Token;
  25. use Startplatz\Bundle\WordpressIntegrationBundle\Annotation\WordpressResponse;
  26. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  27. use Symfony\Component\HttpFoundation\RedirectResponse;
  28. use Symfony\Component\HttpFoundation\Request;
  29. use Symfony\Component\HttpFoundation\Response;
  30. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  31. use Symfony\Component\Routing\RouterInterface;
  32. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  33. use Symfony\Component\Security\Core\Security as SymfonySecurity;
  35. class AuthenticationController extends AbstractController
  36. {
  37.     public function __construct(private readonly SessionInterface             $session, private readonly RouterInterface              $router, private readonly UserPasswordEncoderInterface $encoder, private readonly MailerInterface              $mailer, private readonly CallbackService              $callbackService, private readonly Connection                   $connection)
  38.     {
  39.     }
  41.     /**
  42.      * @Route("/usfb/{md5}", name="unsubscribe_user_bulkmail")
  43.      * @param $md5
  44.      * @return RedirectResponse|Response
  45.      */
  46.     public function unsubscribeUserBulkmailAction($md5)
  47.     {
  48.         $em $this->getDoctrine()->getManager();
  50.         if (!$user $em->getRepository(User::class)->findOneBy(['salt' => $md5])) {
  51.             return new Response('sorry, not found ');
  52.         }
  53.         if (!$user->getisOnBlacklist()) {
  54.             $member $em->getRepository(Member::class)->find($user->getMemberId());
  55.             $em->getRepository(Member::class)->addTag('blacklist'$member$user->getEmail(), $logText 'User has unsubscribed');
  56.         }
  59.         $redirect '/x/feed';
  61.         $hash Token::createHash($user->getEmail(), $redirect);
  63.         $this->session->getFlashBag()->add('notice''SUCCESS you have been unsubscribed ');
  65.         return $this->redirect($this->generateUrl('login_email_check', [
  66.             'email' => $user->getEmail(),
  67.             'hash' => $hash,
  68.             'redirect' => $redirect,
  69.         ]));
  70.     }
  72.     /**
  73.      * @Route("/authentication/magic-link", name="login_magic_link")
  74.      */
  75.     public function magicLinkAction(Request $request)
  76.     {
  78.         // Prüfe die Anfragemethode
  79.         if (!$request->isMethod('POST')) {
  80.             return new Response('Invalid request.'405);
  81.         }
  82.         $em $this->getDoctrine()->getManager();
  84.         $email strtolower((string) $request->get('email'));
  86.         /** @var Member $member */
  87.         if (!$member $em->getRepository(Member::class)->findOneBy(['email' => $email])) {
  88.             return new Response(''400);
  89.         }
  92.         /*
  93.         if (!$user = $this->getUser()){
  95.             $toEmail = 'lorenz.graef@startplatz.de';
  96.             $mailText = "Member mit E-Mail {$member->getEmail()} und firstName {$member->getFirstName()} und lastName {$member->getLastName()} versucht sich einzuloggen" ;
  97.             $mailSubject = 'Login Versuch';
  98.             $fromEmail = "lorenz.graef@startplatz.de";
  99.             $fromName = "System per Allmeda - SOS";
  100.             $bodyType = 'html';
  101.             $sendResult = Utility::sendAlertMailPerN8N( $toEmail, $mailText, $mailSubject, $fromEmail, $fromName, $bodyType);
  103.             return new Response('please try later', 400);
  104.         }
  105.         */
  107.         if ($redirect $request->request->get('targetPath')) {
  108.             if ($redirect[0] != "/") {
  109.                 $redirect "/" $redirect;
  110.             }
  111.         } elseif ($redirect $request->get('targetPath')) {
  112.             ## do nothing
  113.         } else {
  114.             $redirect "/x/home";
  115.         }
  117.         if (!$action $request->get('action')) {
  118.             $action 'setPassword';
  119.         }
  121.         $hash Token::createHash($email$redirect);
  122.         $data = ['email' => $email'redirect' => $redirect];
  123.         $loginLink $this->generateUrl('login_email_check', ['email' => $data['email'], 'hash' => $hash'redirect' => $data['redirect'], 'action' => $action]);
  124.         $loginLink $request->getSchemeAndHttpHost() . $loginLink;
  126.         $payload json_encode([
  127.             'memberFirstName' => $member->getFirstName(),
