src/Controller/SecurityController.php line 107

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\AdminMaintenance;
  6. use App\Entity\Logactivity;
  7. use App\Entity\Pages;
  8. use App\Entity\User;
  9. use App\Form\UserType;
  10. use Doctrine\Persistence\ManagerRegistry;
  11. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  12. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  13. use Symfony\Component\HttpFoundation\RedirectResponse;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Mailer\MailerInterface;
  17. use Symfony\Component\PasswordHasher\Hasher\PasswordHasherFactoryInterface;
  18. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasher;
  19. use Symfony\Component\Routing\Annotation\Route;
  20. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. use Scheb\TwoFactorBundle\Security\TwoFactor\Provider\Google\GoogleAuthenticatorInterface;
  22. use App\Controller\DGSMailsController;
  24. /**
  25.  * @Route("/dgs/cnx")
  26.  */
  27. class SecurityController extends AbstractController
  28. {
  29.     public function __construct(ManagerRegistry $doctrineDGSMailsController $DGSMailsController) {
  30.         $this->doctrine $doctrine;
  31.         $this->DGSMailsController $DGSMailsController;
  32.     }
  34.     /**
  35.      * @Route("/dgs-enregistrement", name="registration")
  36.      */
  37.     public function registration(Request $request,PasswordHasherFactoryInterface $passwordHasherFactoryGoogleAuthenticatorInterface $googleAuthenticator): Response // OK Gauthier
  38.     {
  39.         //On désactive l'inscription
  40.         return $this->redirectToRoute('app_login');
  41.         
  42.         //On va créer le formulaire pour User
  43.         $user = new User();
  44.         $form $this->createForm(UserType::class, $user);
  46.         $form->handleRequest($request);
  48.         if ($form->isSubmitted()) {
  50.             //Token
  51.             $submittedToken $request->get('user');
  53.             if ( $form->isValid() && $this->isCsrfTokenValid('LRMYDu5alu'$submittedToken['_token']) )
  54.             {
  55.                 //On récupere les données
  56.                 $user $form->getData();
  58.                 //On encrypt le mot de pass
  59.                 // Encode the plain password, and set it.
  60.                 $passwordHasher = new UserPasswordHasher($passwordHasherFactory);
  61.                 $encodedPassword $passwordHasher->hashPassword(
  62.                     $user,
  63.                     $form->get('password')->getData()
  64.                 );
  65.                 $user->setPassword($encodedPassword);
  67.                 //On lui defini un role
  68.                 $user->setRoles( array('ROLE_USER') );
  69.                 $user->setUsername($user->getEmail());
  71.                 //2Fa
  72.                 //$user->setGoogleAuthenticatorSecret($googleAuthenticator->generateSecret());
  73.                 $user->setEmailAuthenticationCode(random_int(1000009999999));
  74.                 $user->setGoogleAuthenticatorSecret('');
  76.                 //On écrit dans la BDD
  77.                 $entityManager $this->doctrine->getManager();
  78.                 $entityManager->persist($user);
  79.                 $entityManager->flush();
  81.                 //Mail
  82.                 $this->DGSMailsController->submitMailToGeneral($user"Confirmation inscription",'');
  83.                 $this->DGSMailsController->submitMailToGeneral(''"Admin - Nouvelle inscription",'');
  85.                 $this->addFlash('success'"Votre inscription a été enregistrée !");
  87.                 return $this->redirectToRoute('app_login');
  88.             } else {
  89.                 $mess "Une erreur s'est produite. Essayez de recharger la page.";
  90.                 if($request->query->get('registration')){
  91.                     $this->DGSMailsController->submitMailToAdmin($user);
  92.                     $mess $mess " - 1";
  93.                 }
  94.                 $this->addFlash('error'$mess);
  95.             }
  96.         }
  98.         return $this->render('security/registration.html.twig', [
  99.             'csrf_token' => 'LRMYDu5alu',
  100.             'form'      => $form->createView()
  101.         ]);
  102.     }
  104.     /**
  105.      * @Route("/dgs-login", name="app_login")
  106.      */
  107.     public function login(AuthenticationUtils $authenticationUtils): Response // OK Gauthier
  108.     {
  109.         //Si déjà identifié
  110.         if ($this->getUser()) {
  111.             return $this->redirectToRoute('admin');
  112.         }
  114.         // get the login error if there is one
  115.         $error $authenticationUtils->getLastAuthenticationError();
  116.         // last username entered by the user
  117.         $lastUsername $authenticationUtils->getLastUsername();
  119.         return $this->render('security/login.html.twig', [
  120.             'last_username' => $lastUsername,
  121.             'error' => $error
  122.         ]);
  123.     }
  125.     /**
  126.      * @Route("/dgs-logout", name="app_logout")
  127.      */
  128.     public function logout() // OK Gauthier
  129.     {
  130.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  131.     }
  133.     /**
  134.      * @Route("/ip/activate", name="dgsipactivate")
  135.      */
  136.     public function dgsipactivate(Request $requestManagerRegistry $doctrineMailerInterface $mailer): Response // OK Gauthier
  137.     {
  138.         //Variables
  139.         $return false;
  140.         $action $request->get('action');
  141.         $ip "";
  142.         $em $doctrine->getManager();
  144.         //On récupére les info dans twig.yaml
  145.         $twig $this->container->get('twig');
  146.         $globals $twig->getGlobals();
  149.         if($action == "go") {
  151.             //On va ajouter l'IP à la base de donnée
  152.             if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
  153.                 $ip $_SERVER['HTTP_CLIENT_IP'];
  154.             } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
  155.                 $ip $_SERVER['HTTP_X_FORWARDED_FOR'];
  156.             } else {
  157.                 $ip $_SERVER['REMOTE_ADDR'];
  158.             }
  160.             //On recherche la BDD
  161.             $EntityDgstools $em->getRepository(AdminMaintenance::class)->findOneBy(array('id'=>1));
  163.             if($EntityDgstools && $ip != "") {
  165.                 //On va rechercher la liste des IPs
  166.                 $listIps $EntityDgstools->getIpmaintenance();
  167.                 $listIpsArray explode(","$listIps);
  169.                 //On boucle
  170.                 $listIpsString $ip;
  171.                 foreach($listIpsArray as $listIpDetail) {
  172.                     if($listIpDetail != $ip) {
  173.                         $listIpsString $listIpsString .",".$listIpDetail;
  174.                     }
  175.                 }
  177.                 $EntityDgstools->setIpmaintenance($listIpsString);
  178.                 $em->persist($EntityDgstools);
  179.                 $em->flush();
  181.                 //On envoi un mail
  182.                 $email = (new TemplatedEmail())
  183.                     ->from($globals['email_reset_dgs'])
  184.                     ->to($globals['email_reset_dgs'])
  185.                     ->subject('['.$globals['nom_normalise'].'] - IP débloqué')
  186.                     ->htmlTemplate('emails/ip.html.twig')
  187.                     ->context([
  188.                         'message' => "L'IP suivante vient d'être débloquée : " $ip
  189.                     ])
  190.                 ;
  192.                 $mailer->send($email);
  193.             }
  195.             $return true;
  196.         }
  198.         return $this->render('admin/dgstools/ipactivation.html.twig', [
  199.             "return" => $return,
  200.             "ip" => $ip
  201.         ]);
  203.     }
  204. }