src/Controller/SecurityController.php line 100

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Address;
  6. use App\Entity\Farm;
  7. use App\Entity\FarmProducer;
  8. use App\Entity\Organization;
  9. use App\Entity\Producer;
  10. use App\Entity\Profile;
  11. use App\Entity\User;
  12. use App\Form\CheckUserType;
  13. use App\Form\FarmType;
  14. use App\Form\OrganizationType;
  15. use App\Form\ProducerType;
  16. use App\Form\ProfileType;
  17. use App\Form\UserType;
  18. use App\Form\PasswordType;
  19. use App\Form\RecaptchaType;
  20. use App\Form\RecoverPasswordType;
  21. use App\Repository\AddressRepository;
  22. use App\Repository\UserRepository;
  23. use App\Service\EmailService;
  24. use App\Service\TokenGenerator;
  25. use App\Service\UserService;
  26. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  27. use Symfony\Component\Form\FormError;
  28. use Symfony\Component\HttpFoundation\Request;
  29. use Symfony\Component\HttpFoundation\Response;
  30. use Symfony\Component\Routing\Annotation\Route;
  31. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  32. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  33. use Karser\Recaptcha3Bundle\Validator\Constraints\Recaptcha3Validator;
  34. use Symfony\Contracts\Translation\TranslatorInterface;
  35. use Symfony\Component\Mime\Email;
  36. use Twig\Environment;
  40. class SecurityController extends AbstractController
  41. {
  43.     public $recaptcha;
  44.     private $translator;
  45.     private $tokenGenerator;
  47.     public function __construct(TranslatorInterface $translatorTokenGenerator $tokenGenerator)
  48.     {
  49.         $this->translator $translator;
  50.         $this->tokenGenerator $tokenGenerator;
  51.     }
  53.     /**
  54.      * @Route("/login", name="app_login")
  55.      */
  56.     public function login(AuthenticationUtils $authenticationUtilsUserRepository $userRepository): Response
  57.     {
  58.         $error $authenticationUtils->getLastAuthenticationError();
  60.         $lastUsername $authenticationUtils->getLastUsername();
  62.         $email trim($lastUsername ?? '');
  63.         $user null;
  64.         if ($email) {
  65.             $user $userRepository->createQueryBuilder('u')
  66.                 ->where('LOWER(u.email) = :email')
  67.                 ->setParameter('email'mb_strtolower($email))
  68.                 ->getQuery()
  69.                 ->getOneOrNullResult();
  70.         }
  72.         if ($user && $this->isGranted('ROLE_USER')) {
  73.             return $this->redirectToRoute('app_dashboard');
  74.         }
  76.         return $this->render('security/login.html.twig', ['last_username' => $lastUsername'error' => $error]);
  77.     }
  79.     /**
  80.      * @Route("/logout", name="app_logout")
  81.      */
  82.     public function logout()
  83.     {
  84.         throw new \Exception('This method can be blank - it will be intercepted by the logout key on your firewall');
  85.     }
  87.     /**
  88.      * @Route("/register", name="app_register")
  89.      */
  90.     public function register(
  91.         Request $request,
  92.         UserService $userService,
  93.         AddressRepository $addressRepository,
  94.         Recaptcha3Validator $recaptcha3Validator,
  95.         EmailService $emailService,
  96.         Environment $twig,
  97.         UserPasswordHasherInterface $userPasswordHasher
  98.     ): Response
  99.     {
  100.         $em $this->getDoctrine()->getManager();
  102.         $user = new User;
  103.         $userForm $this->createForm(UserType::class, $user);
  104.         $userForm->handleRequest($request);
  106.         $producer = new Producer;
  107.         $producerForm $this->createForm(ProducerType::class, $producer);
  108.         $producerForm->handleRequest($request);
  110.         $organization = new Organization;
  111.         $organizationForm $this->createForm(OrganizationType::class, $organization);
  112.         $organizationForm->handleRequest($request);
  114.         $farm = new Farm;
  115.         $farmForm $this->createForm(FarmType::class, $farm);
  116.         $farmForm->handleRequest($request);
  118.         $profile = new Profile();
  119.         $profileForm $this->createForm(ProfileType::class, $profile);
  120.         $profileForm->handleRequest($request);
  122.         $passwordForm $this->createForm(PasswordType::class, $user);
  123.         $passwordForm->handleRequest($request);
  125.         $recaptchaForm $this->createForm(RecaptchaType::class, $user);
  126.         $recaptchaForm->handleRequest($request);
  128.         // dd( $recaptcha3Validator );
  129.         // $score = $recaptcha3Validator->getLastResponse()->getScore();
  131.         if ( $userForm->isSubmitted()
  132.             and $userForm->isValid()
  133.             and $organizationForm->isValid()
  134.             and $producerForm->isValid()
  135.             and $farmForm->isValid()
  136.             and $profileForm->isValid()
  137.             and $recaptchaForm->isValid()
  138.             and $passwordForm->isValid())
  139.         {
  140.             $producer->setUser($user);
  141.             $producer->setOrganization($organization);