  128.             'memberName' => $member->getName(),
  129.             'memberEmail' => $member->getEmail(),
  130.             'magicLink' => $loginLink,
  131.         ]);
  133.         $callbackUrl "https://hooks.zapier.com/hooks/catch/1872803/2qid0ji/";
  134.         $this->callbackService->curl_callback($callbackUrl$payload);
  136.         return new Response('SUCCESS Magic Link sent to ' $email);
  137.     }
  139.     /**
  140.      * @Route("/authentication/magic-link-defense", name="login_magic_defense_link")
  141.      * @Security("is_granted('ROLE_USER')")
  142.      */
  143.     public function magicLinkDefenseAction(Request $request)
  144.     {
  146.         $em $this->getDoctrine()->getManager();
  148.         $email strtolower((string) $request->get('email'));
  150.         /** @var Member $member */
  151.         if (!$member $em->getRepository(Member::class)->findOneBy(['email' => $email])) {
  152.             return new Response(''400);
  153.         }
  156.         if ($redirect $request->request->get('targetPath')) {
  157.             if ($redirect[0] != "/") {
  158.                 $redirect "/" $redirect;
  159.             }
  160.         } elseif ($redirect $request->get('targetPath')) {
  161.             ## do nothing
  162.         } else {
  163.             $redirect "/x/home";
  164.         }
  166.         if (!$action $request->get('action')) {
  167.             $action 'setPassword';
  168.         }
  170.         $hash Token::createHash($email$redirect);
  171.         $data = ['email' => $email'redirect' => $redirect];
  172.         $loginLink $this->generateUrl('login_email_check', ['email' => $data['email'], 'hash' => $hash'redirect' => $data['redirect'], 'action' => $action]);
  173.         $loginLink $request->getSchemeAndHttpHost() . $loginLink;
  175.         $payload json_encode([
  176.             'memberFirstName' => $member->getFirstName(),
  177.             'memberName' => $member->getName(),
  178.             'memberEmail' => $member->getEmail(),
  179.             'magicLink' => $loginLink,
  180.         ]);
  182.         $callbackUrl "https://hooks.zapier.com/hooks/catch/1872803/2qid0ji/";
  183.         $this->callbackService->curl_callback($callbackUrl$payload);
  185.         return new Response('SUCCESS Magic Link sent to ' $email);
  186.     }
  188.     /* Gerrit stash membership 11.4.23
  189.         /**
  190.          * @Route("/x/membership/finalize/{account}/{productNumber}/{customerHash}", name="x_membership_booked")
  191.          *
  192.         public function newMembershipLogin(Request $request, $customerHash, $account, $productNumber = 0)
  193.         {
  194.             if (!$redirect = json_decode(base64_decode($request->get('redirect')))) {
  195.                 $redirect = json_decode(json_encode(array('path' => 'x_membership_first-steps', 'parameters' => array('productNumber' => $productNumber, 'account' => $account))));
  196.             }
  197.             $redirectUrl = $this->generateUrl($redirect->path, (array)$redirect->parameters);
  198.             //logged in
  199.             if ($user = $this->getUser()) {
  200.                 if (!ctype_digit($user->getPassword())) $this->redirect($redirectUrl);
  201.                 $form = $this->createSetPasswordForm($redirectUrl);
  202.                 $form->handleRequest($request);
  203.                 if ($form->isSubmitted() && $form->isValid()) {
  204.                     $em = $this->getDoctrine()->getManager();
  205.                     $user = $this->getUser();
  206.                     $data = $form->getData();
  207.                     $password = $data['new_password'];
  208.                     $newPasswordEncoded = $this->getUserPasswordEncoder()->encodePassword($user, $password);
  209.                     $user->setPassword($newPasswordEncoded);
  210.                     $em->getRepository(User::class)->add($user);
  211.                     return $this->redirect($redirectUrl);
  212.                 }
  213.                 //logged in, set password
  214.                 return $this->render('@StartPlatzAlphaBundle/Default/new.membership.login.html.twig', array(
  215.                     'setPasswordForm' => $form->createView(),
  216.                     'setPassword' => true,
  217.                     'redirect' => base64_encode(json_encode($redirect)),
  218.                 ));
  219.             }
  220.             //Not logged in, ask for email to send link.
