src/Controller/SecurityController.php line 24

Open in your IDE?
  1. <?php
  2. // src/Controller/SecurityController.php
  3. namespace App\Controller;
  5. use App\Entity\User;
  6. use App\Form\LoginType;
  7. use App\Form\Model\ChangePassword;
  8. use App\Form\Type\ChangePasswordType;
  9. use App\Repository\LoginAttemptRepository;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\HttpFoundation\Request;
  12. use Symfony\Component\HttpFoundation\Response;
  13. use Symfony\Component\Routing\Annotation\Route;
  14. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  16. /**
  17.  * @see https://symfony.com/doc/current/security.html
  18.  */
  19. class SecurityController extends AbstractController
  20. {
  21.     /**
  22.      * @Route("/login", name="login", methods={"GET", "POST"})
  23.      */
  24.     public function login(AuthenticationUtils $authenticationUtils): Response
  25.     {
  26.         // Redirect if a User is already authenticated
  27.         if ($this->getUser()) {
  28.            $this->redirectToRoute('target_path');
  29.         }
  31.         // Create the form
  32.         $form $this->createForm(LoginType::class, [
  33.             '_username' => $authenticationUtils->getLastUsername(),
  34.         ], [
  35.             'method' => "POST",
  36.             'action' => $this->generateUrl('login_check'),
  37.         ]);
  39.         return $this->render('security/login.html.twig', [
  40.             'form_login' => $form->createView(),
  41.             'error' => $authenticationUtils->getLastAuthenticationError()
  42.         ]);
  43.     }
  45.     /**
  46.      * @Route("/login_check", name="login_check", methods={"POST"})
  47.      */
  48.     public function check()
  49.     {
  50.         throw new \RuntimeException('You must configure the check_path to be handled by the firewall using form_login in your security firewall configuration.');
  51.     }
  53.     /**
  54.      * @Route("/logout", name="logout")
  55.      *
  56.      * @see https://symfony.com/doc/current/security.html#logging-out
  57.      */
  58.     public function logout()
  59.     {
  60.         // controller can be blank: it will never be executed!
  61.         throw new \Exception('Don\'t forget to activate logout in security.yaml');
  62.     }
  64.     /**
  65.      * @Route("/register", name="register")
  66.      */
  67.     public function register(Request $request)
  68.     {
  69.         $user = new User();
  71.         $form $this->createForm(UserType::class, $user);
  72.         $form->handleRequest($request);
  74.         if ($form->isSubmitted() && $form->isValid()) {
  75.             $entityManager $this->getDoctrine()->getManager();
  76.             $entityManager->persist($user);
  77.             $entityManager->flush();
  79.             $this->addFlash('success''Welcome '.$user->getEmail());
  81.             // Automatic login after successful registration
  82.             return $this->get('security.authentication.guard_handler')->authenticateUserAndHandleSuccess(
  83.                 $user,
  84.                 $request,
  85.                 $this->get('app.security.login_form_authenticator'),
  86.                 'main'
  87.             );
  88.         }
  90.         return $this->render('security/register.html.twig', [
  91.             'form' => $form->createView(),
  92.         ]);
  93.     }
  95.     /**
  96.      * @Route("/change-password", name="change_password", methods={"GET","POST"})
  97.      */
  98.     public function changePassword(Request $request)
  99.     {
  100.         $this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');
  102.         $user $this->getUser();
  103.         $form $this->createForm(ChangePasswordType::class, new ChangePassword, [
  104.             'action' => $this->generateUrl($request->get('_route')),
  105.             'method' => "POST",
  106.         ]);
  107.         $form->handleRequest($request);
  109.         if ($form->isSubmitted() && $form->isValid()) {
  110.             try {
  111.                 $user->setPlainPassword($form->getData()->getNewPassword());
  112.                 $this->getDoctrine()->getManager()->flush();
  113.             } catch (\Throwable $e) {
  114.                 $this->addFlash('danger''Could not change your password!');
  115.             }
  117.             $this->addFlash('success''Your password has been changed successfully!');
  119.             return $this->redirectToRoute('logout');
  120.         }
  122.         return $this->render('security/password_change.html.twig', [
  123.             'form' => $form->createView(),
  124.         ]);
  125.     }
  127.     /**
  128.      * @Route("/.well-known/change-password", methods={"GET","POST"})
  129.      *
  130.      * @see https://web.dev/change-password-url/
  131.      * @see https://w3c.github.io/webappsec-change-password-url/
  132.      */
  133.     public function wellKnownChangePassword(Request $request)
  134.     {
  135.         return $this->redirectToRoute('change_password');
  136.     }
  138.     /**
  139.      * @Route("/login-attempts", name="login_attempts", methods={"GET"})
  140.      */
  141.     public function loginAttempts(LoginAttemptRepository $loginAttempts)
  142.     {
  143.         $this->denyAccessUnlessGranted('ROLE_SUPER_ADMIN');
  145.         return $this->json($loginAttempts->getRecentAttempts());
  146.     }
  149.     /**
  150.      * @Route("/maintenance", name="maintenance", methods={"GET","POST"})
  151.      */
  152.     public function maintenance(Request $request)
  153.     {
  154.         $ipFile $this->getParameter('kernel.project_dir').'/config/whitelist';
  155.         if ($request->get('maintenance')) {
  156.             $form $request->get('maintenance');
  157.             if(!isset($form['activated'])){
  158.                 @unlink($this->getParameter('kernel.project_dir').'/0_MAINTENANCE');
  159.             }else{
  160.                 fopen($this->getParameter('kernel.project_dir').'/0_MAINTENANCE'"w");
  161.             }
  163.             $ipfile fopen($ipFile"w");
  164.             $ipList array_unique(explode(PHP_EOL,$form['iplist']));
  165.             foreach($ipList as $ip){
  166.                 $ip trim($ip);
  167.                 if (filter_var($ipFILTER_VALIDATE_IP)) {
  168.                     fwrite($ipfile,$ip.PHP_EOL);
  169.                 }
  170.             }
  171.             return $this->redirectToRoute('maintenance');
  172.         }
  173.         $maintenanceMode = ($_ENV["MAINTENANCE"] == "ENABLED") ? true false;
  174.         $ipList implode("\n",file($ipFileFILE_IGNORE_NEW_LINES));
  175.         return $this->render('security/maintenance.html.twig', [
  176.             'maintenanceMode' => $maintenanceMode,
  177.             'ipList' => $ipList
  178.         ]);
  179.     }
  183. }