src/Controller/DefaultController.php line 202

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Account;
  6. use App\Entity\LoginLog;
  7. use App\Entity\TrainingRequest;
  8. use App\Entity\TrainingRequestHistory;
  9. use App\Services\SendEmailService;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
  12. use Symfony\Component\Form\Extension\Core\Type\EmailType;
  13. use Symfony\Component\Form\Extension\Core\Type\PasswordType;
  14. use Symfony\Component\Form\Extension\Core\Type\RepeatedType;
  15. use Symfony\Component\Form\Extension\Core\Type\TextType;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  18. use Symfony\Component\Routing\Annotation\Route;
  19. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  20. use Symfony\Component\Security\Core\Authentication\Token\PreAuthenticatedToken;
  21. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  22. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  23. use App\Security\PasswordEncoder;
  24. use Symfony\Component\Validator\Constraints as Assert;
  25. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  27. /**
  28.  * @Route("/", name="default_")
  29.  */
  30. class DefaultController extends AbstractController
  31. {
  32.     private $eventDispatcher;
  34.     public function __construct(EventDispatcherInterface $eventDispatcher)
  35.     {
  36.         $this->eventDispatcher $eventDispatcher;
  37.     }
  40.     /**
  41.      * @Route("/", name="homepage")
  42.      */
  43.     public function indexAction(Request $request)
  44.     {
  45.         if ($this->getUser()) {
  46.             if ($this->isGranted("ROLE_MANAGER")) {
  47.                 return $this->redirectToRoute("manager_homepage");
  48.             } else {
  49.                 return $this->redirectToRoute("user_homepage");
  50.             }
  51.         }
  53.         return $this->redirectToRoute("default_login");
  54.     }
  56.     /**
  57.      * @Route("/login", name="login")
  58.      */
  59.     public function loginAction(Request $requestSendEmailService $sendEmailService)
  60.     {
  61.         $PasswordEncoder = new PasswordEncoder;
  62.         if ($this->getUser()) {
  63.             if ($this->isGranted("ROLE_MANAGER")) {
  64.                 return $this->redirectToRoute("manager_homepage");
  65.             } else {
  66.                 return $this->redirectToRoute("user_homepage");
  67.             }
  68.         }
  70.         $form $this->createFormBuilder()
  71.             ->add('username'TextType::class, array(
  72.                 'attr' => array(
  73.                     'placeholder' => 'Identifiant',
  74.                 ),
  75.                 'required' => true,
  76.             ))
  77.             ->add('password'PasswordType::class, array(
  78.                 'attr' => array(
  79.                     'placeholder' => 'Mot de passe',
  80.                 ),
  81.                 'required' => true,
  82.             ))->getForm();
  84.         $form->handleRequest($request);
  85.         $error null;
  87.         if ($form->isSubmitted()) {
  88.             if ($form->isValid()) {
  89.                 $data $form->getData();
  91.                 $em $this->getDoctrine()->getManager();
  93.                 $account $em
  94.                     ->getRepository(Account::class)
  95.                     ->findOneBy(["email" => $data["username"]]);
  96.                 if ($account) {
  97.                     $isValid $PasswordEncoder->isPasswordValid($account->getPassword(), $data["password"], $account->getSalt());
  98.                     if ($isValid) {
  99.                         if ($account->isEnabled()) {
  100.                             if (!$account->isLocked()) {
  101.                                 $now = new \DateTime("now");
  102.                                 $account->setLastLogin($now);
  104.                                 $loginLog = new LoginLog();
  105.                                 $loginLog->setAccount($account);
  106.                                 $loginLog->setDate($now);
  107.                                 $loginLog->setEndDate($now);
  108.                                 $loginLog->setIp($this->getUserIPAddress());
  110.                                 $em->persist($loginLog);
  112.                                 $account->setLoginLog($loginLog);
  114.                                 $em->flush();
  115.                                 $session $this->get('session');
  116.                                 $firewall 'main';
  117.                                 $token = new UsernamePasswordToken($accountnull$firewall$account->getRoles());
  118.                                 $this->get('security.token_storage')->setToken($token);
  119.                                 $session->set('_security_'.$firewallserialize($token));
  121.                                 $event = new InteractiveLoginEvent($request$token);
  122.                                 $this->eventDispatcher->dispatch($event"security.interactive_login");
  123.                                 // $this->get("event_dispatcher")->dispatch("security.interactive_login", $event);
  125.                                 return $this->redirectToRoute("default_homepage");
  126.                             } else {
  127.                                 $this->get('session')->getFlashBag()->add("danger""Votre compte a été bloqué en raison d’un nombre d’erreur de connexion trop important. Veuillez contacter votre délégué à la protection des données.");
  128.                             }
  129.                         } else {
  130.                             $this->get('session')->getFlashBag()->add("danger""Votre compte n'est pas actif");
  131.                         }
  132.                     } else {
  133.                         if ($account->getUser()) {