  221.             return $this->render('@StartPlatzAlphaBundle/Default/new.membership.login.html.twig', array(
  222.                 'setPassword' => false,
  223.                 'targetPath' => $this->generateUrl($redirect->path, (array)$redirect->parameters),
  224.             ));
  225.         }
  226.     */
  228.     /**
  229.      * @Route("/login/", name="login")
  230.      */
  231.     public function loginAction(Request $request)
  232.     {
  233.         if ($targetPath $request->query->get('targetPath')) {
  234.             $parts parse_url((string) $targetPath);
  235.             $redirect $parts['path'];
  236.         } elseif ($targetPath $request->getSession()->get('_security.secured_area.target_path')) {
  237.             $parts parse_url((string) $targetPath);
  238.             $redirect $parts['path'];
  239.         } else {
  240.             $redirect $this->generateUrl('x_home');
  241.         }
  242.         return $this->showLogin($redirect$request);
  243.     }
  245.     protected function showLogin($redirect$request$registrationFormData = [], $forms = [])
  246.     {
  248.         $redirectRouteName null;
  249.         $session $request->getSession();
  251.         try {
  252.             $routingParameter $this->router->match($redirect);
  253.             $redirectRouteName $routingParameter['_route'];
  254.         } catch (Exception) {
  255.         }
  257.         if ($this->getUser()) {
  258.             return $this->redirect($redirect ?: $this->generateUrl('x_home'));
  259.         }
  261.         if ($request->attributes->has(SymfonySecurity::AUTHENTICATION_ERROR)) {
  262.             $error $request->attributes->get(SymfonySecurity::AUTHENTICATION_ERROR);
  263.         } else {
  264.             $error $session->get(SymfonySecurity::AUTHENTICATION_ERROR);
  265.             $session->remove(SymfonySecurity::AUTHENTICATION_ERROR);
  266.         }
  268.         if ($error) {
  269.             $session->getFlashBag()->add('notice'$this->renderView('@StartPlatzUserBundle/Authentication/loginErrorFlash.html.twig'));
  270.         }
  271.         if (!array_key_exists('registrationForm'$forms)) {
  272.             $forms['registrationForm'] = $this->createRegistrationForm($redirect$registrationFormData);
  273.         }
  275.         if (!array_key_exists('pwlostForm'$forms)) {
  276.             $forms['pwlostForm'] = $this->createPwlostForm($redirect$registrationFormData);
  277.         }
  279.         $template "@StartPlatzUserBundle/Authentication/login.html.twig";
  281.         return $this->render($template, ['redirectRouteName' => $redirectRouteName'redirect' => $redirect'loginForm' => $this->createLoginForm($redirect)->createView(), 'registrationForm' => $forms['registrationForm']->createView(), 'pwlostForm' => $forms['pwlostForm']->createView()]);
  282.     }
  284.     protected function createRegistrationForm($redirect null$data = [])
  285.     {
  286.         if ($redirect) {
  287.             $data['redirect'] = $redirect;
  288.         }
  289.         return $this->createForm(
  290.             RegistrationFormType::class,
  291.             $data
  292.         );
  293.     }
  295.     protected function createPwlostForm($redirect null$data = [])
  296.     {
  297.         if ($redirect) {
  298.             $data['redirect'] = $redirect;
  299.         }
  300.         return $this->createForm(
  301.             LostPasswordFormType::class,
  302.             $data
  303.         );
  304.     }
  306.     protected function createLoginForm($redirect)
  307.     {
  308.         return $this->createForm(
  309.             LoginFormType::class,
  310.             ['target_path' => $redirect]
  311.         );
  312.     }
  314.     protected function createSetPasswordForm($redirect)
  315.     {
