src/Controller/Security/RegisterController.php line 85

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Security;
  5. use App\Entity\ChangePasswordDTO;
  6. use App\Entity\Region;
  7. use App\Form\ChangePasswordType;
  8. use App\Repository\CountryRepository;
  9. use App\Repository\RegionRepository;
  10. use App\Repository\RoleRepository;
  11. use App\Repository\UserRepository;
  12. use App\Services\EmailService;
  13. use Doctrine\ORM\EntityManagerInterface;
  14. use Psr\EventDispatcher\EventDispatcherInterface;
  15. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  16. use Symfony\Bundle\FrameworkBundle\Controller\Controller;
  17. use Symfony\Component\Form\FormError;
  18. use Symfony\Component\HttpFoundation\RedirectResponse;
  19. use Symfony\Component\HttpFoundation\Request;
  20. use Symfony\Component\HttpFoundation\RequestStack;
  21. use Symfony\Component\HttpFoundation\Response;
  22. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  23. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  24. use Symfony\Component\Routing\Annotation\Route;
  25. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  26. use Symfony\Component\Security\Csrf\TokenStorage\TokenStorageInterface;
  27. use Symfony\Component\Security\Http\Authentication\UserAuthenticatorInterface;
  28. use Symfony\Component\Security\Http\Authenticator\FormLoginAuthenticator;
  29. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  30. use App\Entity\Role;
  31. use App\Entity\User;
  32. use App\Form\UserType;
  33. use App\Tools\Utils;
  34. use Symfony\Contracts\Translation\TranslatorInterface;
  36. class RegisterController extends AbstractController {
  37.     private EntityManagerInterface $em;
  38.     private CountryRepository $countryRepository;
  39.     private RegionRepository $regionRepository;
  40.     private UserRepository $userRepository;
  41.     private UserPasswordHasherInterface $hasher;
  42.     private RoleRepository $roleRepository;
  43.     private TokenStorageInterface $tokenStorage;
  44.     private RequestStack $requestStack;
  45.     private EventDispatcherInterface $dispatcher;
  46.     private EmailService $emailService;
  47.     private UserAuthenticatorInterface $authenticator;
  48.     private UserAuthenticatorInterface $userAuthenticator;
  49.     private FormLoginAuthenticator $formLoginAuthenticator;
  50.     private TranslatorInterface $translator;
  52.     public function __construct(
  53.         EntityManagerInterface $em,
  54.         CountryRepository $countryRepository,
  55.         RegionRepository $regionRepository,
  56.         UserRepository $userRepository,
  57.         UserPasswordHasherInterface $hasher,
  58.         RoleRepository $roleRepository,
  59.         TokenStorageInterface $tokenStorage,
  60.         RequestStack $requestStack,
  61.         EventDispatcherInterface $dispatcher,
  62.         EmailService $emailService,
  63.         UserAuthenticatorInterface $authenticator,
  64.         UserAuthenticatorInterface $userAuthenticator,
  65.         FormLoginAuthenticator $formLoginAuthenticator,
  66.         TranslatorInterface $translator
  67.     ) {
  68.         $this->em $em;
  69.         $this->countryRepository $countryRepository;
  70.         $this->regionRepository $regionRepository;
  71.         $this->userRepository $userRepository;
  72.         $this->hasher $hasher;
  73.         $this->roleRepository $roleRepository;
  74.         $this->tokenStorage $tokenStorage;
  75.         $this->requestStack $requestStack;
  76.         $this->dispatcher $dispatcher;
  77.         $this->emailService $emailService;
  78.         $this->authenticator $authenticator;
  79.         $this->userAuthenticator $userAuthenticator;
  80.         $this->formLoginAuthenticator $formLoginAuthenticator;
  81.         $this->translator $translator;
  82.     }
  84.     #[Route(path'/createAccount'name'register_create_account'methods: ['GET''POST'])]
  85.     public function createAccountAction(Request $request): RedirectResponse|Response {
  86.         $user = new User();
  87.         $form $this->createForm(UserType::class, $user);
  88.         $countries $this->countryRepository->findByValid(true);
  89.         $allCountries $this->countryRepository->findAll();