  143.             /* buscamos entonces por Google Id */
  145.             /* en producer */
  147.             $addressGid $producerForm->get('address')->getData();
  149.             if ( ! $address $addressRepository->findOneBy(['location' => $addressGid])  ) {
  151.                 $address = new Address();
  153.                 $address->setLocation$addressGid );
  154.                 $address->setAddress$addressGid );
  155.                 $em->persist$address );
  156.                 /* DEBUG: muy ineficiente arreglar */
  157.             }
  159.             $producer->setAddress$address );
  161.             /* en organization */
  163.             $addressGid $organizationForm->get('address')->getData();
  165.             if ( ! ( $address $addressRepository->findOneBy(['location' => $addressGid]) ) ) {
  167.                 $address = new Address();
  169.                 $address->setLocation$addressGid );
  170.                 $address->setAddress$addressGid );
  171.                 $em->persist$address );
  172.                 /* DEBUG: muy ineficiente arreglar */
  174.             }
  176.             $organization->setAddress$address );
  178.             /* en farm */
  180.             $addressGid $farmForm->get('address')->getData();
  182.             if ( ! ( $address $addressRepository->findOneBy(['location' => $addressGid]) ) ) {
  184.                 $address = new Address();
  186.                 $address->setLocation$addressGid );
  187.                 $address->setAddress$addressGid );
  188.                 $em->persist$address );
  189.                 /* DEBUG: muy ineficiente arreglar */
  190.             }
  192.             $farm->setAddress$address );
  193.             $farm->setOrganization($organization);
  194.             $farm->setProducer($producer);
  196.             $farmProducer = new FarmProducer();
  197.             $farmProducer->setFarm$farm );
  198.             $farmProducer->setProducer$producer );
  199.             $farm->addFarmProducer($farmProducer);
  201.             $userFormOrganization $userForm->has('organization')
  202.                 ? $userForm->get('organization')->getData()
  203.                 : null;
  204.             
  205.             if (!$userFormOrganization || !$organization) {
  206.                 $this->addFlash('error'"Error al crear el usuario: es necesario que el usuario tenga una organización" );
  207.                 return $this->redirectToRoute('app_register');
  208.             }    
  209.                 
  210.             $user->setOrganization($userFormOrganization ?? $organization);
  211.             $user->setRoles(['ROLE_USER''ROLE_MANAGER']);
  212.             $user->setUserType($organizationForm->get('userType')->getData());
  213.             
  214.             $hashedPassword $userPasswordHasher->hashPassword($user$user->getPassword());
  216.             $user->setPassword($hashedPassword);
  217.             $profile->setDefaultAnimalSpecie($profileForm->get('defaultAnimalSpecie')->getData());
  219.             $fullName $profile->getFullName();
  221.             if ( $user->isIsOrganization() ) {
  222.                 $organization->setName$fullName );
  223.                 $organization->setBusinessName$fullName );
  224.             }
  226.             if ( $organization->isIsProducer() ) {
  227.                 $name $organization->getName();
  228.                 $businessName $organization->getBusinessName();
  229.                 $address $organization->getAddress();
  230.                 $cuit $organization->getCuit();
  231.                 $phone $organization->getPhone();
  233.                 $producer->setName$name );
  234.                 $producer->setSurname'' );
  235.                 $producer->setBusinessName$businessName );
  236.                 $producer->setAddress$address );
  237.                 $producer->setCuit$cuit );
  238.                 $producer->setPhone$phone );
  239.             }
  241.             $token $this->tokenGenerator->generateToken();
  242.             $user->setConfirmationToken$token );
  244.             /* todos los persists, de haber un nuevo objeto agregarlo aca */
  246.             foreach( [$profile$farm$farmProducer$organization$producer$user ] as $obj ) {
  248.                 $em->persist$obj );
  249.             }
  251.             $em->flush();
  254.             $sendEmail false;
  255.             $automaticRegistration false;
  257.             /* para debug sin mandar email */
  258.             /* se usa para que muestre el email en lugar de mandarlo */
  260.             if ( $automaticRegistration ) {
  262.                 $email = new Email();
  264.                 $content $twig->render('emails/registration.html.twig', [
  265.                     'email' => $email,
  266.                     'user' => $user,
  267.                     'token' => $token
  268.                 ]);
  270.                 if ( $sendEmail ) {
  271.             
  272.                     return new Response$emailService->sendRegistrationToken($user$content) );
  273.             
  274.                 }        
  275.             
  276.             } else {
  277.             
