src/Controller/SecurityController.php line 157

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Master\Company;
  6. use App\Entity\Slave\User;
  7. use App\Form\Security\LoginCompanyType;
  8. use App\Form\Security\PasswordCreationType;
  9. use App\Form\Security\PasswordRecoveryType;
  10. use App\Service\CompanyService;
  11. use App\Service\ValidationService;
  12. use Doctrine\Persistence\ManagerRegistry;
  13. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  14. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  15. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  16. use Symfony\Component\Form\FormError;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\Mailer\MailerInterface;
  20. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  21. use Symfony\Component\Routing\Annotation\Route;
  22. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  23. use Symfony\Contracts\Translation\TranslatorInterface;
  24. use Symfony\Component\Validator\Validator\ValidatorInterface;
  26. class SecurityController extends AbstractController
  28.     protected $mr;
  29.     private $params;
  31.     public function __construct(ManagerRegistry $managerRegistryParameterBagInterface $params)
  32.     {
  33.         $this->mr $managerRegistry;
  34.         $this->params $params;
  35.     }
  37.     /**
  38.      * @Route("/accedi-reindirizza", name="login_redirect")
  39.      */
  40.     public function loginRedirect(Request $requestValidatorInterface $validator): Response
  41.     {
  42.         $emMaster $this->mr->getManager('master');
  43.         $session $request->getSession();
  45.         $company = new Company();
  46.         $form $this->createForm(LoginCompanyType::class, $company);
  47.         $form->handleRequest($request);
  49.         if($form->isSubmitted()){
  50.             $valid true;
  52.             if($valid$valid ValidationService::validateNotBlank($validator$form->get('companyCode'));
  53.             $company $emMaster->getRepository('App\Entity\Master\Company')->findOneBy(array('code' => $form->get('companyCode')->getData()));
  54.             if($company == null){
  55.                 $valid false;
  56.                 $form->get('companyCode')->addError(new FormError("Nessuna azienda trovata con questo codice!"));
  57.             }
  59.             if($valid && $form->isValid()){
  60.                 $session->set('companyId'$company->getId());
  61.                 return $this->redirectToRoute('login', array('companyCode' => $company->getCode()));
  62.             }
  63.         }
  65.         return $this->render('security/login_redirect.html.twig', array(
  66.             'form' => $form->createView()
  67.         ));
  68.     }
  70.     /**
  71.      * @Route("/accedi", name="login_old")
  72.      */
  73.     public function loginOld(Request $request
  74.     {   
  75.         if(isset($_COOKIE["eposm_company_code"]))
  76.             return $this->redirectToRoute("user_index");
  77.         return $this->redirectToRoute("login_redirect");
  78.     }
  79.     
  80.     /**
  81.      * @Route("/accedi/{companyCode}", name="login")
  82.      */
  83.     public function login($companyCodeRequest $requestValidatorInterface $validatorMailerInterface $mailerAuthenticationUtils $authenticationUtils): Response
  84.     {
  85.         $emMaster $this->mr->getManager('master');
  86.         $session $request->getSession();
  87.         $company $emMaster->getRepository('App\Entity\Master\Company')->findOneBy(array('code' => $companyCode));
  88.         $em CompanyService::getSlaveManagerByCompany($this->mr$this->params$company);
  90.         $error $authenticationUtils->getLastAuthenticationError();
  91.         $lastUsername $authenticationUtils->getLastUsername();
  93.         $pswUser = new User();
  94.         $form $this->createForm(PasswordRecoveryType::class, $pswUser);
  95.         $form->handleRequest($request);
  97.         if($form->isSubmitted()){
  98.             $valid true;
  100.             $path 'https://www.google.com/recaptcha/api/siteverify?secret=6Lf8cfEpAAAAAIGg748C0wPad5YSPs68DyXEl8eM&response='.$request->request->get("g-recaptcha-response");
  101.             $ch curl_init();
  102.             curl_setopt($chCURLOPT_HTTPHEADER, array('Content-Type: application/json''Accept: application/json'));
  103.             curl_setopt($chCURLOPT_URL,$path);
  104.             curl_setopt($chCURLOPT_SSL_VERIFYPEERfalse);
  105.             curl_setopt($chCURLOPT_RETURNTRANSFERtrue);
  106.             curl_setopt($chCURLOPT_CUSTOMREQUEST"GET");
  107.             $result curl_exec($ch);
  108.             curl_close($ch);
  109.             $res json_decode($resulttrue);
  110.             
  111.             if(!$res["success"]){
  112.                 $valid false;
  113.                 $form->get('recaptcha')->addError(new FormError("Convalidare prima di inviare la richiesta"));
  114.                 $this->addFlash('notice_warning'"Prima di inviare la richiesta, provare di non essere un robot.");
  115.             }
  116.             if($valid$valid ValidationService::validateNotBlank($validator$form->get('email'));
  117.             if($valid$valid ValidationService::validateEmail($validator$form->get('email'));
  119.             if($valid && $form->isValid()){
  120.                 