  91.         //Adaptation for DBTA
  92.         if($_ENV['STRUCT_PROVINCE_COUNTRY_CITY'] == 'true') {
  93.             $form $this->createForm(UserType::class, $user);
  94.             $countries $this->regionRepository->findByValid(true);
  95.             $allCountries $this->regionRepository->findAll();
  96.         }
  97.         $form->handleRequest($request);
  99.         $isValidPhone false;
  101.         if ($form->isSubmitted() && $form->isValid()) {
  102.             $existUser $this->userRepository->findOneByPhone($user->getPhone());
  104.             $typePerson $request->get('userbundle_user')['typePerson'];
  105.             $country $user->getCountry();
  106.             $residenceCountry null;
  108.             //Adaptation for DBTA
  109.             if($_ENV['STRUCT_PROVINCE_COUNTRY_CITY'] == 'true') {
  110.                 $country $user->getRegion()->getCountry();
  111.                 $country->setPhoneCode($user->getRegion()->getPhoneCode());
  112.                 $country->setPhoneDigit($user->getRegion()->getPhoneDigit());
  113.                 $user->setCountry($user->getRegion()->getCountry());
  114.             }
  116.             if ($typePerson != Role::ROLE_ADMIN && !$country) {
  117.                 $this->addFlash('danger'$this->translator->trans('flashbag.the_country_field_is_mandatory'));
  118.                 return $this->render('user/register.html.twig', [
  119.                     'user' => $user,
  120.                     'form' => $form->createView(),
  121.                     'countries' => $countries,
  122.                     'allCountries' => $allCountries
  123.                 ]);
  124.             }
  127.             if (isset ($request->get('userbundle_user')['diaspora'])) {
  128.                 // $residenceCountryStr = null;
  129.                 if($_ENV['STRUCT_PROVINCE_COUNTRY_CITY'] == 'true') {
  130.                     $residenceCountryStr $request->get('userbundle_user')['residenceRegion'];
  131.                 } else {
  132.                     $residenceCountryStr $request->get('userbundle_user')['residenceCountry'];
  133.                 }
  135.                 if( ! $residenceCountryStr) {
  136.                     $this->addFlash('danger'$this->translator->trans('flashbag.the_country_of_residence_field_is_mandatory'));
  137.                     return $this->render('user/register.html.twig', [
  138.                         'user' => $user,
  139.                         'form' => $form->createView(),
  140.                         'countries' => $countries,
  141.                         'allCountries' => $allCountries
  142.                     ]);
  143.                 //Récupération du pays de résidence
  144.                 } else {
  145.                     $residenceCountry $this->countryRepository->find($residenceCountryStr);
  146.                     if($_ENV['STRUCT_PROVINCE_COUNTRY_CITY'] == 'true') {
  147.                         $residenceCountry $this->regionRepository->find($residenceCountryStr);
  148.                     }
  149.                 }
  150.             }
  152.             //verification de l'indicatif pays
  153.             $phoneCode '+' $country->getPhoneCode();
  154.             if($residenceCountry) {
  155.                 $phoneCode '+' $residenceCountry->getPhoneCode();
  156.             }
  157.             $nationalPhone "";
  159.             //verification du nombre de digits téléphonique du pays
  160.             $phoneDigit '+' $country->getPhoneDigit();
  161.             if($residenceCountry) {
  162.                 $phoneDigit '+' $residenceCountry->getPhoneDigit();
  163.             }
  165.             if (strncmp($phoneCode$user->getPhone(), strlen($phoneCode)) === 0) {
  166.                 $nationalPhone substr($user->getPhone(), strlen($phoneCode));
  167.                 $isValidPhone true;
  168.             } else {
  169.                 $errorMessage $this->translator->trans('flashbag.the_number_must_start_with_number', ['{number}' => $phoneCode]);
  170.                 $this->addFlash('danger'$errorMessage);
  171.             }
  173.             if ($isValidPhone && strlen($nationalPhone) > 0) {
