<?php
namespace App\Controller;
use App\Entity\User;
use App\Form\RegistrationFormType;
use App\Form\RequestResetPasswordFormType;
use App\Form\ResetPasswordType;
use App\Repository\UserRepository;
use App\Security\EmailVerifier;
use Doctrine\ORM\EntityManagerInterface;
use Ramsey\Uuid\Uuid;
use Symfony\Bridge\Twig\Mime\TemplatedEmail;
use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Mime\Address;
use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
use Symfony\Component\Routing\Annotation\Route;
use Symfony\Component\Security\Core\Security;
use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
use Symfony\Contracts\Translation\TranslatorInterface;
use SymfonyCasts\Bundle\VerifyEmail\Exception\VerifyEmailExceptionInterface;
class SecurityController extends AbstractController
{
public function __construct(
private EmailVerifier $emailVerifier,
private EntityManagerInterface $em,
private Security $security
) {
}
#[Route('/login', name: 'login')]
public function login(Request $request, Security $security, AuthenticationUtils $authenticationUtils): Response
{
$error = $authenticationUtils->getLastAuthenticationError();
$lastUsername = $authenticationUtils->getLastUsername();
return $this->render('security/login.html.twig', [
'error' => $error,
'last_username' => $lastUsername,
]);
}
#[Route('/logout', name: 'logout')]
public function logout()
{
}
#[Route('/register', name: 'register')]
public function register(Request $request, UserPasswordHasherInterface $userPasswordHasher, TranslatorInterface $translator): Response
{
if ($this->security->getUser()) {
return $this->redirectToRoute('app_index');
}
$user = new User();
$form = $this->createForm(RegistrationFormType::class, $user);
$form->handleRequest($request);
if ($form->isSubmitted() && $form->isValid()) {
// encode the plain password
$user->setPassword(
$userPasswordHasher->hashPassword(
$user,
$form->get('plainPassword')->getData()
)
);
$this->em->persist($user);
$this->em->flush();
$this->emailVerifier->sendEmailConfirmation('app_verify_email', $user,
(new TemplatedEmail())
->from(new Address('noreply@competitor-reviews.com', 'competitor-reviews.com'))
->to($user->getEmail())
->subject('verify-email.subject.message')
->htmlTemplate('email/confirmation_email.html.twig')
);
$this->addFlash('verify_email', $translator->trans('verify-email.flush.message'));
return $this->redirectToRoute('register');
}
return $this->render('security/register.html.twig', [
'form' => $form->createView(),
]);
}
#[Route('/verify/email', name: 'app_verify_email')]
public function verifyUserEmail(Request $request): Response
{
$this->denyAccessUnlessGranted('IS_AUTHENTICATED_FULLY');
try {
$this->emailVerifier->handleEmailConfirmation($request, $this->getUser());
} catch (VerifyEmailExceptionInterface $exception) {
$this->addFlash('verify_email_error', $exception->getReason());
return $this->redirectToRoute('register');
}
$this->addFlash('success', 'verify-email.flush.success.');
return $this->redirectToRoute('profile');
}
#[Route('/reset-password', name: 'reset-password-request')]
public function resetPasswordRequest(
Request $request,
UserRepository $userRepository,
): Response
{
$form = $this->createForm(RequestResetPasswordFormType::class);
$form->handleRequest($request);
if ($form->isSubmitted() && $form->isValid()) {
$token = Uuid::uuid4();
$user = $userRepository->findOneByEmail($form->get('email')->getData());
if ($user) {
$user
->setResetPasswordToken($token)
->setResetPasswordRequestAt(new \DateTimeImmutable());
$this->em->persist($user);
$this->em->flush();
$this->emailVerifier->sendResetPasswordEmail($user, $token);
}
$this->addFlash('success', 'Si un compte correpond à votre saisi, vous receverez un email avec les instructions pour réinitialiser le mot de passe de votre compte.');
}
return $this->render('security/request_reset_password.html.twig', [
'form' => $form->createView(),
]);
}
#[Route('/reset-password/{token}', name: 'reset-password')]
public function resetPassword(
Request $request,
UserRepository $userRepository,
UserPasswordHasherInterface $userPasswordHasher,
string $token
): Response
{
$user = $userRepository->findOneBy(['resetPasswordToken' => $token]);
if (!$user) {
$this->redirectToRoute('login');
}
$form = $this->createForm(ResetPasswordType::class);
$form->handleRequest($request);
if ($form->isSubmitted() && $form->isValid()) {
$newPassword = $form->get('newPassword')->getData();
$user
->setPassword($userPasswordHasher->hashPassword($user, $newPassword))
->setResetPasswordToken(null)
->setResetPasswordRequestAt(null);
$this->em->persist($user);
$this->em->flush();
$this->addFlash('success', 'Password reset successfully.');
return $this->redirectToRoute('login');
}
return $this->render('security/reset_password.html.twig', [
'form' => $form->createView(),
]);
}
}