  134.                             $account->setErroredLoginCount($account->getErroredLoginCount()+1);
  135.                             if ($account->getErroredLoginCount() == 5) {
  136.                                 $account->setLocked(true);
  137.                                 $em->flush();
  139.                                 $content "<p>Bonjour,<br/>
  140.                         <br/>
  141.                         Une compte utilisateur du client ".$account->getUser()->getCompanyName()." a été bloqué suite à un nombre trop important de tentatives de connexion.<br/>
  142.                         <br/>
  143.                         <br/>
  144.                         <i>Cet e-mail a été envoyé depuis le site myDigitplace. NE PAS répondre à ce message automatique.</i><br/>
  145.                         </p>";
  146.                                 $sendEmailService->send(
  147.                                     "Compte utilisateur bloqué",
  148.                                     $account->getUser()->getManager()->getEmail(),
  149.                                     'template_emails/left_text.html.twig',
  150.                                     [
  151.                                         "title" => "Compte utilisateur bloqué",
  152.                                         "content" => $content
  153.                                     ]
  154.                                 );
  155.                             }
  156.                             if ($account->getErroredLoginCount() >= 5) {
  157.                                 $this->get('session')->getFlashBag()->add("danger""Votre compte a été bloqué en raison d’un nombre d’erreur de connexion trop important. Veuillez contacter votre délégué à la protection des données.");
  158.                             } else {
  159.                                 $this->get('session')->getFlashBag()->add("danger""Identifiant ou mot de passe incorrect");
  160.                             }
  161.                         } else {
  162.                             $this->get('session')->getFlashBag()->add("danger""Identifiant ou mot de passe incorrect");
  163.                         }
  164.                     }
  165.                 } else {
  166.                     $this->get('session')->getFlashBag()->add("danger""Identifiant ou mot de passe incorrect");
  167.                 }
  168.             } else {
  169.                 $this->get('session')->getFlashBag()->add("warning""Merci de saisir votre identifiant et votre mot de passe");
  170.             }
  171.         }
  173.         return $this->render('login.html.twig', [
  174.             "form" => $form->createView(),
  175.         ]);
  176.     }
  178.     /**
  179.      * @Route("/logout", name="logout")
  180.      */
  181.     public function logoutAction(Request $request)
  182.     {
  183.         $this->get('security.token_storage')->setToken(null);
  184.         $this->get('session')->invalidate();
  185.         return $this->redirectToRoute("default_homepage");
  186.     }
  188.     /**
  189.      * @Route("/logoutabo", name="logout_abo")
  190.      */
  191.     public function logoutAboAction(Request $request)
  192.     {
  193.         $this->get('security.token_storage')->setToken(null);
  194.         $this->get('session')->invalidate();
  195.         $this->get('session')->getFlashBag()->add('danger''Vous ne disposez d\'aucun abonnement actif. Veuillez contacter votre interlocuteur myDiditplace');
  196.         return $this->redirectToRoute("default_homepage");
  197.     }
  199.     /**
  200.      * @Route("/forgot", name="forgot_password")
  201.      */
  202.     public function forgotPasswordAction(Request $requestSendEmailService $sendEmailService)
  203.     {
  204.         $form $this->createFormBuilder()
  205.             ->add('email'EmailType::class, array(
  206.                 'attr' => array(
  207.                     'placeholder' => 'Adresse mail',
  208.                 ),
  209.                 'required' => true,
  210.             ))
  211.             ->getForm();
  213.         $form->handleRequest($request);
  214.         $error null;
  216.         if ($form->isSubmitted()) {
  217.             if ($form->isValid()) {
  218.                 $data $form->getData();
  220.                 $em $this->getDoctrine()->getManager();
  222.                 $account $em->getRepository(Account::class)->findOneBy(["email" => $data["email"]]);
  224.                 if ($account) {
  225.                     if ($account->isEnabled()) {
  226.                         if (!$account->isLocked()) {
  227.                             $token hash("sha256"uniqid());
  228.                             $account->setPasswordRequest($token);
  229.                             $account->setPasswordRequestDate(new \DateTime('now'));
  231.                             $em->flush();
  233.                             if ($account->getUser()) {
  234.                                 $firstName $account->getUser()->getContactFirstName();
  235.                             } else {
  236.                                 $firstName $account->getManager()->getFirstName();
  237.                             }
  239.                             $content "<p>Bonjour ".$firstName.",<br/>
  240.                         <br/>
  241.                         Vous venez de demander à réinitialiser votre mot de passe sur le site myDigitplace.<br/>
  242.                         <br/>
  243.                         <br/>
  244.                         Voici votre lien pour définir un nouveau mot de passe:<br/><a href='".$this->generateUrl("default_reset_password", ["email" => $account->getEmail(), "token" => $token], UrlGeneratorInterface::ABSOLUTE_URL)."'>
  245.                         ".$this->generateUrl("default_reset_password", ["email" => $account->getEmail(), "token" => $token], UrlGeneratorInterface::ABSOLUTE_URL)."