  174.                 // suppression du 0 pour le national
  175.                 if ($nationalPhone[0] == '0') {
  176.                     $nationalPhone substr($nationalPhone1);
  177.                 }
  179.                 // reconstruit le numéro de téléphone sans le 0 national
  180.                 $validPhone $phoneCode $nationalPhone;
  181.                 if ($validPhone !== $user->getPhone()) {
  182.                     $user->setPhone($validPhone);
  183.                     $mesgWarn $this->translator->trans('flashbag.your_login_account_is_renamed_to_name', ['{name}' => $validPhone]);
  184.                     $this->addFlash('warning'$mesgWarn);
  185.                 }
  186.             }
  187.             // vérification de la conformité du numéro de téléphone
  188.             if ($isValidPhone) {
  189.                 if (strlen($nationalPhone) != $phoneDigit) {
  190.                     $isValidPhone false;
  191.                     $errorMessage $this->translator->trans('flashbag.the_number_without_the_country_code_must_have_number_digits', ['{number}' => (int)$phoneDigit]);
  192.                     $this->addFlash('danger'$errorMessage);
  193.                 }
  194.                 if (!ctype_digit($nationalPhone)) {
  195.                     $isValidPhone false;
  196.                     $errorMessage $this->translator->trans('flashbag.wrong_phone_number_syntax');
  197.                     $this->addFlash('danger'$errorMessage);
  198.                 }
  199.             }
  201.             // vérification de l'intégrité du mot de passe :
  202.             if ($isValidPhone) {
  203.                 if (strlen($user->getPlainPassword()) < 6) {
  204.                     $isValidPhone false;
  205.                     $errorMessage $this->translator->trans('flashbag.the_password_must_have_at_least_6_characters');
  206.                     $this->addFlash('danger'$errorMessage);
  207.                 }
  208.             }
  210.             // ecriture en base
  211.             if ($isValidPhone) {
  212.                 if ($existUser == null) {
  213.                     $typePerson $request->get('userbundle_user')['typePerson'];
  214.                     $redirection $this->addRoleAndGererateRedirection($user$typePerson);
  216.                     // Supprime les espaces du numéro de téléphone
  217.                     $user->setPhone(preg_replace('/\s/'''$user->getPhone()));
  219.                     // Encode le password
  220.                     $user->setPassword($this->hasher->hashPassword($user$user->getPlainPassword()));
  222.                     // synchronise le username avec le phone
  223.                     $user->setUsername($user->getPhone());
  225.                     // créé l'adresse mail fictive
  226.                     $user->setEmail($user->getPhone() . "@domaine.extension");
  228.                     // si établissement , alors création de la clé API
  229.                     if ($typePerson == 'ROLE_ETABLISSEMENT') {
  230.                         $user->setApiToken(bin2hex(random_bytes(32)));
  231.                     }
  233.                     $this->em->persist($user);
  234.                     $this->em->flush();
  236.                     // Authentification de l'utilisateur
  237.                     $this->authenticator->authenticateUser(
  238.                         $user,
  239.                         $this->formLoginAuthenticator,
  240.                         $request
  241.                     );
  242.                     return $redirection;
  243.                 } else {
  244.                     $errorMessage $this->translator->trans('flashbag.this_phone_number_is_already_in_use');
  245.                     $this->addFlash('danger'$errorMessage);
  246.                 }
  247.             }
  248.         }
  250.         return $this->render('user/register.html.twig', [
  251.             'user' => $user,
  252.             'form' => $form->createView(),
  253.             'countries' => $countries,
  254.             'allCountries' => $allCountries
  255.         ]);
  256.     }
  258.     private function addRoleAndGererateRedirection(User &$user$typePerson): RedirectResponse {
  259.         switch ($typePerson) {