  316.         return $this->createForm(
  317.             SetPasswordFormType::class,
  318.             ['target_path' => $redirect]
  319.         );
  320.     }
  322.     /**
  323.      * @Route("/login/facebook", name="login_facebook")
  324.      */
  325.     public function loginFacebookAction(): void
  326.     {
  327.     }
  329.     /**
  330.      * @Route("/login/facebook/check", name="login_facebook_check")
  331.      */
  332.     public function loginFacebookCheckAction(): void
  333.     {
  334.     }
  336.     /**
  337.      * @Route("/login/google", name="login_google")
  338.      */
  339.     public function loginGoogleAction(): void
  340.     {
  341.     }
  343.     /**
  344.      * @Route("/login/google/check", name="login_google_check")
  345.      */
  346.     public function loginGoogleCheckAction(): void
  347.     {
  348.     }
  350.     /**
  351.      * @Route("/login/password/check", name="login_password_check")
  352.      */
  353.     public function loginPasswordCheckAction(): void
  354.     {
  355.     }
  359.     /** @return UserRepository */
  360.     protected function getUserRepository()
  361.     {
  362.         return $this->getDoctrine()->getRepository(User::class);
  363.     }
  365.     /**
  366.      * @return UserPasswordEncoderInterface
  367.      */
  368.     protected function getUserPasswordEncoder()
  369.     {
  370.         return $this->encoder;
  371.     }
  373.     protected function createEmailHash($salt$email)
  374.     {
  375.         return Token::createHash($salt$email);
  376.     }
  378.     /**
  379.      * @Route("/login/link/create/{redirect}", name="login_link_create")
  380.      * @Security("is_granted('ROLE_USER')")
  381.      */
  382.     public function loginLinkCreateAction(Request $request$redirect)
  383.     {
  384.         $url $this->generateUrl($redirect);
  385.         $this->generateLoginLink($url);
  387.         $request->getSession()->getFlashBag()->add('notice''loginlink zu ' $url ' erstellt');
  389.         return $this->redirect($this->generateUrl('community_home'));
  390.     }
  392.     protected function generateLoginLink($redirect '/x')
  393.     {
  394.         /** @var User $user */
  395.         $user $this->getUser();
  397.         $message = new Email();
  398.         $message->to($user->getEmail());
  399.         $message->from(new Address('info@startplatz.de''Startplatz - Webseite'));
  400.         $message->subject('login-link for startplatz.de');
  401.         $message->text(
  402.             $this->renderView(
  403.                 '@StartPlatzUserBundle/Mails/sendLoginLink.txt.twig',
  404.                 ['email' => $user->getEmail(), 'name' => $user->getName(), 'hash' => Token::createHash($user->getEmail(), $redirect), 'redirect' => $redirect]
  405.             )
  406.         );
  407.         $this->mailer->send($message);
  408.         return true;
  409.     }
  411.     /**
  412.      * @Route("/login/link/lg/create/{redirect}", name="login_link_create_lg")
  413.      */
  414.     public function createLoginLinkLg(Request $request$redirect)
  415.     {
  416.         $url $this->generateUrl($redirect);
  417.         $this->generateLoginLinkLg($url);
  419.         $request->getSession()->getFlashBag()->add('notice''loginlink zu ' $url ' erstellt');
  421.         return $this->redirect($this->generateUrl('community_home'));
  422.     }
  424.     protected function generateLoginLinkLg($redirect '/crm/contacts')
  425.     {
  427.         $email 'lorenz.graef@startplatz.de';
  428.         $message = new Email();
  429.         $message->to($email);
  430.         $message->from(new Address('info@startplatz.de''Startplatz - Webseite'));
  431.         $message->subject('login-link for startplatz.de');
  432.         $message->text(
