src/Controller/Shop/UserController.php line 275

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Sylius package.
  5.  *
  6.  * (c) Paweł Jędrzejewski
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. declare(strict_types=1);
  14. namespace App\Controller\Shop;
  16. use App\Entity\User\ShopUser;
  17. use App\Security\Guard\ShopUserProxyAuthenticator;
  18. use App\Service\ApiBridge;
  19. use Doctrine\ORM\EntityManagerInterface;
  20. use FOS\RestBundle\View\View;
  21. use Psr\Container\ContainerExceptionInterface;
  22. use Psr\Container\NotFoundExceptionInterface;
  23. use Sylius\Bundle\ResourceBundle\Controller\RequestConfiguration;
  24. use Sylius\Bundle\ResourceBundle\Controller\ResourceController;
  25. use Sylius\Bundle\UserBundle\Form\Model\ChangePassword;
  26. use Sylius\Bundle\UserBundle\Form\Model\PasswordResetRequest;
  27. use Sylius\Bundle\UserBundle\Form\Type\UserChangePasswordType;
  28. use Sylius\Bundle\UserBundle\Form\Type\UserRequestPasswordResetType;
  29. use Sylius\Bundle\UserBundle\Form\Type\UserResetPasswordType;
  30. use Sylius\Bundle\UserBundle\UserEvents;
  31. use Sylius\Component\User\Model\UserInterface;
  32. use Sylius\Component\User\Repository\UserRepositoryInterface;
  33. use Sylius\Component\User\Security\Generator\GeneratorInterface;
  34. use Symfony\Component\EventDispatcher\GenericEvent;
  35. use Symfony\Component\Form\FormInterface;
  36. use Symfony\Component\HttpFoundation\RedirectResponse;
  37. use Symfony\Component\HttpFoundation\Request;
  38. use Symfony\Component\HttpFoundation\Response;
  39. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  40. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  41. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  42. use Symfony\Component\Security\Guard\GuardAuthenticatorHandler;
  43. use Symfony\Contracts\HttpClient\Exception\ClientExceptionInterface;
  44. use Symfony\Contracts\HttpClient\Exception\RedirectionExceptionInterface;
  45. use Symfony\Contracts\HttpClient\Exception\ServerExceptionInterface;
  46. use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
  47. use Webmozart\Assert\Assert;
  49. class UserController extends ResourceController
  50. {
  51.     public function changePasswordAction(Request $request): Response
  52.     {
  53.         $configuration $this->requestConfigurationFactory->create($this->metadata$request);
  55.         if (!$this->container->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  56.             throw new AccessDeniedException('You have to be registered user to access this section.');
  57.         }
  59.         $user $this->container->get('security.token_storage')->getToken()->getUser();
  61.         $changePassword = new ChangePassword();
  62.         $formType $this->getSyliusAttribute($request'form'UserChangePasswordType::class);
  63.         $form $this->createResourceForm($configuration$formType$changePassword);
  65.         if (in_array($request->getMethod(), ['POST''PUT''PATCH'], true) && $form->handleRequest($request)->isValid()) {
  66.             return $this->handleChangePassword($request$configuration$user$changePassword->getNewPassword());
  67.         }
  69.         if (!$configuration->isHtmlRequest()) {
  70.             return $this->viewHandler->handle($configurationView::create($formResponse::HTTP_BAD_REQUEST));
  71.         }
  73.         return new Response($this->container->get('twig')->render(
  74.             $configuration->getTemplate('changePassword.html'),
  75.             ['form' => $form->createView()]
  76.         ));
  77.     }
  79.     public function requestPasswordResetTokenAction(Request $requestApiBridge $api): Response
  80.     {
  81.         /** @var GeneratorInterface $generator */
  82.         $generator $this->container->get(sprintf('sylius.%s.token_generator.password_reset'$this->metadata->getName()));
  84.         return $this->prepareResetPasswordRequest(
  85.             $request,
  86.             $api,
  87.             UserEvents::REQUEST_RESET_PASSWORD_TOKEN
  88.         );
  89.     }
  91.     public function requestPasswordResetPinAction(Request $request): Response
  92.     {
  93.         /** @var GeneratorInterface $generator */
  94.         $generator $this->container->get(sprintf('sylius.%s.pin_generator.password_reset'$this->metadata->getName()));
  96.         return $this->prepareResetPasswordRequest($request$generatorUserEvents::REQUEST_RESET_PASSWORD_PIN);
  97.     }
  99.     /**
  100.      * @param Request $request
  101.      * @param ApiBridge $apiBridge
  102.      * @param string $token
  103.      * @param EntityManagerInterface $em
  104.      * @param GuardAuthenticatorHandler $guardAuthenticatorHandler
  105.      * @param ShopUserProxyAuthenticator $shopUserProxyAuthenticator
  106.      * @return Response
  107.      * @throws ClientExceptionInterface
  108.      * @throws ContainerExceptionInterface