  260.             case Utils::COMPANY:
  261.                 {
  262.                     $user->addProfil($this->createRole(Utils::COMPANY));
  263.                     $flashBag $this->translator->trans('flashbag.welcome_before_answering_the_satisfaction_questionnaire_please_complete_your_profile_below');
  264.                     $redirect $this->redirectToRoute('front_company_new');
  265.                 }
  266.                 break;
  267.             case Utils::PERSON_DEGREE:
  268.                 {
  269.                     $user->addProfil($this->createRole(Utils::PERSON_DEGREE));
  270.                     $flashBag $this->translator->trans('flashbag.Welcome_please_complete_your_profile_below');
  271.                     $redirect $this->redirectToRoute('front_persondegree_new');
  272.                 }
  273.                 break;
  274.             case Utils::SCHOOL:
  275.                 {
  276.                     $user->addProfil($this->createRole(Utils::SCHOOL));
  277.                     $flashBag $this->translator->trans('flashbag.welcome_please_complete_your_profile_below');
  278.                     $redirect $this->redirectToRoute('front_school_new');
  279.                 }
  280.                 break;
  281.             default:
  282.                 throw new NotFoundHttpException($this->translator->trans('flashbag.unable_to_create_an_account'));
  283.         }
  284.         $this->addFlash(Utils::OFB_SUCCESS$flashBag);
  285.         return $redirect;
  286.     }
  288.     private function createRole(string $roleName): ?Role {
  289.         $role $this->roleRepository
  290.             ->findOneBy(['role' => $roleName]);
  292.         return ($role) ?: new Role($roleName);
  293.     }
  295.     /**
  296.      * @param Request $request
  297.      * @param User $user
  298.      */
  299.     private function authenticateUser(Request $requestUser $user) {
  300.         $token = new UsernamePasswordToken($user'main');
  301.         $this->tokenStorage->setToken($token);
  303.         $this->requestStack->getSession()->set('_security_main'serialize($token));
  305.         // Déclencher l'événement de connexion manuellement
  306.         $event = new InteractiveLoginEvent($request$token);
  307.         $this->dispatcher->dispatch($event'security.interactive_login');
  308.     }
  310.     /**
  311.      * Ask to change password.
  312.      */
  313.     #[Route(path'/askNewPassword'name'register_ask_new_password'methods: ['GET''POST'])]
  314.     public function askNewPasswordAction(Request $request): RedirectResponse|Response {
  315.         $user = new User();
  316.         $form $this->createForm(UserType::class, $user);
  317.         $form->handleRequest($request);
  319.         $submitPhone $request->get('userbundle_user')['phone'] ?? null;
  320.         $submitEmail $request->get('userbundle_user')['email'] ?? null;
  321.         $submitCode $request->get('userbundle_user')['validCode'] ?? null;
  323.         if ($form->isSubmitted() && $form->isValid()) {
  324.             $isValidEmail false;
  326.             $existUser $this->userRepository->findOneByPhone($submitPhone);
  328.             if ($existUser) {
  329.                 // si user est diplômé
  330.                 if ($existUser->getPersonDegree()) {
  331.                     $personDegree $existUser->getPersonDegree();
  332.                     $existEmail $personDegree->getEmail();
  333.                     if ($existEmail == $submitEmail) {
  334.                         $isValidEmail true;
  335.                     }
  336.                     // si user est établissement
  337.                 } elseif ($existUser->getSchool()) {
  338.                     $school $existUser->getSchool();
  339.                     $existEmail $school->getEmail();
  340.                     if ($existEmail == $submitEmail) {
  341.                         $isValidEmail true;
  342.                     }
  343.                     // si user est entreprise
  344.                 } elseif ($existUser->getCompany()) {
  345.                     $company $existUser->getCompany();
  346.                     $existEmail $company->getEmail();
  347.                     if ($existEmail == $submitEmail) {