  121.                 $user $em->getRepository("App\Entity\Slave\User")->findOneByEmail($pswUser->getEmail());
  122.                 if($user){
  123.                     $now = new \DateTime();
  124.                     $user->setOneTimeCode(md5(uniqid()));
  125.                     $user->setExpirationOneTimeCode(date_modify($now"+3 hours"));
  126.                     $em->flush();
  128.                     $message = (new TemplatedEmail())
  129.                         ->subject($this->params->get('subject_recover_password'))
  130.                         ->from($this->params->get('email_noreply'))
  131.                         ->to($user->getEmail())
  132.                         ->htmlTemplate('email/password_recovery.html.twig')
  133.                         ->context(['user' => $user'company' => $company]);
  134.                     $mailer->send($message);
  135.                 }
  136.                 
  137.                 $this->addFlash('notice_success'"La richiesta è stata ricevuta correttamente.<br>Se l'account esiste, verrà inviato un messaggio di posta elettronica all'indirizzo corrispondente.");
  138.                 return $this->redirectToRoute('login', array('companyCode' => $companyCode));
  139.             }
  140.             else{
  141.                 $session->set('openModalRecover'true);
  142.                 $this->addFlash('notice_warning'"Controlla le informazioni inserite nel form di recupero password.");
  143.             }
  144.         }
  146.         return $this->render('security/login.html.twig', array(
  147.             'company' => $company,
  148.             'last_username' => $lastUsername,
  149.             'error' => $error,
  150.             'form' => $form->createView()
  151.         ));
  152.     }
  154.     /**
  155.      * @Route("/accedi-controllo", name="login_check")
  156.      */
  157.     public function loginCheck() {}
  159.     /**
  160.      * @Route("/disconnetti", name="logout")
  161.      */
  162.     public function logout(Response $response
  163.     {        
  164.         $response->headers->clearCookie('eposm_company_code''/''.'.$this->params->get('cookies_domain'));
  165.     }
  167.     /**
  168.      * @Route("/crea-password/{oneTimeCode}/{companyCode}", name="password_creation", requirements={"oneTimeCode" = "[\w\d]{32}"})
  169.      */
  170.     public function passwordCreation(Request $request$oneTimeCode$companyCodeValidatorInterface $validatorUserPasswordHasherInterface $passwordHasher)
  171.     {
  172.         //DISCONNETTO L'UTENTE SE CONNESSO
  173.         $this->get('security.token_storage')->setToken(null);
  174.         $session $request->getSession();
  175.         $emMaster $this->mr->getManager('master');
  176.         $company $emMaster->getRepository('App\Entity\Master\Company')->findOneByCode($companyCode);
  177.         $session->set("companyId"$company->getId());
  178.         $em CompanyService::getSlaveManagerByCompany($this->mr$this->params$company);
  179.         
  180.         $user $em->getRepository('App\Entity\Slave\User')->findOneByOneTimeCode($oneTimeCode);
  181.         $now = new \DateTime('now');
  183.         if($user != null && $user->getExpirationOneTimeCode() != null){
  185.             date_modify($user->getExpirationOneTimeCode(), '+3 hours');
  187.             if($now->format("YmdHis") < $user->getExpirationOneTimeCode()->format("YmdHis")){
  189.                 $form $this->createForm(PasswordCreationType::class, $user);
  190.                 $form->handleRequest($request);
  192.                 if($form->isSubmitted()){
  193.                     $valid true;
  195.                     $valid ValidationService::validateNotBlank($validator$form->get('password'));
  197.                     if($valid){
  198.                         $psw $form->get('password')->getData();
  199.                         $count 0;
  200.                         if(preg_match('/[0-9]/'$psw)) $count++;
  201.                         if(preg_match('/[a-z]/'$psw)) $count++;
  202.                         if(preg_match('/[A-Z]/'$psw)) $count++;
  203.                         if(preg_match('/[\!\#\$\&\(\)\.\+\-_]/'$psw)) $count++;
  204.                         if($count 3)
  205.                         {
  206.                             $this->addFlash('notice_warning'"La password inserita non è sufficientemente forte.");
  207.                             $valid false;
  208.                         }
  209.                     }
  211.                     if($valid && $form->isValid()){
  212.                         $password $passwordHasher->hashPassword($user$form->get("password")->getData());
  213.                         $user->setPassword($password);
  214.                         $user->setActive(1);
  215.                         $em->flush();
  216.                     
  217.                         $this->addFlash('notice_success'"La nuova password è stata creata correttamente; prima di poter accedere controllare se l'account è attivato.");
  218.                         return $this->redirectToRoute("login", array('companyCode' => $companyCode));
  219.                     }
  220.                 }
  221.                 
  222.                 return $this->render('security/password_create.html.twig', array(
  223.                     'oneTimeCode' => $oneTimeCode,
  224.                     'company' => $company,
  225.                     'form' => $form->createView()
  226.                 ));
  227.             }
  228.             else{
  229.                 $this->addFlash('notice_warning'"Il codice per la generazione della password è scaduto.<br>La password deve essere creata entro 3 ore dalla richiesta di attivazione.<br>Per poter proseguire è necessario richiedere un nuovo codice.");
  230.                 return $this->redirectToRoute("login", array('companyCode' => $companyCode));
  231.             }
  232.         }
  233.         else{
  234.             $this->addFlash('notice_warning'"Non è stato trovato nessun utente abbinato al codice inserito, nel caso sia stato fatto copia/incolla dall'e-mail ricevuta, verificare che non siano stati riportati degli spazi o caratteri aggiuntivi.");
  235.             return $this->redirectToRoute("login", array('companyCode' => $companyCode));
  236.         }
  237.     }
  239. }