  109.      * @throws NotFoundExceptionInterface
  110.      * @throws RedirectionExceptionInterface
  111.      * @throws ServerExceptionInterface
  112.      * @throws TransportExceptionInterface
  113.      * @throws \JsonException
  114.      */
  115.     public function resetPasswordAction(
  116.         Request $request,
  117.         ApiBridge $apiBridge,
  118.         string $token,
  119.         EntityManagerInterface $em,
  120.         GuardAuthenticatorHandler $guardAuthenticatorHandler,
  121.         ShopUserProxyAuthenticator $shopUserProxyAuthenticator
  122.     ): Response {
  123.         if (!$account $apiBridge->findCrmAccount($token)) {
  124.             throw new NotFoundHttpException('Account not found');
  125.         }
  127.         $form $this->createForm(UserResetPasswordType::class);
  128.         $form->handleRequest($request);
  130.         /** @var ShopUser */
  131.         $shopUser $em->getRepository(ShopUser::class)->findOneBy(['username' => $account['email']]);
  133.         if (!$shopUser) {
  134.             throw new NotFoundHttpException('Account not found');
  135.         }
  137.         $shopUser->setPasswordResetToken($token);
  139.         if ($form->isSubmitted()) {
  140.             if ($form->isValid()) {
  141.                 $data = [
  142.                     'id' => $account['id'],
  143.                     'password' => $form->get('password')->getData(), // TODO FIXME ne pas envoyer le pswd en clair d'une api à l'autre
  144.                     'enabled' => true,
  145.                     'activationToken' => null
  146.                 ];
  148.                 try {
  149.                     $apiBridge->updateCrmAccount($data);
  150.                 } catch (\Exception|TransportExceptionInterface $e) {
  151.                     $this->addTranslatedFlash('error''Le nouveau mot de passe est identique au précédent');
  153.                     return $this->redirectToRoute('sylius_shop_password_reset', ['token' => $token]);
  154.                 }
  156.                 /** @var ShopUser $shopUser */
  157.                 $shopUser->setEnabled(true);
  158.                 $shopUser->setEmailVerificationToken(null);
  159.                 $shopUser->setVerifiedAt(new \DateTime('now'));
  161.                 $em->flush();
  163.                 $this->addTranslatedFlash('success''sylius.user.reset_password');
  165.                 // Auto-login ShopUser & return to Homepage
  166.                 return $guardAuthenticatorHandler->authenticateUserAndHandleSuccess(
  167.                     $shopUser,
  168.                     $request,
  169.                     $shopUserProxyAuthenticator,
  170.                     'shop'
  171.                 );
  172.             }
  173.         }
  175.         $configuration $this->requestConfigurationFactory->create($this->metadata$request);
  176.         return new Response($this->container->get('twig')->render(
  177.             $configuration->getTemplate('resetPassword.html'),
  178.             [
  179.                 'form' => $form->createView(),
  180.                 'user' => $shopUser,
  181.             ]
  182.         ));
  183.     }
  185.     public function verifyAction(Request $requeststring $token): Response
  186.     {
  187.         $configuration $this->requestConfigurationFactory->create($this->metadata$request);
  188.         $redirectRoute $this->getSyliusAttribute($request'redirect'null);
  190.         $response $this->redirectToRoute($redirectRoute);
  192.         /** @var UserInterface|null $user */
  193.         $user $this->repository->findOneBy(['emailVerificationToken' => $token]);
  194.         if (null === $user) {
  195.             if (!$configuration->isHtmlRequest()) {
  196.                 return $this->viewHandler->handle($configurationView::create($configurationResponse::HTTP_BAD_REQUEST));
  197.             }
  199.             $this->addTranslatedFlash('error''sylius.user.verify_email_by_invalid_token');
  201.             return $this->redirectToRoute($redirectRoute);
  202.         }
  204.         $user->setVerifiedAt(new \DateTime());
  205.         $user->setEmailVerificationToken(null);
  206.         $user->enable();
  208.         $eventDispatcher $this->container->get('event_dispatcher');
  209.         $eventDispatcher->dispatch(new GenericEvent($user), UserEvents::PRE_EMAIL_VERIFICATION);
  211.         $this->manager->flush();
  213.         $eventDispatcher->dispatch(new GenericEvent($user), UserEvents::POST_EMAIL_VERIFICATION);
  215.         if (!$configuration->isHtmlRequest()) {
  216.             return $this->viewHandler->handle($configurationView::create($user));
  217.         }
  219.         $flashMessage $this->getSyliusAttribute($request'flash''sylius.user.verify_email');
  220.         $this->addTranslatedFlash('success'$flashMessage);
  222.         return $response;
  223.     }