  348.                         $isValidEmail true;
  349.                     }
  350.                     // si user est admin ou législateur
  351.                 } else {
  352.                     $existEmail $existUser->getEmail();
  353.                     if ($existEmail == $submitEmail) {
  354.                         $isValidEmail true;
  355.                     }
  356.                 }
  357.             }
  359.             // envoie du message email
  360.             if (strlen($submitCode) == 0) {
  361.                 if ($isValidEmail) {
  362.                     // creation du code d'activation
  363.                     $code rand(10028902);
  364.                     $this->requestStack->getSession()->set('code'$code);
  365.                     $this->requestStack->getSession()->set('refu'$existUser->getId());
  367.                     $this->emailService->sendCodeChangePassword($submitEmail$code);
  368.                     $this->addFlash('success'$this->translator->trans('flashbag.your_code_is_sent_by_email'));
  370.                 } elseif (strlen($submitEmail) == 0) {
  371.                     $this->addFlash('danger'$this->translator->trans('flashbag.sending_the_code_by_sms_is_not_yet_authorized_please_enter_a_valid_email_address'));
  372.                 } else {
  373.                     $this->addFlash('danger'$this->translator->trans('flashbag.your_email_does_not_match_your_profile'));
  374.                 }
  376.             } elseif ((strlen($submitCode) == 4) && (is_numeric($submitCode))) {
  377.                 if ($submitCode == $this->requestStack->getSession()->get('code')) {
  378.                     $this->addFlash('success'$this->translator->trans('flashbag.enter_your_new_password'));
  379.                     return $this->redirectToRoute('register_change_password', array('user' => $existUser));
  380.                 } else {
  381.                     $this->addFlash('danger'$this->translator->trans('flashbag.your_code_is_invalid'));
  382.                 }
  383.             } else {
  384.                 $this->addFlash('danger'$this->translator->trans('flashbag.the_code_must_have_4_digits'));
  385.             }
  386.         }
  388.         return $this->render('user/ask_password.html.twig', [
  389.             'user' => $user,
  390.             'form' => $form->createView(),
  391.             'userphone' => $submitPhone,
  392.             'useremail' => $submitEmail,
  393.         ]);
  394.     }
  396.     #[Route(path'/change_password'name'register_change_password'methods: ['POST''GET'])]
  397.     public function changePasswordAction(Request $request): RedirectResponse|Response {
  398.         $user $this->userRepository->findOneById($this->requestStack->getSession()->get('refu'));
  400.         $changePasswordDTO = new ChangePasswordDTO();
  401.         $form $this->createForm(ChangePasswordType::class, $changePasswordDTO);
  402.         $form->handleRequest($request);
  404.         if ($form->isSubmitted() && $form->isValid()) {
  405.             $firstPassword $request->get('userbundle_user')['plainPassword']['first'];
  406.             $secondPassword $request->get('userbundle_user')['plainPassword']['second'];
  408.             if ($firstPassword === $secondPassword) {
  409.                 $plainPassword $changePasswordDTO->getPlainPassword();
  411.                 if (strlen($plainPassword) < 6) {
  412.                     $errorMessage 'Le mot de passe doit avoir au minimum 6 caractères ';
  413.                     $this->addFlash('danger'$errorMessage);
  414.                 } else {
  415.                     $user->setPassword($this->hasher->hashPassword($user$plainPassword));
  417.                     $this->em->persist($user);
  418.                     $this->em->flush();
  420.                     $this->addFlash('success'$this->translator->trans('flashbag.your_password_has_been_changed'));
  421.                     return $this->redirectToRoute('logout');
  422.                 }
  423.             }
  424.         }
  426.         return $this->render('user/change_password.html.twig', [
  427.             'user' => $user,
  428.             'form' => $form->createView()
  429.         ]);
  430.     }
  431. }