src/Fonial/FrontendBundle/Controller/SecurityController.php line 49

Open in your IDE?
  1. <?php
  3. namespace Fonial\FrontendBundle\Controller;
  5. use DateTime;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Fonial\DataBundle\Entity\AccountSetting;
  8. use Fonial\DataBundle\Entity\AccountUserSetting;
  9. use Fonial\DataBundle\Entity\GlobalSetting;
  10. use Fonial\DataBundle\Services\ConfigHelper;
  11. use Fonial\FrontendBundle\Security\LoginFormAuthenticator;
  12. use RuntimeException;
  13. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  14. use Symfony\Component\HttpFoundation\Cookie;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpFoundation\Response;
  17. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  18. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  19. use Symfony\Component\Security\Guard\GuardAuthenticatorHandler;
  20. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  21. use User\UserBundle\Entity\User;
  23. /**
  24.  * TODO: make this controller use real di... this maybe needs to get rid of FOS Bundle...
  25.  * @method User getUser()
  26.  */
  27. class SecurityController extends AbstractController
  28. {
  29.     private ConfigHelper $configHelper;
  30.     private SessionInterface $session;
  31.     private EntityManagerInterface $em;
  33.     public function __construct(
  34.         ConfigHelper $configHelper,
  35.         SessionInterface $session,
  36.         EntityManagerInterface $em
  37.     ) {
  38.         $this->configHelper $configHelper;
  39.         $this->session $session;
  40.         $this->em $em;
  41.     }
  43.     /**
  44.      * This method basically just sets the _locale into the session if not available, then calls the original method
  45.      *
  46.      * @param AuthenticationUtils $authenticationUtils
  47.      * @return Response
  48.      */
  49.     public function loginAction(AuthenticationUtils $authenticationUtils): Response
  50.     {
  51.         // REDIRECT TO DASHBOARD IF ALREADY LOGGED IN
  52.         if (!$this->session->get('_locale')) {
  53.             $this->session->set('_locale'$this->configHelper->getConfigParameter('kernel.default_locale'));
  54.         }
  56.         if ($this->getUser() !== null) {
  57.             // REDIRECT TO DASHBOARD IF ALREADY LOGGED IN
  58.             return $this->redirectToRoute('fonial_frontend_dashboard_index');
  59.         }
  62.         /** @var GlobalSetting $loginFooter */
  63.         $loginFooter $this->em->getRepository(GlobalSetting::class)->findOneBy([
  64.              'key' => GlobalSetting::CUSTOM_FOOTER_LOGIN,
  65.          ]);
  66.         $this->session->remove(GlobalSetting::CUSTOM_FOOTER_LOGIN);
  67.         if (null !== $loginFooter) {
  68.             $this->session->set(GlobalSetting::CUSTOM_FOOTER_LOGIN$loginFooter->getValue());
  69.         }
  71.         $error $authenticationUtils->getLastAuthenticationError();
  72.         $lastUsername $authenticationUtils->getLastUsername();
  74.         if (!$error instanceof AuthenticationException) {
  75.             $error null// The value does not come from the security component.
  76.         }
  78.         return $this->renderLogin([
  79.           'last_username' => $lastUsername,
  80.           'error' => $error,
  81.       ]);
  82.     }
  84.     protected function renderLogin(array $data): ?Response
  85.     {
  86.         if ($data['error']) {
  87.             // If we have an error, get more user info to give mor specific info
  88.             /** @var User $user */
  89.             $user $this->em->getRepository(User::class)->findOneBy([
  90.                'username' => $data['last_username']
  91.            ]);
  93.             if ($user) {
  94.                 // Check, if there is a already lockout time or just some failed logins
  95.                 if ($user->getFailedLoginTimeout()) {
  96.                     $data['loginIsTimedOut'] = true;
  97.                     $data['remainingTime'] = $user->getFailedLoginTimeout()->diff(new DateTime())->format('%I:%S');
  98.                 } else {
  99.                     $securitySettings $this->configHelper->getConfigParameter('security');
  100.                     $remainingAttempts = (int)$securitySettings['brute_force_max_logins'] - $user->getFailedLoginCount();
  101.                     $data['passwordIsWrong'] = true;
  102.                     $data['remainingAttempts'] = $remainingAttempts;
  103.                 }
  104.             }
  105.         }
  107.         $data['isBackend'] = $_SERVER['SYMFONY_ENVIRONMENT'] === 'app_backend';
  109.         // TODO trigger warning
  110.         $data['alert'] = array(
  111.             'type' => 'Warning',
  112.             'message' => 'Anbindung an das Telefonnetz derzeit gestört!',
  113.             'info' => 'https://www.fonial.de',
  114.         );
  116.         $signUpServiceConfig $this->configHelper->getConfigParameter('signUpService');
  117.         if (is_array($signUpServiceConfig) && !empty($signUpServiceConfig) && isset($signUpServiceConfig['webservice_url'])) {
  118.             $data['signUpServiceUrl'] = $signUpServiceConfig['webservice_url'];
  120.             if (!str_starts_with($data['signUpServiceUrl'], 'http')) {
  121.                 $data['signUpServiceUrl'] = 'https://' $data['signUpServiceUrl'];
  122.             }
  123.         }
  125.         return $this->render('@FonialFrontend/Security/login.html.twig'$data);
  126.     }
  128.     public function remoteloginAction(
  129.         string $guid,
  130.         string $sessionId,
  131.         LoginFormAuthenticator $loginAuthenticator,
  132.         GuardAuthenticatorHandler $guardHandler,
  133.         Request $request
  134.     ): ?Response
  135.     {
  136.         /** @var ?User $user */
  137.         $user $this->em->getRepository(User::class)->findOneBy(['guid' => $guid]);
  139.         /** @var ?AccountSetting $sessionSetting */
  140.         $sessionSetting $this->em->getRepository(AccountUserSetting::class)->findOneBy([
  141.              'user' => $user,
  142.              'data0' => $sessionId
  143.          ]);
  145.         if (!($sessionSetting instanceof AccountUserSetting)) {
  146.             return $this->redirectToRoute('fonial_frontend_login');
  147.         }
  149.         $this->em->remove($sessionSetting);
  150.         $this->em->flush();
  152.         //Now lets log them in
  153.         $response $guardHandler->authenticateUserAndHandleSuccess(
  154.             user$user,
  155.             request$request,
  156.             authenticator$loginAuthenticator,
  157.             providerKey'main'
  158.         );
  160.         /** @var GlobalSetting $customSidebar */
  161.         $customSidebar $this->em->getRepository(GlobalSetting::class)->findOneBy([
  162.             'key' => GlobalSetting::CUSTOM_SIDEBAR,
  163.         ]);
  165.         $this->session->remove(GlobalSetting::CUSTOM_SIDEBAR);
  166.         if (null !== $customSidebar) {
  167.             $this->session->set(GlobalSetting::CUSTOM_SIDEBAR$customSidebar->getValue());
  168.         }
  170.         $response?->headers->setCookie(new Cookie('adminLogin'1));
  172.         return $response;
  173.     }
  175.     public function logoutAction()
  176.     {
  177.         throw new RuntimeException('You must activate the logout in your security firewall configuration.');
  178.     }
  181. }