src/User/SecurityController.php line 63

Open in your IDE?
  1. <?php
  3. namespace User;
  5. use Silex\Application;
  6. use Symfony\Component\HttpFoundation\Request;
  7. use Symfony\Component\Form\FormError;
  8. use User\Forms\PasswordForgetForm;
  9. use User\Forms\PasswordResetForm;
  10. use Support\ApiConnector;
  11. use Flagship\Components\Auth\Objects\Nonce;
  12. use Symfony\Component\HttpFoundation\Response;
  13. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  14. use User\Objects\User;
  16. class SecurityController
  17. {
  18.     public function getToggleLogin(Request $requestApplication $app)
  19.     {
  20.         //check what the session value is and replace it with the opposite language
  21.         $locale $app['session']->get('_locale') == 'en' 'fr' 'en';
  23.         $app['session']->set('_locale'$locale);
  24.         $app['translator']->setLocale($locale);
  26.         return $app->redirect($request->headers->get('referer'));
  27.     }
  29.     // public function getSsoLogin(Request $request, Application $app, $sso)
  30.     // {
  31.     //     list($userId, $nonce) = explode('|', $sso);
  32.     //     $impersonator = $request->query->get('impersonator', null);
  34.     //     if (!Nonce::verify($nonce, $app['smartship.private_key'].$userId.$impersonator.'ssologin', 1800)) {
  35.     //         return $app->abort(419);
  36.     //     }
  37.     //     $request->getSession()->set('_security_secured', null);
  38.     //     // We log the selected user in.
  39.     //     $app['security.user_provider.secured']->setSecurityProviderForUserId($userId);
  41.     //     $app['session']->set('_locale', $request->query->get('lang', 'en'));
  42.     //     $app['translator']->setLocale($request->query->get('lang', 'en'));
  44.     //     //in the event of there being an impersonator flag in the session when there shouldn't be one
  45.     //     if (!$request->query->has('impersonator') && $request->getSession()->has('_impersonator')) {
  46.     //         $request->getSession()->remove('_impersonator');
  47.     //     }
  49.     //     if ($request->query->has('impersonator')) {
  50.     //         $request->getSession()->set('_impersonator', $request->query->get('impersonator'));
  51.     //         // We make sure all URLS are now generated for that userID
  52.     //         $app['url_generator']->setCurrentImpersonate($userId);
  54.     //         // We save which client keys are useable in the session for the impersonator.
  55.     //         $app['security.user_provider.secured']->addAllowedToImpersonate($userId);
  57.     //         return $app->redirect($request->query->get('redirect', '/').'?impersonating='.$userId);
  58.     //     }
  60.     //     return $app->redirect($request->query->get('redirect', '/'));
  61.     // }
  63.     public function getPostPasswordForget(Request $requestApplication $app)
  64.     {
  65.         $inIframe $request->query->get('iframe') == 'true' 'true' 'false';
  66.         $form $app['form.factory']->createBuilder(PasswordForgetForm::class, null, ['app' => $app])
  67.             ->setAction($app['url_generator']->generate('security.get.password_forgot', ['iframe' => $inIframe]))
  68.             ->setMethod('post')
  69.             ->getForm();
  71.         $form->handleRequest($request);
  73.         if (!$form->isSubmitted() || !$form->isValid()) {
  74.             return $app['twig']->render('security/password_forgot.html.twig', ['form' => $form->createView()]);
  75.         }
  76.         $formData $form->getNormData();
  78.         $results $app['user.repositories.user']->findBy(['email_address' => $formData['email']]);
  80.         if (!$results) {
  81.             $form->get('email')->addError(new FormError($app['translator']->trans('This email is invalid', [], 'validators')));
  83.             return $app['twig']->render('security/password_forgot.html.twig', ['form' => $form->createView()]);
  84.         }
  86.         $user reset($results);
  88.         $app['helpers.apiheaders_service']->setUser($user);
  89.         $app['helpers.apiheaders_service']->setUserHeader($user['id']);