  278.                 $content $twig->render('emails/manual_registration.html.twig');
  279.             }
  281.             return new Response$content );
  283.         }
  285.         /* return response */
  287.         return $this->render('security/register.html.twig', [
  288.             'user' => $user,
  289.             'userForm' => $userForm->createView(),
  290.             'producerForm' => $producerForm->createView(),
  291.             'organizationForm' => $organizationForm->createView(),
  292.             'farmForm' => $farmForm->createView(),
  293.             'profileForm' => $profileForm->createView(),
  294.             'passwordForm' => $passwordForm->createView(),
  295.             'recaptchaForm' => $recaptchaForm->createView(),
  296.         ]);
  297.     }
  299.     /**
  300.      * @Route("/registration_acceptance/{token}", name="app_registration_acceptance",  methods={"GET"})
  301.      */
  302.     public function registrationAcceptanceUserRepository $userRepository$token)
  303.     {
  304.         $user $userRepository->findOneBy(['confirmationToken' => $token]);
  306.         if ( $user && $token === $user->getConfirmationToken())
  307.         {
  308.             $user->setEnabledtrue );
  309.             $em $this->getDoctrine()->getManager();
  310.             $em->persist($user);
  311.             $em->flush();
  313.             /* esto hace que entre directamente, por ahora no
  314.              *
  315.             return $guardAuthenticatorHandler->authenticateUserAndHandleSuccess(
  316.                 $user,
  317.                 $request,
  318.                 $authenticator,
  319.                 'main'
  320.             );
  321.              */
  322.         }
  324.         return $this->render('security/registration_success.html.twig', [
  325.             'user' => $user,
  326.         ]);
  327.     }
  330.     /**
  331.      * @Route("/password_reset", name="app_password_reset_request",  methods={"GET","POST"})
  332.      */
  333.     public function passwordResetRequest(Request $requestUserService $userServiceEmailService $emailServiceTokenGenerator $tokenGenerator): Response
  334.     {
  335.         $form $this->createForm(CheckUserType::class);
  336.         $form->handleRequest($request);
  338.         $passwordForm $this->createForm(PasswordType::class);
  339.         $passwordForm->handleRequest($request);
  341.         if ( $form->isSubmitted() && $form->isValid()) {
  342.             $user $userService->findOneBy(array('email' => $form->getData()['email']));
  343.             if ($user) {
  344.                 $userService->update($user);
  346.                $emailService->sendPasswordRequest($user);
  348.                 $this->addFlash('success',$this->translator->trans('Password.resetPasswordEmail') . $user->getEmail() );
  350.                 return $this->redirectToRoute('app_login');
  352.                 // para probar sin email
  353.                 /* return $this->render('emails/password_reset_request.html.twig', [
  354.                     'userForm' => $userForm->createView(),
  355.                     'message' => "Se ha enviado un correo a " . $user->getEmail(),
  356.                     'user' => $user,
  357.                     'token' => $user->getConfirmationToken()
  358.                 ]);*/ 
  359.             } else {
  360.                 $form->addError(new FormError('No se encontró usuario'));
  361.             }
  362.         }
  364.         return $this->render('security/password_reset_request.html.twig', [
  365.             'form' => $form->createView(),
  366.         ]);
  367.     }
  369.     /**
  370.      * @Route("/password_reset/{token}", name="app_password_reset_confirm", )
  371.      */
  372.     public function passwordReset(Request $request$tokenUserService $userServiceUserPasswordHasherInterface $passwordHasher): Response
  373.     {
  374.         /** @var User $user */
  375.         $user $userService->findUserByConfirmationToken($token);
  376.         if (!$user) {
  377.             $checkUserForm $this->createForm(CheckUserType::class);
  378.             $checkUserForm->addError(new FormError('userNotFound'));
  379.             return $this->render('security/password_reset_request.html.twig', array(
  380.                 'form' => $checkUserForm->createView(),
  381.             ));
  382.         }
  384.         $form $this->createForm(PasswordType::class);
  385.         $form->handleRequest($request);
  387.         if ($form->isSubmitted()) {
  388.             if($form->isValid()) {
  389.                 $newEncodedPassword $passwordHasher->hashPassword($user$form->get('password')->getData());
  390.                 $user->setPassword($newEncodedPassword);
  391.                 $userService->update($user);
  392.                 $this->addFlash('success'$this->translator->trans('Password.resetSuccess'));
  393.                 return $this->redirectToRoute('app_login');
  394.             }
  396.             else {
  397.                 $this->addFlash('error'$this->translator->trans('Password.resetError'));
  398.             }
  399.         }
  402.         return $this->render('security/password_reset_confirm.html.twig', array(
  403.             'form' => $form->createView(),
  404.         ));
  405.     }
  407.     /**
  408.      * @Route("/password_reset_success", name="app_password_reset", methods={"POST"})
  409.      */
  410.     public function passwordResetSuccess(Request $requestUserPasswordHasherInterface $hasherUserService $userService): Response
  411.     {
  412.         $newPassword $request->get('password');
  413.         $token $request->get('token');
  415.         /** @var User $user */
  416.         $user $userService->findUserByConfirmationToken($token);
  418.         $user->setPassword($hasher->hashPassword($user$newPassword));
  419.         $user->setConfirmationToken(null);
  420.         $user->setPasswordRequestedAt(null);
  422.         $this->getDoctrine()->getManager()->flush();
  424.         return $this->render('security/password_reset_success.html.twig', []);
  425.     }
  426. }