  246.                         </a>
  247.                         <br/>
  248.                         <br/>
  249.                         Si le lien n'est pas cliquable, collez le dans la barre d'adresse de votre navigateur.<br/><br/>
  250.                         Si vous n'êtes pas à l'origine de cette demande, vous pouvez ignorer ce message. Votre compte est toujours sécurisé.<br/>
  251.                         <br/>
  252.                         Bien cordialement,<br/>
  253.                         <br/>
  254.                         L’équipe myDigitplace<br/>
  255.                         <br/>
  256.                         <i>Cet e-mail a été envoyé depuis le site myDigitplace. NE PAS répondre à ce message automatique.</i><br/>
  257.                         </p>";
  258.                             $sendEmailService->send(
  259.                                 "Réinitialisation de votre mot de passe",
  260.                                 $account->getEmail(),
  261.                                 'template_emails/left_text.html.twig',
  262.                                 [
  263.                                     "title" => "Réinitialisation de votre mot de passe",
  264.                                     "content" => $content
  265.                                 ]
  266.                             );
  268.                             $this->get('session')->getFlashBag()->add("success""Un mail contenant un lien de réinitialisation a été envoyé à l'adresse indiquée. Ce lien est valide pendant 24h.");
  270.                             return $this->redirectToRoute("default_login");
  271.                         } else {
  272.                             $this->get('session')->getFlashBag()->add("warning""Votre compte a été bloqué en raison d’un nombre d’erreur de connexion trop important. Veuillez contacter votre délégué à la protection des données.");
  273.                         }
  274.                     } else {
  275.                         $this->get('session')->getFlashBag()->add("warning""Votre compte n'est pas actif");
  276.                     }
  277.                 } else {
  278.                     $this->get('session')->getFlashBag()->add("danger""Aucun compte trouvé avec cette adresse");
  279.                 }
  280.             } else {
  281.                 $this->get('session')->getFlashBag()->add("warning""Merci de saisir une adresse mail valide");
  282.             }
  283.         }
  285.         return $this->render('forgot_pwd.html.twig', [
  286.             "form" => $form->createView(),
  287.         ]);
  288.     }
  290.     /**
  291.      * @Route("/reset/{email}/{token}", name="reset_password")
  292.      */
  293.     public function resetPasswordAction(Request $request)
  294.     {
  295.         $em $this->getDoctrine()->getManager();
  297.         $account $em->getRepository(Account::class)->findOneBy(["email" => $request->get("email")]);
  299.         if ($account) {
  300.             if ($account->getPasswordRequest() && $account->getPasswordRequestDate()) {
  301.                 if ($account->getPasswordRequest() == $request->get("token")) {
  302.                     $now = new \DateTime('now');
  303.                     if ($now->getTimestamp() - $account->getPasswordRequestDate()->getTimestamp() < 86400) {
  304.                         $form $this->createFormBuilder()
  305.                             ->add('password'RepeatedType::class, array(
  306.                                 'type' => PasswordType::class,
  307.                                 'invalid_message' => 'Les mot de passe ne sont pas identiques',
  308.                                 'first_options'  => array(
  309.                                     'attr' => array(
  310.                                         'placeholder' => 'Changer mot de passe'
  311.                                     ),
  312.                                     'constraints' =>[
  313.                                         new Assert\NotBlank([
  314.                                             'message' => 'Merci de saisir un mot de passe'
  315.                                         ]),
  316.                                         new Assert\Regex([
  317.                                             'pattern' => '/^(?:(?=(\S*?[A-Z]){1})(?=(\S*?[a-z]){1})(?=(\S*?[0-9]){1})(?=\S*?[~!^(){}<>%@#&*+=_\-$`,.\/\\\;:\'"|\[\]]){1}.{12,})$/m',