  225.     public function requestVerificationTokenAction(Request $request): Response
  226.     {
  227.         $configuration $this->requestConfigurationFactory->create($this->metadata$request);
  228.         $redirectRoute $this->getSyliusAttribute($request'redirect''referer');
  230.         $user $this->getUser();
  231.         if (null === $user) {
  232.             if (!$configuration->isHtmlRequest()) {
  233.                 return $this->viewHandler->handle($configurationView::create($configurationResponse::HTTP_UNAUTHORIZED));
  234.             }
  236.             $this->addTranslatedFlash('notice''sylius.user.verify_no_user');
  238.             return $this->redirectHandler->redirectToRoute($configuration$redirectRoute);
  239.         }
  241.         if (null !== $user->getVerifiedAt()) {
  242.             if (!$configuration->isHtmlRequest()) {
  243.                 return $this->viewHandler->handle($configurationView::create($configurationResponse::HTTP_BAD_REQUEST));
  244.             }
  246.             $this->addTranslatedFlash('notice''sylius.user.verify_verified_email');
  248.             return $this->redirectHandler->redirectToRoute($configuration$redirectRoute);
  249.         }
  251.         /** @var GeneratorInterface $tokenGenerator */
  252.         $tokenGenerator $this->container->get(sprintf('sylius.%s.token_generator.email_verification'$this->metadata->getName()));
  253.         $user->setEmailVerificationToken($tokenGenerator->generate());
  255.         $this->manager->flush();
  257.         $eventDispatcher $this->container->get('event_dispatcher');
  258.         $eventDispatcher->dispatch(new GenericEvent($user), UserEvents::REQUEST_VERIFICATION_TOKEN);
  260.         if (!$configuration->isHtmlRequest()) {
  261.             return $this->viewHandler->handle($configurationView::create(nullResponse::HTTP_NO_CONTENT));
  262.         }
  264.         $this->addTranslatedFlash('success''sylius.user.verify_email_request');
  266.         return $this->redirectHandler->redirectToRoute($configuration$redirectRoute);
  267.     }
  269.     protected function prepareResetPasswordRequest(Request $requestApiBridge $apistring $senderEvent): Response
  270.     {
  271.         $configuration $this->requestConfigurationFactory->create($this->metadata$request);
  273.         $passwordReset = new PasswordResetRequest();
  274.         $formType $this->getSyliusAttribute($request'form'UserRequestPasswordResetType::class);
  275.         $form $this->createResourceForm($configuration$formType$passwordReset);
  276.         $template $this->getSyliusAttribute($request'template'null);
  277.         if ($configuration->isHtmlRequest()) {
  278.             Assert::notNull($template'Template is not configured.');
  279.         }
  281.         if (in_array($request->getMethod(), ['POST''PUT''PATCH'], true) && $form->handleRequest($request)->isValid()) {
  282.             $userRepository $this->repository;
  284.             /** @var UserRepositoryInterface $userRepository */
  285.             Assert::isInstanceOf($userRepositoryUserRepositoryInterface::class);
  287.             $user $userRepository->findOneByEmail($passwordReset->getEmail());
  288.             if (null !== $user) {
  289.                 $this->handleResetPasswordRequest($api$user$senderEvent);
  290.             }
  292.             if (!$configuration->isHtmlRequest()) {
  293.                 return $this->viewHandler->handle($configurationView::create(nullResponse::HTTP_NO_CONTENT));
  294.             }
  296.             $this->addTranslatedFlash('success''sylius.user.reset_password_request');
  297.             $redirectRoute $this->getSyliusAttribute($request'redirect'null);
  298.             Assert::notNull($redirectRoute'Redirect is not configured.');
  300.             if (is_array($redirectRoute)) {
  301.                 return $this->redirectHandler->redirectToRoute(
  302.                     $configuration,
  303.                     $configuration->getParameters()->get('redirect')['route'],
  304.                     $configuration->getParameters()->get('redirect')['parameters']
  305.                 );
  306.             }
  308.             return $this->redirectHandler->redirectToRoute($configuration$redirectRoute);
  309.         }
  311.         if (!$configuration->isHtmlRequest()) {
  312.             return $this->viewHandler->handle($configurationView::create($formResponse::HTTP_BAD_REQUEST));
  313.         }
  315.         return new Response($this->container->get('twig')->render(
  316.             $template,
  317.             [
  318.                 'form' => $form->createView(),
  319.             ]
  320.         ));
  321.     }
  323.     protected function addTranslatedFlash(string $typestring $message): void
  324.     {
  325.         $translator $this->container->get('translator');
  326.         $this->container->get('session')->getFlashBag()->add($type$translator->trans($message, [], 'flashes'));
