src/Controller/LoginController.php line 47

  1. <?php
  3. namespace App\Controller;
  5. use App\Classes\ASAuthUtility;
  6. use App\Classes\ASUtility;
  7. use App\Classes\ConfigurationUtility;
  8. use App\Classes\WorkersUtility;
  9. use App\Entity\Configurations;
  10. use App\Entity\Users;
  11. use App\Entity\Workers;
  12. use App\Service\ASRedis;
  13. use Doctrine\ORM\EntityManagerInterface;
  14. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpFoundation\Response;
  17. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. class LoginController extends AbstractController
  22. {
  23.     private $entityManager;
  24.     private $workersUtility;
  25.     private $baseUrl;
  26.     private $encoder;
  28.     private $asUtility;
  29.     private $asRedis;
  31.     public function __construct(
  32.         EntityManagerInterface $entityManager,
  33.         WorkersUtility $workersUtility,
  34.         UserPasswordHasherInterface $encoder,
  35.         ASUtility $asUtility,
  36.         ASRedis $asRedis
  37.     ) {
  38.         $this->entityManager $entityManager;
  39.         $this->workersUtility $workersUtility;
  40.         $this->baseUrl ConfigurationUtility::getBaseUrl();
  41.         $this->encoder $encoder;
  42.         $this->asRedis $asRedis;
  43.         $this->asUtility $asUtility;
  44.     }
  46.     #[Route(path'/login'name'app_login')]
  47.     public function login(AuthenticationUtils $authenticationUtilsRequest $request): Response
  48.     {
  49.         $conferenceId $request->query->getInt('conferenceId');
  50.         $schoolId $request->query->getInt('schoolId');
  51.         $G5MID $request->query->get('G5MID');
  52.         $aglId $request->query->get('agl_id');
  53.         
  54.         if ($conferenceId !== null && $schoolId !== null && $G5MID !== null) {
  56.             if ($this->getUser()) {
  57.                 $this->container->get('security.token_storage')->setToken(null);
  58.             }
  60.             $objASAuthUtility = new ASAuthUtility(
  61.                 $this->asUtility,
  62.                 $this->asRedis,
  63.                 $conferenceId,
  64.                 $schoolId,
  65.                 $G5MID,
  66.                 $aglId
  67.             );
  68.             
  69.             $aUserInfo $objASAuthUtility->getASUserInfoByG5MID($G5MID);
  70.             if ($aUserInfo) {
  71.                 $this->asRedis->redis->user($G5MID$objASAuthUtility->userId);
  72.                 $objASAuthUtility->storeASUserInfoToRedis($aUserInfo);
  73.                 return $this->redirectToRoute('assignment_index');
  74.             } else {
  75.                 $this->asRedis->deleteASUserRedis();
  76.                 return $this->json("You must login first before accessing this page...");
  77.             }
  79.         } elseif ($this->asRedis->isValidASUserRedis($this->asRedis->validateASUserRedis()) === true) {
  81.             //todo.. if redis still valid....
  82.             return $this->redirectToRoute('assignment_index');
  84.         } elseif ($this->getUser()) {
  86.             $this->asRedis->redis->user(''$this->getUser()->getId());
  87.             $this->asRedis->deleteASUserRedis();
  88.             return $this->redirectToRoute('personal_info_index');
  90.         } else {
  92.             $showBecomeAnEventWorker $this->entityManager->getRepository(Configurations::class)
  93.                 ->findByCode(Configurations::CONF_SHOW_BECOME_AN_EVENT_WORKER);
  95.             // get the login error if there is one
  96.             $error $authenticationUtils->getLastAuthenticationError();
  97.             // last username entered by the user
  98.             $lastUsername $authenticationUtils->getLastUsername();
  99.             return $this->render(
  100.                 'login/login.html.twig',
  101.                 [
  102.                     'isShowBecomeAnEventWorker' => $showBecomeAnEventWorker,
  103.                     'last_username' => $lastUsername,
  104.                     'error' => $error
  105.                 ]
  106.             );
  108.         }
  109.     }
  111.     #[Route(path'/reset'name'app_pass_reset')]
  112.     public function passwordReset()
  113.     {
  114.         return $this->render('login/reset.html.twig', ['email_sent' => '''error' => '']);
  115.     }
  117.     /**
  118.      * @param Request $request
  119.      * @return Response
  120.      */
  121.     #[Route(path'/spre'name'app_send_pass_reset_email')]
  122.     public function sendPasswordResetEmail(Request $request)
  123.     {
  124.         $objEntityManager $this->entityManager;
  125.         $email $request->query->get('email');
  126.         $objUser $this->entityManager->getRepository(Users::class)->findOneBy(['username' => $email]);