  91.         $ac = new ApiConnector($app);
  93.         $response $ac->post('/users/'.$user['id'].'/password-reset');
  95.         if ($response == false) {
  96.             return $app['twig']->render('security/password_forgot.html.twig', ['form' => $form->createView()]);
  97.         }
  99.         $app['session']->getFlashBag()->add('notifications', ['class' => 'success''message' => $app['translator']->trans('USER.GEN.CHECK_EMAIL')]);
  101.         return $app['twig']->render('security/password_forgot.html.twig', ['form' => $form->createView()]);
  102.     }
  104.     public function getPostPasswordReset(Request $requestApplication $app$key)
  105.     {
  106.         $results $app['user.repositories.forgot_password']->findBy(['unique_key' => $key]);
  108.         //redirect back to login page if the the key is invalid or the record has expired
  109.         if (!$results) {
  110.             $app['session']->getFlashBag()->add('notifications', ['class' => 'danger''message' => $app['translator']->trans('USER.ERROR.KEY_EXPIRED')]);
  112.             return $app->redirect($app['url_generator']->generate('user.login'));
  113.         }
  115.         if (date('Y-m-d H:i:s') > reset($results)['expires_at']) {
  116.             $app['session']->getFlashBag()->add('notifications', ['class' => 'danger''message' => $app['translator']->trans('USER.ERROR.KEY_EXPIRED')]);
  118.             $app['user.repositories.forgot_password']->delete(reset($results)['id']);
  120.             return $app->redirect($app['url_generator']->generate('user.login'));
  121.         }
  123.         $form $app['form.factory']->createBuilder(PasswordResetForm::class, null, [])
  124.             ->setAction($app['url_generator']->generate('security.get.password_reset', ['key' => $key]))
  125.             ->setMethod('post')
  126.             ->getForm();
  128.         $user $app['user.repositories.user']->find(reset($results)['user_id']);
  130.         $form->handleRequest($request);
  132.         if (!$form->isSubmitted() || !$form->isValid()) {
  133.             return $app['twig']->render('security/password_reset.html.twig', ['form' => $form->createView(), 'user' => $user]);
  134.         }
  136.         $data $form->getNormData();
  138.         $app['helpers.apiheaders_service']->setUser($user);
  139.         $app['helpers.apiheaders_service']->setUserHeader($user['id']);
  141.         $ac = new ApiConnector($app);
  143.         $response $ac->setPayload($data)->put('/users/'.$user['id'].'/edit');
  145.         if (!$response) {
  146.             return $app['twig']->render('security/password_reset.html.twig', ['form' => $form->createView(), 'user' => $user]);
  147.         }
  149.         $app['session']->getFlashBag()->add('notifications', ['class' => 'success''message' => $app['translator']->trans('USER.SUCCESS.RESET_PASSWORD')]);
  151.         //delete the record once the reset link has been used
  152.         $app['user.repositories.forgot_password']->delete(reset($results)['id']);
  154.         return $app->redirect($app['url_generator']->generate('user.login'));
  155.     }
  157.     public function postSwitchAccount(Request $requestApplication $app)
  158.     {
  159.         $newAccountId $request->request->get('company_id');
  160.         $userData $app['user']->getUser();
  162.         $newCompany $userData['companies'][$newAccountId] ?? null;
  163.         if (!$newCompany) {
  164.             return new Response(null401);
  165.         }
  166.         $request->getSession()->clear();
  168.         $userData array_merge($userData$newCompany);
  169.         $userData['password_hash'] = $app['user']->getPassword();
  171.         $request->getSession()->set('_security_secured'null);
  172.         $newUser = new User($userData);
  173.         $token = new UsernamePasswordToken($newUsernull'secured'$newUser->getRoles());
  174.         $app['security.token_storage']->setToken($token);
  175.         $app['session']->set('_security_secured'serialize($token));
  177.         return $app->redirect($app['url_generator']->generate('homepage'));
  178.     }
  179. }