  327.     }
  329.     /**
  330.      * @param object $object
  331.      */
  332.     protected function createResourceForm(
  333.         RequestConfiguration $configuration,
  334.         string $type,
  335.         $object
  336.     ): FormInterface {
  337.         if (!$configuration->isHtmlRequest()) {
  338.             return $this->container->get('form.factory')->createNamed(''$type$object, ['csrf_protection' => false]);
  339.         }
  341.         return $this->container->get('form.factory')->create($type$object);
  342.     }
  344.     protected function handleExpiredToken(Request $requestRequestConfiguration $configurationUserInterface $user): Response
  345.     {
  346.         $user->setPasswordResetToken(null);
  347.         $user->setPasswordRequestedAt(null);
  349.         $this->manager->flush();
  351.         if (!$configuration->isHtmlRequest()) {
  352.             return $this->viewHandler->handle($configurationView::create($userResponse::HTTP_BAD_REQUEST));
  353.         }
  355.         $this->addTranslatedFlash('error''sylius.user.expire_password_reset_token');
  357.         $redirectRouteName $this->getSyliusAttribute($request'redirect'null);
  358.         Assert::notNull($redirectRouteName'Redirect is not configured.');
  360.         return new RedirectResponse($this->container->get('router')->generate($redirectRouteName));
  361.     }
  363.     protected function handleResetPasswordRequest(
  364.         ApiBridge $api,
  365.         UserInterface $user
  366.     ): void {
  367.         $redirectUrl $this->generateUrl(
  368.             'sylius_shop_request_password_reset_token',
  369.             [],
  370.             UrlGeneratorInterface::ABSOLUTE_URL
  371.         );
  373.         $api->requestCrmResetPassword($user->getEmail(), $redirectUrl '/');
  374.     }
  376.     protected function handleResetPassword(
  377.         Request $request,
  378.         RequestConfiguration $configuration,
  379.         UserInterface $user,
  380.         string $newPassword
  381.     ): Response {
  382.         $user->setPlainPassword($newPassword);
  383.         $user->setPasswordResetToken(null);
  384.         $user->setPasswordRequestedAt(null);
  386.         $dispatcher $this->container->get('event_dispatcher');
  387.         $dispatcher->dispatch(new GenericEvent($user), UserEvents::PRE_PASSWORD_RESET);
  389.         $this->manager->flush();
  390.         $this->addTranslatedFlash('success''sylius.user.reset_password');
  392.         $dispatcher->dispatch(new GenericEvent($user), UserEvents::POST_PASSWORD_RESET);
  394.         if (!$configuration->isHtmlRequest()) {
  395.             return $this->viewHandler->handle($configurationView::create(nullResponse::HTTP_NO_CONTENT));
  396.         }
  398.         $redirectRouteName $this->getSyliusAttribute($request'redirect'null);
  399.         Assert::notNull($redirectRouteName'Redirect is not configured.');
  401.         return new RedirectResponse($this->container->get('router')->generate($redirectRouteName));
  402.     }
  404.     protected function handleChangePassword(
  405.         Request $request,
  406.         RequestConfiguration $configuration,
  407.         UserInterface $user,
  408.         string $newPassword
  409.     ): Response {
  410.         $user->setPlainPassword($newPassword);
  412.         $dispatcher $this->container->get('event_dispatcher');
  413.         $dispatcher->dispatch(new GenericEvent($user), UserEvents::PRE_PASSWORD_CHANGE);
  415.         $this->manager->flush();
  416.         $this->addTranslatedFlash('success''sylius.user.change_password');
  418.         $dispatcher->dispatch(new GenericEvent($user), UserEvents::POST_PASSWORD_CHANGE);
  420.         if (!$configuration->isHtmlRequest()) {
  421.             return $this->viewHandler->handle($configurationView::create(nullResponse::HTTP_NO_CONTENT));
  422.         }
  424.         $redirectRouteName $this->getSyliusAttribute($request'redirect'null);
  425.         Assert::notNull($redirectRouteName'Redirect is not configured.');
  427.         return new RedirectResponse($this->container->get('router')->generate($redirectRouteName));
  428.     }
  430.     protected function getUser(): ?UserInterface
  431.     {
  432.         $user parent::getUser();
  433.         $authorizationChecker $this->container->get('security.authorization_checker');
  435.         if (
  436.             $authorizationChecker->isGranted('IS_AUTHENTICATED_REMEMBERED') &&
  437.             $user instanceof UserInterface
  438.         ) {
  439.             return $user;
  440.         }
  442.         return null;
  443.     }
  445.     private function getSyliusAttribute(Request $requeststring $attribute$default null)
  446.     {
  447.         $attributes $request->attributes->get('_sylius');
  449.         return $attributes[$attribute] ?? $default;
  450.     }
  451. }