src/Controller/ResetPasswordController.php line 73

Open in your IDE?
  1. <?php
  3.     namespace App\Controller;
  5.     use App\Entity\User;
  6.     use App\Factory\Platform\MailerFactory;
  7.     use App\Form\Type\ChangePasswordFormType;
  8.     use App\Form\Type\ResetPasswordRequestFormType;
  9.     use App\Services\Common\Email\MailTypes;
  10.     use App\Services\Common\MailerService;
  11.     use App\Services\DTV\YamlConfig\YamlReader;
  12.     use Doctrine\ORM\EntityManagerInterface;
  13.     use Exception;
  14.     use Psr\Log\LoggerInterface;
  15.     use ReflectionException;
  16.     use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  17.     use Symfony\Component\HttpFoundation\RedirectResponse;
  18.     use Symfony\Component\HttpFoundation\Request;
  19.     use Symfony\Component\HttpFoundation\Response;
  20.     use Symfony\Component\Routing\Annotation\Route;
  21.     use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  22.     use Symfony\Contracts\HttpClient\Exception\ClientExceptionInterface;
  23.     use Symfony\Contracts\HttpClient\Exception\RedirectionExceptionInterface;
  24.     use Symfony\Contracts\HttpClient\Exception\ServerExceptionInterface;
  25.     use Symfony\Contracts\HttpClient\Exception\TransportExceptionInterface;
  26.     use SymfonyCasts\Bundle\ResetPassword\Controller\ResetPasswordControllerTrait;
  27.     use SymfonyCasts\Bundle\ResetPassword\Exception\ResetPasswordExceptionInterface;
  28.     use SymfonyCasts\Bundle\ResetPassword\ResetPasswordHelperInterface;
  30.     /**
  31.      * Controller pour la gestion de la réinitialisation du mot de passe
  32.      *
  33.      * @Route("/reset-password")
  34.      */
  35.     class ResetPasswordController extends AbstractController
  36.     {
  37.         use ResetPasswordControllerTrait;
  39.         private ResetPasswordHelperInterface $resetPasswordHelper;
  40.         private LoggerInterface              $logger;
  41.         private MailerService                $mailerService;
  42.         private YamlReader                   $yamlReader;
  43.         private EntityManagerInterface       $em;
  45.         /**
  46.          * @param ResetPasswordHelperInterface $resetPasswordHelper
  47.          * @param LoggerInterface $logger
  48.          * @param MailerService $mailerService
  49.          * @param YamlReader $yamlReader
  50.          * @param EntityManagerInterface $em
  51.          */
  52.         public function __construct(ResetPasswordHelperInterface $resetPasswordHelperLoggerInterface $loggerMailerService $mailerServiceYamlReader $yamlReaderEntityManagerInterface $em)
  53.         {
  54.             $this->resetPasswordHelper $resetPasswordHelper;
  55.             $this->logger              $logger;
  56.             $this->mailerService       $mailerService;
  57.             $this->yamlReader          $yamlReader;
  58.             $this->em                  $em;
  59.         }
  62.         /**
  63.          * Affiche et traite le formulaire de demande de réinitialisation du mot de passe.
  64.          *
  65.          * @Route("", name="app_forgot_password_request")
  66.          *
  67.          * @param   Request  $request
  68.          *
  69.          * @return Response
  70.          *
  71.          * @throws Exception
  72.          */
  73.         public function requestRequest $request ): Response
  74.         {
  75.             $form $this->createFormResetPasswordRequestFormType::class );
  76.             $form->handleRequest$request );
  78.             if ( $form->isSubmitted() && $form->isValid() ) {
  80. //                try {
  81.                     return $this->processSendingPasswordResetEmail(
  82.                         $form->get'email' )->getData(),
  83.                     );
  84. //                } catch ( ClientExceptionInterface|RedirectionExceptionInterface|ServerExceptionInterface|TransportExceptionInterface|ReflectionException $e ) {
  85. //                    $this->logger->critical( 'Erreur de lors du reset password : ' . $e->getMessage() );
  86. //                }
  87.             }
  89.             $twigPath 'security/request.html.twig';
  90.             if ( $this->yamlReader->getType() === 'dtv' ) {
  91.                 $twigPath 'security/DeveloppetesventesCom/request.html.twig';
  92.             }
  94.             return $this->render$twigPath, [
  95.                 'requestForm' => $form->createView(),
  96.             ] );
  97.         }
  100.         /**
  101.          * Redirige vers la page de vérification de l'e-mail.