  318.                                             'message' => "Votre mot de passe doit respecter les recommandations de l'ANSSI : au moins 12 caractères de types différents (majuscules, minuscules, chiffres, caractères spéciaux)"
  319.                                         ])
  320.                                     ],
  321.                                 ),
  322.                                 'second_options' => array('attr' => array('placeholder' => 'Confirmation mot de passe')),
  323.                                 'label' => false,
  324.                                 'mapped' => false
  325.                             ))->getForm();
  327.                         $form->handleRequest($request);
  329.                         if ($form->isSubmitted() && $form->isValid()) {
  330.                             $salt md5(uniqid());
  331.                             $pwd $form['password']->getData();
  332.                             $account->setSalt($salt);
  333.                             $PasswordEncoder = new PasswordEncoder;
  334.                             $enc_pwd $PasswordEncoder->encodePassword($pwd$salt);
  335.                             $account->setPassword($enc_pwd);
  337.                             $account->setPasswordRequest(null);
  338.                             $account->setPasswordRequestDate(null);
  340.                             $em->flush();
  342.                             $this->get('session')->getFlashBag()->add("success""Votre mot de passe a été réinitialisé, vous pouvez maintenant vous connecter à votre espace.");
  344.                             return $this->redirectToRoute("default_login");
  345.                         }
  347.                         return $this->render('reset_pwd.html.twig', [
  348.                             "form" => $form->createView(),
  349.                         ]);
  350.                     } else {
  351.                         throw new NotFoundHttpException("Cette URL n'est plus valide");
  352.                     }
  353.                 } else {
  354.                     throw new NotFoundHttpException("Cette URL n'est pas valide");
  355.                 }
  356.             }
  357.         }
  359.         throw new NotFoundHttpException();
  360.     }
  362.     /**
  363.      * @Route("/training/{email}/{token}", name="training")
  364.      */
  365.     public function trainingAction(Request $request$email$token)
  366.     {
  367.         $em $this->getDoctrine()->getManager();
  369.         $trainingRequest $em->getRepository(TrainingRequest::class)->findOneBy(["email" => $email"token" => $token]);
  371.         if (!$trainingRequest) {
  372.             throw new NotFoundHttpException();
  373.         }
  375.         if ($request->get("reset")) {
  376.             $trainingRequest->setAnswerDate(null);
  377.             $trainingRequest->setUserAnswers(null);
  378.             $trainingRequest->setResult(0);
  380.             $em->flush();
  382.             return $this->redirectToRoute("default_training", ["email" => $email"token" => $token]);
  383.         }
  385.         if ($request->get("answers")) {
  386.             return $this->render('training_answers.html.twig', [
  387.                 "trainingRequest" => $trainingRequest
  388.             ]);
  389.         }
  391.         $now = new \DateTime('now');
  393.         $form $this->createFormBuilder()
  394.             ->add("firstName"TextType::class, [
  395.                 "attr" => [
  396.                     "placeholder" => "Prénom"
  397.                 ],
  398.                 "label" => "Prénom",
  399.                 "data" => $trainingRequest->getLastName()
  400.             ])
  401.             ->add("lastName"TextType::class, [
  402.                 "attr" => [
  403.                     "placeholder" => "Nom"
  404.                 ],
  405.                 "label" => "Nom",
  406.                 "data" => $trainingRequest->getFirstName()
  407.             ])
  408.             ->add("position"TextType::class, [
  409.                 "attr" => [
  410.                     "placeholder" => "Fonction"
  411.                 ],
  412.                 "label" => "Fonction",
  413.                 "data" => $trainingRequest->getPosition()
  414.             ]);
  416.         foreach ($trainingRequest->getTrainingCampain()->getQuestions() as $key => $question) {
  417.             $choices = [];
  418.             foreach ($question["choices"] as $choiceKey => $choiceValue) {
