src/Controller/LoginController.php line 32

  1. <?php
  3. namespace App\Controller;
  5. use App\Form\ChooseFormType;
  6. use App\Services\RecaptchaService;
  7. use App\Repository\UserRepository;
  8. use App\Services\Codes\SendCode;
  9. use App\Services\Mails\Mails;
  10. use Doctrine\ORM\EntityManagerInterface;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  14. use Symfony\Component\Routing\Annotation\Route;
  15. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  17. class LoginController extends AbstractController
  18. {
  20.     public function __construct(
  21.     private UserRepository $userRepository,
  22.     private SendCode $sendCode,
  23.     private RecaptchaService $recaptchaService
  24. )
  25. {
  26. }
  28.     #[Route(path: [
  29.         "fr" => "/login_site",
  30.         "en" => "/en/login_site",
  31.     ], name'app_login_site')]
  32.     public function index(Request $requestEntityManagerInterface $entityManagerMails $mailsUserPasswordHasherInterface $userPasswordHasher)
  33.     {
  34.         $form $this->createForm(ChooseFormType::class);
  35.         $handleRequest $form->handleRequest($request);
  36.         $error $request->query->get('error');
  37.         if (is_null($error)) {
  38.             $error false;
  39.         }
  40.         
  41.         $before $request->query->get('before') ?? $request->headers->get('referer');
  42.         $chemin parse_url($beforePHP_URL_PATH);
  43.         if($chemin == "/login_site")$before null;
  45.         if ($handleRequest->isSubmitted() && $handleRequest->isValid()) {
  46.             $captchaResponse $request->request->get('g-recaptcha-response');
  48.             if (!$this->recaptchaService->verify($captchaResponse)) {
  49.                 $this->addFlash('danger''Captcha invalide.');
  50.                 return $this->redirectToRoute('app_login_site', [
  51.                     'error' => true,
  52.                     'before' => $before
  53.                 ]);
  54.             };
  56.             $identifier $form->get('identifier')->getData();
  57.             $prefix $form->get('prefix')->getData();
  58.             $code = (string)random_int(100000999999);
  59.             
  60.             // check email
  61.             $userEmail $this->userRepository->findOneBy(['email' => $identifier]);
  62.             if ($userEmail) {
  63.                 if (!$userEmail->isIsActive()) {
  64.                     $this->addFlash('error''Votre compte est désactivé Pour toute information contacter contact@roomlers.com');
  65.                     return $this->redirectToRoute('app_login_site', ['error' => $error'before' => $before]);
  66.                 } else {
  67.                     
  68.                     $userEmail->getSendSMS() === null $diffTimeEmail 3600 $diffTimeEmail time() - $userEmail->getSendSMS()->getTimestamp();
  69.                     if($diffTimeEmail 60) {
  70.                         $this->addFlash('danger''Veuillez attendre avant l\'envoi du prochain code');
  71.                         return $this->redirectToRoute('app_login_site', ['error' => $error'before' => $before]);                        
  72.                     }
  74.                     $userEmail->setPassword($userPasswordHasher->hashPassword($userEmail$code));
  75.                     $entityManager->persist($userEmail);
  76.                     $entityManager->flush();
  77.                     $email $mails->createEmail('mails/security/AuthentificationCode.html.twig', ["code" => $code])->to($identifier)->subject('Votre code de connexion Roomlers');
  78.                     $mails->send($email);
  79.                     $userEmail->setSendSMS(new \DateTimeimmutable());
  80.                     return $this->redirectToRoute('app_code', ['identifier' => $identifier'before' => $before]);
  81.                 }
  82.             }
  83.     
  84.             // check phone
  85.             $userPhone $this->userRepository->findOneBy(['phone' => $identifier]);
  86.             if ($userPhone) {
  87.                 if (!$userPhone->isIsActive()) {
  88.                     $this->addFlash('danger''Votre compte est désactivé Pour toute information contacter contact@roomlers.com');
  89.                     return $this->redirectToRoute('app_login_site', ['error' => $error'before' => $before]);
  90.                 } else {
  92.                     $userPhone->getSendSMS() === null $diffTimeSMS 3600 $diffTimeSMS time() - $userPhone->getSendSMS()->getTimestamp();
  93.                     if($diffTimeSMS 60) {
  94.                         $this->addFlash('danger''Veuillez attendre avant l\'envoi du prochain code');
  95.                         return $this->redirectToRoute('app_login_site', ['error' => $error'before' => $before]);                        
  96.                     }
  98.                     $this->sendCode->send($identifier$prefix$code);
  99.                     $userPhone->setSendSMS(new \DateTimeimmutable());
  100.                     $userPhone->setPassword($userPasswordHasher->hashPassword($userPhone$code));
  101.                     $entityManager->persist($userPhone);
  102.                     $entityManager->flush();
  103.                     return $this->redirectToRoute('app_code', ['identifier' => $userPhone->getEmail(), 'before' => $before]);
  104.                 }
  105.             }
  106.     
  107.             $error true;
  108.             $this->addFlash('danger''Identifiant inconnu');
  109.             return $this->redirectToRoute('app_login_site', ['error' => $error'before' => $before]);
  110.         }
  111.     
  112.     
  113.         return $this->render('login/index.html.twig', [
  114.             'controller_name' => 'LoginController',
  115.             'form' => $form->createView(),
  116.             'error' => $error,
  117.             'before' => $before,
  118.         ]);
  119.     }
  120.     
  122.     #[Route(path: [
  123.         "fr" => "/code",
  124.         "en" => "/en/code",
  125.     ], name'app_code')]
  126.     public function code(Request $requestAuthenticationUtils $authenticationUtils)
  127.     {
  128.         $session $request->getSession();
  129.         $before $request->query->get('before') ?? $session->get('before');
  131.         if ($before) {
  132.             $session->set('before'$before);
  133.         }
  134.         
  135.         // get the login error if there is one
  136.         $error $authenticationUtils->getLastAuthenticationError();
  137.         // last username entered by the user
  138.         $lastUsername $authenticationUtils->getLastUsername();
  139.     
  140.         if ($request->query->get('error')) {
  141.             $error $request->query->get('error');
  142.         }
  143.     
  144.         if ($request->query->get('identifier')) {
  145.             $lastUsername $request->query->get('identifier');
  146.         } else {
  147.             if (!$error) {
  148.                 return $this->redirectToRoute('app_login_site', ['before' => $before]);
  149.             } else {
  150.                 return $this->redirectToRoute('app_code', ['identifier' => $lastUsername'error' => $error'before' => $before]);
  151.             }
  152.         }
  154.     
  155.         return $this->render('login/code.html.twig', [
  156.             'controller_name' => 'LoginController',
  157.             'last_username' => $lastUsername,
  158.             'error' => $error,
  159.             'before' => $before,
  160.         ]);
  161.     }    
  162. }