  433.             $this->renderView(
  434.                 '@StartPlatzUserBundle/Mails/sendLoginLink.txt.twig',
  435.                 ['email' => $email'name' => 'lorenz''hash' => Token::createHash($email$redirect), 'redirect' => $redirect]
  436.             )
  437.         );
  438.         $this->mailer->send($message);
  439.         return true;
  440.     }
  442.     /**
  443.      * @Route("/lost-pw/", name="lost_pw", methods={"POST"})
  444.      * @Template("@StartPlatzUserBundle/Authentication/login.html.twig")
  445.      */
  446.     public function lostPwAction(Request $request)
  447.     {
  448.         $form $this->createPwlostForm();
  449.         $form->handleRequest($request);
  451.         $data $form->getData();
  454.         if ($form->isSubmitted() && $form->isValid()) {
  455.             $reset $this->resetPassword($data);
  457.             if ($reset) {
  458.                 $request->getSession()->getFlashBag()->add('notice'$this->renderView('@StartPlatzUserBundle/Authentication/passwordEmailFlash.html.twig'$data));
  459.                 return $this->redirect($this->generateUrl('login'));
  460.             } else {
  461.                 $request->getSession()->getFlashBag()->add('notice'$this->renderView('@StartPlatzUserBundle/Authentication/passwordEmailErrorFlash.html.twig'$data));
  462.                 return $this->showLogin($data['redirect'], $request$data, ['pwlostForm' => $form]);
  463.             }
  465.         } else {
  466.             return $this->showLogin($data['redirect'], $request$data, ['pwlostForm' => $form]);
  467.         }
  468.     }
  470.     protected function resetPassword($data)
  471.     {
  472.         $password substr(base_convert(sha1(uniqid((string)random_int(0mt_getrandmax()), true)), 1636), 08);
  473.          /** @var User $user */
  474.         if (!($user $this->getUserRepository()->loadUser($data))) {
  475.             return false;
  476.         }
  477.         $user->setPassword($this->getUserPasswordEncoder()->encodePassword($user$password));
  478.         $this->getUserRepository()->add($user);
  480.         //$password= $user->getPassword();
  481.         $message = new Email();
  482.         $message->to($data['email']);
  483.         $message->from(new Address('info@startplatz.de''Startplatz - Webseite'));
  484.         $message->subject('Dein Passwort für startplatz.de!');
  485.         $message->text(
  486.             $this->renderView(
  487.                 '@StartPlatzUserBundle/Mails/login-password.txt.twig',
  488.                 ['email' => $user->getEmail(), 'name' => $user->getName(), 'hash' => Token::createHash($data['email'], $data['redirect']), 'redirect' => $data['redirect'], 'password' => $password]
  489.             )
  490.         );
  492.         $this->mailer->send($message);
  495.         return true;
  496.     }
  498.     /**
  499.      * @Route("/profile/send-new-password/", name="user_profile_send_new_password")
  500.      * @Security("is_granted('ROLE_USER')")
  501.      */
  502.     public function sendNewPasswordAction(Request $request)
  503.     {
  504.         $user $this->getUser();
  506.         $data['email'] = $user->getEmail();
  507.         $data['redirect'] = '/profile/set-password/';
  509.         $reset $this->resetPassword($data);
  511.         if ($reset) {
  512.             $request->getSession()->getFlashBag()->add('notice'$this->renderView('@StartPlatzUserBundle/Authentication/passwordEmailFlash.html.twig'$data));
  513.         } else {
  514.             $request->getSession()->getFlashBag()->add('notice'$this->renderView('@StartPlatzUserBundle/Authentication/passwordEmailErrorFlash.html.twig'$data));
  515.         }
  517.         return $this->redirect($this->generateUrl('user_profil_change_password'));
  519.     }
  521.     /**