  102.          *
  103.          * @param   string  $emailFormData
  104.          *
  105.          * @return RedirectResponse
  106.          *
  107.          * @throws ReflectionException
  108.          * @throws ClientExceptionInterface
  109.          * @throws RedirectionExceptionInterface
  110.          * @throws ServerExceptionInterface
  111.          * @throws TransportExceptionInterface
  112.          * @throws Exception
  113.          */
  114.         private function processSendingPasswordResetEmailstring $emailFormData ): RedirectResponse
  115.         {
  116.             $user $this->em->getRepositoryUser::class )->findOneBy(
  117.                 [
  118.                     'email' => $emailFormData,
  119.                 ]
  120.             );
  124.             // Do not reveal whether a user account was found or not.
  125.             if ( $user === null ) {
  126.                 return $this->redirectToRoute'app_check_email' );
  127.             }
  129.             $mailer $this->yamlReader->getMailer();
  131.             // Check les CGU
  132.             if( is_null($user->getCguAt())){
  133.                 $this->addFlash(
  134.                     'danger',
  135.                      "Vous n'avez pas accepté les CGU via l'e-mail qui vous a été envoyé. <br>
  136.                      Merci de cliquer sur le lien sécurisé présent dans l'e-mail.<br> 
  137.                      Si vous n'avez pas reçu l'e-mail, merci de prendre contact avec la hotline à l'adresse ".$mailer['contact_email']
  138.                 );
  140.                 return $this->redirectToRoute'app_login' );
  141.             }
  143.             try {
  144.                 $resetToken $this->resetPasswordHelper->generateResetToken$user );
  145.             } catch ( ResetPasswordExceptionInterface $e ) {
  146.                 // If you want to tell the user why a reset email was not sent, uncomment
  147.                 // the lines below and change the redirect to 'app_forgot_password_request'.
  148.                 // Caution: This may reveal if a user is registered or not.
  150.                 $this->addFlash(
  151.                     'reset_password_error',
  152.                     sprintf'Il y a eu un problème lors du traitement de votre demande de réinitialisation du mot de passe - %s'$e->getReason() )
  153.                 );
  155.                 return $this->redirectToRoute'app_check_email' );
  156.             }
  158.             $this->mailerService->createApiMailRequestMailTypes::RESET_PASSWORD )
  159.                                 ->addRecipientToRequest(
  160.                                     $user,
  161.                                     MailerFactory::buildResetPassword$resetToken->getToken() )
  162.                                 )
  163.                                 ->send()
  164.             ;
  166.             // Store the token object in session for retrieval in check-email route.
  167.             $this->setTokenObjectInSession$resetToken );
  169.             return $this->redirectToRoute'app_check_email' );
  170.         }
  173.         /**
  174.          * Page de confirmation après qu'un utilisateur ait demandé une réinitialisation du mot de passe.
  175.          *
  176.          * @Route("/check-email", name="app_check_email")
  177.          */
  178.         public function checkEmail(): Response
  179.         {
  180.             // We prevent users from directly accessing this page
  181. //            if ( NULL === ( $resetToken = $this->getTokenObjectFromSession() ) ) {
  182. //                return $this->redirectToRoute( 'app_forgot_password_request' );
  183. //            }
  185.             $resetToken $this->getTokenObjectFromSession();
  187.             $twigPath 'security/check_email.html.twig';
  188.             if ( $this->yamlReader->getType() === 'dtv' ) {
  189.                 $twigPath 'security/DeveloppetesventesCom/check_email.html.twig';
  190.             }
  192.             return $this->render$twigPath, [
  193.                 'resetToken' => $resetToken,
  194.             ] );
  195.         }
  198.         /**
  199.          * Valide et traite l'URL de réinitialisation que l'utilisateur a cliqué dans son e-mail.
