src/Controller/Security/LoginController.php line 32

Open in your IDE?
  1. <?php
  2. //----------------------------------------------------------------------
  3. // src/Controller/Security/LoginController.php
  4. //----------------------------------------------------------------------
  5. namespace App\Controller\Security;
  7. use Doctrine\Persistence\ManagerRegistry;
  8. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\HttpFoundation\JsonResponse;
  12. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  13. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  15. use App\Entity\Access;
  16. use App\Entity\AccessClient\AccessClient;
  17. use App\Services\CommonTools;
  18. use App\Services\LogTools;
  19. use App\Services\Security\IpTools;
  20. use App\Services\Security\RedirectTools;
  21. use App\Services\Security\SecurityTools;
  23. class LoginController extends AbstractController
  24. {
  26.     public function __construct(ManagerRegistry $doctrineIpTools $ipToolsRedirectTools $redirectToolsLogTools $logToolsSecurityTools $securityToolsCommonTools $commonTools)
  27.     {
  28.         $this->em $doctrine->getManager();
  29.         $this->ipTools $ipTools;
  30.         $this->redirectTools $redirectTools;
  31.         $this->logTools $logTools;
  32.         $this->securityTools $securityTools;
  33.         $this->commonTools $commonTools;
  34.     }
  36.     public function login(Request $requestAuthenticationUtils $authenticationUtils): Response
  37.     {
  38.         // If the user is already logged in, redirect
  39.         if ($this->isGranted('IS_AUTHENTICATED_FULLY'))
  40.         {
  41.             return $this->redirectToRoute('login_redirect');
  42.         }
  44.         $today = new \DateTime();
  46.         $ip $request->getClientIp();
  47.         if ($this->ipTools->isBanned($ip))
  48.         {
  49.             // Don't throw AccessDeniedException to avoid infinite loop (Default firewall behavior : Redirect to login)
  50.             throw new AccessDeniedHttpException('');
  51.         }
  53.         // get the login error if there is one
  54.         $error $authenticationUtils->getLastAuthenticationError();
  56.         // last username entered by the user
  57.         $lastUsername $authenticationUtils->getLastUsername();
  59.         // Username in GET ?
  60.         $username null;
  61.         $activationMsg null;
  62.         if (!empty($request->query->get('username')))
  63.         {
  64.             $username $request->query->get('username');
  65.         }
  66.         if (!empty($request->query->get('activation_message')))
  67.         {
  68.             $activationMsg $request->query->get('activation_message');
  69.         }
  71.         // Get the redirect data if any
  72.         $redirectData $this->redirectTools->getRedirectData($request->cookies);
  74.         $render = array(
  75.             'activation_message'    =>    $activationMsg,
  76.             'last_username'         =>     $lastUsername,
  77.             'username'                =>    $username,
  78.             'error'                 =>     $error,
  79.             'today'                    =>    $today,
  80.         );
  82.         if ($redirectData !== null)
  83.         {
  84.             $render['icod_id'] = $redirectData['icod_id'];
  85.             $render['icod_route'] = $redirectData['icod_route'];
  86.             $render['icod_dont_redirect'] = $redirectData['icod_dont_redirect'];
  87.         }
  89.         // Plan.io Task #4327
  90.         $render['access_client_login'] = $this->commonTools->craftUrl('access_client_login');
  92.         return $this->render('security/login.html.twig'$render);
  93.     }
  95.     // Plan.io Task #4327
  96.     // Are we in the right place ?
  97.     public function areYouLost(Request $request): JsonResponse
  98.     {
  99.         if (!$request->isXmlHttpRequest())
  100.             return new JsonResponse(array('status' => 'Error'),400);
  102.         if (!isset($request->request))
  103.             return new JsonResponse(array('status' => 'Error'),400);
  105.         // Get data
  106.         $email $request->request->get('email');
  107.         $email preg_replace('/\s+/'''$email);
  108.         $email filter_var($emailFILTER_VALIDATE_EMAIL);
  110.         if (!$email)
  111.         {
  112.             // This is the case for admins and all data that is not an email
  113.             return new JsonResponse(array('status' => 'Stay''msg' => 'not.an.email'), 200);
  114.         }
  116.         // This is called from the Access Login page
  117.         // So check if the email address corresponds to an Access
  118.         // or an AccessClient who got lost
  119.         $access $this->em->getRepository(Access::class)->findOneByEmail($email);
  120.         if ($access !== null)
  121.         {
  122.             // All is good => Exit gracefully
  123.             return new JsonResponse(array('status' => 'Stay''msg' => 'you.are.in.the.right.place'), 200);
  124.         }
  126.         $accessClient $this->em->getRepository(AccessClient::class)->findOneByEmail($email);
  127.         if ($accessClient !== null)
  128.         {
  129.             // Redirect the poor guy on the AccessClient login page
  130.             return new JsonResponse(array('status' => 'Redirect''msg' => 'you.are.lost'), 200);
  131.         }
  133.         // If we are here it means that the email is just invalid
  134.         // Stay on the same page
  135.         return new JsonResponse(array('status' => 'Stay''msg' => 'who.are.you.stranger'), 200);
  136.     }
  137. }