  419.                 $choices[$choiceValue] = $choiceKey;
  420.             }
  422.             $this->shuffle_assoc($choices);
  424.             $form->add("question_".$keyChoiceType::class, [
  425.                 "choices" => $choices,
  426.                 "expanded" => true,
  427.                 "multiple" => $question["multiple"],
  428.             ]);
  429.         }
  431.         $form $form->getForm();
  433.         $form->handleRequest($request);
  435.         if ($form->isSubmitted() && $form->isValid()) {
  436.             $em $this->getDoctrine()->getManager();
  438.             $answers = [];
  440.             $goodAnswers 0;
  442.             foreach ($trainingRequest->getTrainingCampain()->getQuestions() as $key => $question) {
  443.                 $answers[$key] = $form["question_".$key]->getData();
  445.                 if (is_array($trainingRequest->getTrainingCampain()->getAnswers()[$key])) {
  446.                     if (is_array($answers[$key])) {
  447.                         if ($this->consistsOfTheSameValues($answers[$key], $trainingRequest->getTrainingCampain()->getAnswers()[$key])) {
  448.                             $goodAnswers++;
  449.                         }
  450.                     }
  451.                 } else {
  452.                     if ($answers[$key] == $trainingRequest->getTrainingCampain()->getAnswers()[$key]) {
  453.                         $goodAnswers++;
  454.                     }
  455.                 }
  456.             }
  458.             $trainingRequest->setFirstName($form["firstName"]->getData());
  459.             $trainingRequest->setLastName($form["lastName"]->getData());
  460.             $trainingRequest->setPosition($form["position"]->getData());
  462.             $trainingRequest->setAnswerDate($now);
  463.             $trainingRequest->setUserAnswers($answers);
  464.             $trainingRequest->setResult($goodAnswers count($trainingRequest->getTrainingCampain()->getQuestions()));
  466.             $trainingRequestHistory = new TrainingRequestHistory();
  468.             $trainingRequestHistory->setAnswerDate($now);
  469.             $trainingRequestHistory->setUserAnswers($answers);
  470.             $trainingRequestHistory->setResult($goodAnswers count($trainingRequest->getTrainingCampain()->getQuestions()));
  471.             $trainingRequestHistory->setTrainingRequest($trainingRequest);
  473.             $em->persist($trainingRequestHistory);
  474.             $em->flush();
  476.             return $this->redirectToRoute("default_training", ["email" => $email"token" => $token]);
  477.         }
  479.         return $this->render('training.html.twig', [
  480.             "form" => $form->createView(),
  481.             "trainingRequest" => $trainingRequest
  482.         ]);
  483.     }
  485.     public function shuffle_assoc(&$array) {
  486.         $keys array_keys($array);
  488.         shuffle($keys);
  490.         foreach($keys as $key) {
  491.             $new[$key] = $array[$key];
  492.         }
  494.         $array $new;
  496.         return true;
  497.     }
  499.     public function consistsOfTheSameValues(array $a, array $b)
  500.     {
  501.         // check size of both arrays
  502.         if (count($a) !== count($b)) {
  503.             return false;
  504.         }
  506.         foreach ($b as $key => $bValue) {
  508.             // check that expected value exists in the array
  509.             if (!in_array($bValue$atrue)) {
  510.                 return false;
  511.             }
  513.             // check that expected value occurs the same amount of times in both arrays
  514.             if (count(array_keys($a$bValuetrue)) !== count(array_keys($b$bValuetrue))) {
  515.                 return false;
  516.             }
  518.         }
  520.         return true;
  521.     }
  523.     public function getUserIPAddress() {
  524.         //whether ip is from the share internet
  525.         if(!empty($_SERVER['HTTP_CLIENT_IP'])) {
  526.             $ip $_SERVER['HTTP_CLIENT_IP'];
  527.         }
  528.         //whether ip is from the proxy
  529.         elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
  530.             $ip $_SERVER['HTTP_X_FORWARDED_FOR'];
  531.         }
  532.         //whether ip is from the remote address
  533.         else{
  534.             $ip $_SERVER['REMOTE_ADDR'];
  535.         }
  536.         return $ip;
  537.     }
  538. }