  127.         $email_sent '';
  128.         $status true;
  130.         $rschoolLogo ConfigurationUtility::getRSchoolLogo();
  132.         // Send email contains password reset form link
  133.         if ($objUser) {
  134.             $objWorker $this->entityManager->getRepository(Workers::class)
  135.                 ->findOneBy(['user_id' => $objUser->getId()]);
  136.             $hash hash('ripemd160'$email) . '_' $objUser->getId();
  137.             $message '';
  139.             $details = [
  140.                 'email_subject' => 'Password Reset Verification',
  141.                 'email_to' => $email,
  142.                 'savable' => true,
  143.             ];
  145.             $body $this->renderView(
  146.                 'login/email/email_reset_password_link.html.twig',
  147.                 [
  148.                     'admin' => 'Event Worker Admin',
  149.                     'worker_email' => $email,
  150.                     'worker_name' => $objWorker->getFirstName() . ' ' $objWorker->getLastName(),
  151.                     'link' => $this->baseUrl '/pr-' $hash,
  152.                     'logo' => $rschoolLogo
  153.                 ]
  154.             );
  156.             $response $this->workersUtility->email($details$body);
  158.             if ($response) {
  159.                 $minutes_to_add 15;
  160.                 $pwResetExpiration = (new \DateTime())->add(new \DateInterval('PT' $minutes_to_add 'M'));
  162.                 $objUser->setPwResetExpiration($pwResetExpiration);
  163.                 $objUser->setIsRequestNewPassword(1);
  164.                 $objEntityManager->persist($objUser);
  165.                 $objEntityManager->flush();
  167.                 $email_sent true;
  168.             }
  169.         } else {
  170.             $message 'Invalid email address.';
  171.             $status false;
  172.         }
  174.         return $this->json(['email_sent' => $email_sent'message' => $message'status' => $status]);
  175.     }
  177.     /**
  178.      * @param Request $request
  179.      * @return Response
  180.      */
  181.     #[Route(path'/pr-{slug}'name'app_pass_reset_link')]
  182.     public function passwordResetLink(Request $request)
  183.     {
  184.         $slug $request->attributes->get('slug');
  185.         $user_id substr($slugstrpos($slug"_") + 1);
  186.         $objWorker $this->entityManager->getRepository(Users::class)->findOneBy(['id' => $user_id]);
  187.         $current_date = new \DateTime();
  188.         $error '';
  190.         if ($objWorker->getIsRequestNewPassword()) {
  191.             if (!($objWorker->getPwResetExpiration() >= $current_date)) {
  192.                 $error 'The specified link is invalid. The reset links can 
  193.                 be used only once and only within some hours after being sent. 
  194.                 Either the link is old or it was already used before.';
  195.             }
  196.         } else {
  197.             $error 'The specified link is invalid. 
  198.             The reset links can be used only once and only within some hours after being sent. 
  199.             Either the link is old or it was already used before.';
  200.         }
  202.         return $this->render(
  203.             'login/password_reset_form.html.twig',
  204.             ['user_id' => $user_id'error' => $error]
  205.         );
  206.     }
  208.     /**
  209.      * @Route("/save", name="app_save_new_password")
  210.      * @param Request $request
  211.      * @return Response
  212.      */
  213.     #[Route(path'/save'name'app_save_new_password')]
  214.     public function saveNewPassword(Request $request)
  215.     {
  216.         $user_id $request->request->get('user_id');
  217.         $new_pass $request->request->get('new_password');
  218.         $objEntityManager $this->entityManager;
  220.         if ($user_id) {
  221.             $objUser $this->entityManager->getRepository(Users::class)->findOneBy(['id' => $user_id]);
  222.             $objUser->setPassword($this->encoder->hashPassword(new Users(), $new_pass));
  223.             $objUser->setIsRequestNewPassword(0);
  224.             $objEntityManager->persist($objUser);
  225.             $objEntityManager->flush();
  226.         }
  228.         return $this->render('login/password_reset_form.html.twig', ['user_id' => $user_id'success' => true]);
  229.     }
  231.     #[Route(path'/logout'name'app_logout')]
  232.     public function logout(Request $request): void
  233.     {
  234.         $this->asRedis->deleteASUserRedis();
  235.         $this->asRedis->redis->delete('has_access_payment');
  236.         $this->asRedis->redis->delete('utility');
  237.         $this->asRedis->redis->delete('on_auth_worker_password');
  238.     }
  239. }