  522.      * @Route("/login/link/check/{email}/{hash}/to{redirect}", name="login_email_check", requirements={"redirect"=".+"})
  523.      */
  524.     public function loginLinkCheckAction(Request $request$redirect '/'$hash "")
  525.     {
  526.         if ($user $this->getUser()) {
  527.             $em $this->getDoctrine()->getManager();
  528.             $em->getRepository(User::class)->writeActivity($user);
  530.             if ($batches $em->getRepository(Batch::class)->findByExtended(['settings' => 'validateEmail'])) {
  531.                 foreach ($batches as $batch) {
  532.                     $batchId $batch->getId();
  533.                     if ($application $em->getRepository(Application::class)->findOneBy(['batchId' => $batchId'memberId'=>$user->getMemberId()])) {
  534.                         $application->setHasEmailValidated(true);
  535.                         $em->persist($application);
  536.                         $em->flush();
  537.                     }
  538.                 }
  539.             }
  541.             if ($request->get('action') == 'setPassword') {
  542.                 return $this->redirect($this->generateUrl('x_home', ['hash' => $hash]));
  543.             }
  544.             return $this->redirect($redirect);
  545.         } else {
  546.             $this->session->getFlashBag()->add('notice''ERROR: no user found');
  547.             return $this->redirect($this->generateUrl('x_home'));
  548.         }
  549.     }
  551.     /**
  552.      * @Route("/login/confirm/{email}/{hash}/to{redirect}", name="login_confirm_email", requirements={"redirect"=".+"})
  553.      */
  554.     public function confirmLinkCheckAction(Request $request$email$hash$redirect '/login')
  555.     {
  556.         $em $this->getDoctrine()->getManager();
  557.         $action $request->get('action');
  558.         if (!$user $this->getUserRepository()->findUserByConfirm($hash)) {
  559.             if ($this->getUserRepository()->findOneBy(['email' => $email])) {
  560.                 $this->session->getFlashBag()->add('notice''ERROR email already confirmed. Please login.');
  561.             } else {
  562.                 $this->session->getFlashBag()->add('notice''ERROR not matching any user');
  563.             }
  565.             return $this->redirect('/logout');
  566.         }
  567.         if (!$user->getIsEmailConfirmed()) {
  568.             $user->setIsEmailConfirmed(true);
  569.             $user->setEmail($user->getToConfirmEmail());
  570.             $user->setConfirmEmail(null);
  571.             $user->setToConfirmEmail(null);
  572.             $this->getUserRepository()->add($user);
  573.             if ($memberId $user->getMemberId()) {
  574.                 $em->getRepository(Member::class)->changeEmailByMemberId($memberId$user->getEmail(), $user->getEmail());
  575.             }
  576.         }
  577.         return $this->redirect($this->getLoginLink($user->getEmail(), $redirect$action));
  578.     }
  580.     private function getLoginLink($email$redirect '/x'$action null)
  581.     {
  582.         $hash Token::createHash($email$redirect);
  583.         if ($action) {
  584.             $loginLink $this->generateUrl('login_email_check', ['email' => $email'hash' => $hash'redirect' => $redirect'action' => $action]);
  585.         } else {
  586.             $loginLink $this->generateUrl('login_email_check', ['email' => $email'hash' => $hash'redirect' => $redirect]);
  587.         }
  588.         return $loginLink;
  589.     }
  591.     /**
  592.      * @Route("/logout/", name="logout")
  593.      */
  594.     public function logoutAction(): void
  595.     {
  596.     }
  598.     /**
  599.      * @Template
  600.      */
  601.     public function loginStatusAction()
  602.     {
  603.         return [];
  604.     }
  607. }