  200.          *
  201.          * @Route("/reset/{token}", name="app_reset_password")
  202.          */
  203.         public function reset(
  204.             Request                      $request,
  205.             UserPasswordEncoderInterface $passwordEncoder,
  206.             string                       $token NULL
  207.         ): Response
  208.         {
  209.             if ( $token ) {
  210.                 // We store the token in session and remove it from the URL, to avoid the URL being
  211.                 // loaded in a browser and potentially leaking the token to 3rd party JavaScript.
  212.                 $this->storeTokenInSession$token );
  214.                 return $this->redirectToRoute'app_reset_password' );
  215.             }
  217.             $token $this->getTokenFromSession();
  218.             if ( NULL === $token ) {
  219.                 throw $this->createNotFoundException'No reset password token found in the URL or in the session.' );
  220.             }
  223.             try {
  224.                 /** @var User $user */
  225.                 $user $this->resetPasswordHelper->validateTokenAndFetchUser$token );
  226.             } catch ( ResetPasswordExceptionInterface $e ) {
  227.                 $this->addFlash(
  228.                     'reset_password_error',
  229.                     sprintf(
  230.                         'There was a problem validating your reset request - %s',
  231.                         $e->getReason()
  232.                     )
  233.                 );
  235.                 return $this->redirectToRoute'app_forgot_password_request' );
  236.             }
  238.             // The token is valid; allow the user to change their password.
  239.             $form $this->createFormChangePasswordFormType::class );
  240.             $form->handleRequest$request );
  242.             if ( $form->isSubmitted() && $form->isValid() ) {
  243.                 // A password reset token should be used only once, remove it.
  244.                 $this->resetPasswordHelper->removeResetRequest$token );
  246.                 // Encode the plain password, and set it.
  247.                 $encodedPassword $passwordEncoder->encodePassword(
  248.                     $user,
  249.                     $form->get'plainPassword' )->getData()
  250.                 );
  253.                 $user->setPassword$encodedPassword );
  255.                 $this->em->flush();
  257.                 // The session is cleaned up after the password has been changed.
  258.                 $this->cleanSessionAfterReset();
  260.                 $this->addFlash('success''Votre nouveau mot de passe a bien été enregistré !');
  262.                 return $this->redirectToRoute'app_login' );
  263.             }
  265.             $twigPath 'security/reset.html.twig';
  266.             if ( $this->yamlReader->getType() === 'dtv' ) {
  267.                 $twigPath 'security/DeveloppetesventesCom/reset.html.twig';
  268.             }
  270.             return $this->render$twigPath, [
  271.                 'resetForm' => $form->createView(),
  272.             ] );
  273.         }
  276.         /**
  277.          * Indique si on doit mettre à jour le mot de passe de l'utilisateur
  278.          *
  279.          * @Route("/{id}", name="app_need_refresh_password")
  280.          *
  281.          *
  282.          * @param   User  $user
  283.          *
  284.          * @return Response
  285.          * @throws ClientExceptionInterface
  286.          * @throws RedirectionExceptionInterface
  287.          * @throws ReflectionException
  288.          * @throws ServerExceptionInterface
  289.          * @throws TransportExceptionInterface
  290.          */
  291.         public function needRefreshPasswordUser $user ): Response
  292.         {
  293.             try {
  294.                 $resetToken $this->resetPasswordHelper->generateResetToken$user );
  295.             } catch ( ResetPasswordExceptionInterface $e ) {
  296.                 return $this->render'security/need_refresh_password.html.twig' );
  297.             }
  299.             $this->mailerService->createApiMailRequestMailTypes::RESET_PASSWORD )
  300.                                 ->addRecipientToRequest(
  301.                                     $user,
  302.                                     MailerFactory::buildResetPassword(
  303.                                         $resetToken->getToken()
  304.                                     )
  305.                                 )
  306.                                 ->send()
  307.             ;
  309.             // Store the token object in session for retrieval in check-email route.
  310.             $this->setTokenObjectInSession$resetToken );
  312.             $twigPath 'security/need_refresh_password.html.twig';
  313.             if ( $this->yamlReader->getType() === 'dtv' ) {
  314.                 $twigPath 'security/DeveloppetesventesCom/need_refresh_password.html.twig';
  315.             }
  317.             return $this->render$twigPath, [
  318.                 'resetToken' => $resetToken,
  319.             ] );
  320.         }
  321.     }