vendor/kobizo/core-bundle/src/Controller/FeResetPasswordController.php line 103

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Kobizo\Bundle\CoreBundle\Controller;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Kobizo\Bundle\CoreBundle\Form\RequestPasswordFormType;
  9. use Kobizo\Bundle\CoreBundle\Form\ResetPasswordFormType;
  10. use Kobizo\Bundle\CoreBundle\Helper\SiteParamsHelper;
  11. use Kobizo\Component\Configuration\MailTemplate\ForgotPasswordMailTemplateConfig;
  12. use Kobizo\Component\Helper\TokenGeneratorInterface;
  13. use Kobizo\Bundle\CoreBundle\Repository\UserRepository;
  14. use Kobizo\Bundle\CoreBundle\Security\LoginFormAuthenticator;
  15. use Kobizo\Component\Provider\MailTemplateProvider;
  16. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  17. use Symfony\Component\HttpFoundation\RedirectResponse;
  18. use Symfony\Component\HttpFoundation\Request;
  19. use Symfony\Component\HttpFoundation\Response;
  20. use Symfony\Component\Mailer\MailerInterface;
  21. use Symfony\Component\Mime\Address;
  22. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  23. use Symfony\Component\Routing\Annotation\Route;
  24. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  25. use Symfony\Component\Security\Core\Authorization\Voter\AuthenticatedVoter;
  26. use Symfony\Component\Security\Http\Authentication\UserAuthenticatorInterface;
  27. use Symfony\Contracts\Translation\TranslatorInterface;
  28. use Kobizo\Component\Resources\AccessControl\DashboardResource;
  29. use Kobizo\Component\Attributes\DefaultRolesAttribute;
  30. use Kobizo\Component\Configuration\Backend\AdminUrlConfig;
  32. /**
  33.  * @Route("/password")
  34.  */
  35. class FeResetPasswordController extends KobizoFeAbstractController
  36. {
  37.     const TTL_RESET_TIME 3600;
  39.     /**
  40.      * @Route("/request", name="app_request_password")
  41.      */
  42.     public function sendEmail(
  43.         Request $request,
  44.         UserRepository $repository,
  45.         MailerInterface $mailer,
  46.         TokenGeneratorInterface $tokenGenerator,
  47.         SiteParamsHelper $siteParamsHelper,
  48.         EntityManagerInterface $entityManager,
  49.         TranslatorInterface $translator,
  50.         MailTemplateProvider $mailTemplateProvider,
  51.         ForgotPasswordMailTemplateConfig $forgotPasswordTemplateConfig,
  52.         AdminUrlConfig $adminUrlConfig
  53.     ): Response {
  54.         if ($this->isGranted(AuthenticatedVoter::IS_AUTHENTICATED_FULLY)) {
  55.             return $this->redirectToRoute('dashboard_analytics', ['admin' => $adminUrlConfig->getValue()]);
  56.         }
  58.         $form $this->createForm(RequestPasswordFormType::class);
  59.         $form->handleRequest($request);
  61.         if ($form->isSubmitted() && $form->isValid()) {
  62.             $email $form->get('email')->getData();
  63.             $user $repository->findOneByEmail($email);
  64.             if (null !== $user && !$user->isPasswordRequestNoneExpired()) {
  65.                 if (null === $user->getConfirmationToken()) {
  66.                     $user->setConfirmationToken($tokenGenerator->generateConfirmationToken($user->getEmail()));
  67.                 }
  68.                 $user->setPasswordRequestedAt(new \DateTime());
  69.                 $entityManager->persist($user);
  70.                 $entityManager->flush();
  72.                 $url $this->container->get('router')->generate(
  73.                     'app_reset_password',
  74.                     [
  75.                         'confirmationToken' => $user->getConfirmationToken(),
  76.                     ],
  77.                     UrlGeneratorInterface::NETWORK_PATH
  78.                 );
  80.                 $options = [
  81.                     'resetPasswordUrl' => $url,
  82.                     'siteName' => $siteParamsHelper->getSiteName(),
  83.                     'siteUrl' => $siteParamsHelper->getSiteUrl(),
  84.                     'address' => $siteParamsHelper->getSiteAddress(),
  85.                     MailTemplateProvider::CODE => $forgotPasswordTemplateConfig->getValue()
  86.                 ];
  88.                 $email = (new TemplatedEmail())
  89.                     ->from(new Address($siteParamsHelper->getNoReplyEmail(), $siteParamsHelper->getSiteName()))
  90.                     ->to($user->getEmail())
  91.                     ->subject($translator->trans('Reset Your Password'))
  92.                     ->html($mailTemplateProvider->get($options));
  94.                 $mailer->send($email);
  96.                 return $this->render('@KobizoCore/frontend/password-sent.twig', [
  97.                     'email' => $user->getEmail(),
  98.                 ]);
  99.             }
  100.         }
  102.         return $this->render('@KobizoCore/frontend/request-password.twig', [
  103.             'requestPasswordForm' => $form->createView(),
  104.         ]);
  105.     }
  107.     /**
  108.      * @Route("/reset/{confirmationToken}", name="app_reset_password")
  109.      */
  110.     public function reset(
  111.         Request $request,
  112.         UserRepository $repository,
  113.         UserAuthenticatorInterface $userAuthenticator,
  114.         LoginFormAuthenticator $authenticator,
  115.         UserPasswordHasherInterface $userPasswordHasher,
  116.         EntityManagerInterface $entityManager,
  117.         AdminUrlConfig $adminUrlConfig,
  118.         string $confirmationToken
  119.     ): Response {
  120.         if ($this->isGranted(AuthenticatedVoter::IS_AUTHENTICATED_FULLY)) {
  121.             return $this->redirectToRoute('dashboard_analytics');
  122.         }
  124.         $form $this->createForm(ResetPasswordFormType::class);
  125.         $form->handleRequest($request);
  127.         if ($form->isSubmitted() && $form->isValid()) {
  128.             $user $repository->findOneByConfirmationToken($form->get('confirmationToken')->getData());
  130.             if (null === $user || !$user->isPasswordRequestNoneExpired(self::TTL_RESET_TIME)) {
  131.                 return new RedirectResponse($this->container->get('router')->generate('app_request_password'));
  132.             }
  134.             $user->setPassword(
  135.                 $userPasswordHasher->hashPassword(
  136.                     $user,
  137.                     $form->get('plainPassword')->getData()
  138.                 )
  139.             );
  140.             $user->setConfirmationToken(null);
  141.             $user->setPasswordRequestedAt(null);
  142.             $entityManager->persist($user);
  143.             $entityManager->flush();
  145.             $userAuthenticator->authenticateUser(
  146.                 $user,
  147.                 $authenticator,
  148.                 $request,
  149.             );
  151.             if ($this->isGranted(DashboardResource::DASHBOARD_CRM) && $user->isAdmin()) {
  152.                 return $this->redirectToRoute('dashboard_analytics', ['admin' => $adminUrlConfig->getValue()]);
  153.             }
  155.             if ($this->isGranted(DefaultRolesAttribute::CLIENT)) {
  156.                 return $this->redirectToRoute('customer_account');
  157.             }
  159.             return $this->redirectToRoute('home');
  160.         }
  162.         return $this->render('@KobizoCore/frontend/reset-password.twig', [
  163.             'resetPasswordForm' => $form->createView(),
  164.             'confirmationToken' => $confirmationToken,
  165.         ]);
  166.     }
  167. }