src/Controller/ResetPasswordController.php line 68

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Constants\GeneralConstants;
  6. use App\Entity\User;
  7. use App\Form\ChangePasswordFormType;
  8. use App\Form\ResetPasswordRequestFormType;
  9. use App\Repository\UserRepository;
  10. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\Mailer\MailerInterface;
  16. use Symfony\Component\Mime\Address;
  17. use Symfony\Component\Routing\Annotation\Route;
  18. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  19. use Symfony\Contracts\Translation\TranslatorInterface;
  20. use SymfonyCasts\Bundle\ResetPassword\Controller\ResetPasswordControllerTrait;
  21. use SymfonyCasts\Bundle\ResetPassword\Exception\ResetPasswordExceptionInterface;
  22. use SymfonyCasts\Bundle\ResetPassword\ResetPasswordHelperInterface;
  24. /**
  25.  * @Route("/reset-password")
  26.  */
  27. class ResetPasswordController extends AbstractController
  28. {
  29.     use ResetPasswordControllerTrait;
  31.     private $resetPasswordHelper;
  32.     private $translator;
  33.     private $userRepository;
  36.     public function __construct(ResetPasswordHelperInterface $resetPasswordHelperUserRepository $userRepositoryTranslatorInterface $translator)
  37.     {
  38.         $this->resetPasswordHelper $resetPasswordHelper;
  39.         $this->userRepository $userRepository;
  40.         $this->translator $translator;
  41.     }
  43.     /**
  44.      * Display & process form to request a password reset.
  45.      *
  46.      * @Route("", name="app_forgot_password_request")
  47.      */
  48.     public function request(Request $requestMailerInterface $mailer): Response
  49.     {
  50.         $form $this->createForm(ResetPasswordRequestFormType::class);
  51.         $form->handleRequest($request);
  53.         if ($form->isSubmitted() && $form->isValid()) {
  54.             return $this->processSendingPasswordResetEmail(
  55.                 $form->get('email')->getData(),
  56.                 $mailer
  57.             );
  58.         }
  59.         return $this->render('reset_password/request.html.twig', [
  60.             'requestForm' => $form->createView(),
  61.         ]);
  62.     }
  64.     /**
  65.      * Display & process form to request a password reset for agents.
  66.      * @Route("/reset-password-agent", name="app_agent_forgot_password_request")
  67.      */
  68.     public function agentRequest(Request $requestMailerInterface $mailer): Response
  69.     {
  70.         $form $this->createForm(ResetPasswordRequestFormType::class);
  71.         $form->handleRequest($request);
  73.         if ($form->isSubmitted() && $form->isValid()) {
  74.             return $this->processSendingPasswordResetEmail(
  75.                 $form->get('email')->getData(),
  76.                 $mailer,
  77.                 true
  79.             );
  80.         }
  81.         return $this->render('reset_password/request.html.twig', [
  82.             'requestForm' => $form->createView(),
  83.             'agent' => true
  84.         ]);
  85.     }
  87.     /**
  88.      * Confirmation page after a user has requested a password reset.
  89.      *
  90.      * @Route("/check-email", name="app_check_email")
  91.      */
  92.     public function checkEmail(): Response
  93.     {
  94.         // We prevent users from directly accessing this page
  95.         if (!$this->canCheckEmail()) {
  96.             return $this->redirectToRoute('app_forgot_password_request');
  97.         }
  99.         return $this->render('reset_password/check_email.html.twig', [
  100.             'tokenLifetime' => $this->resetPasswordHelper->getTokenLifetime(),
  101.             'email' => 'recuperare il dato' ]);
  102.     }
  104.     /**
  105.      * Validates and process the reset URL that the user clicked in their email.
  106.      *
  107.      * @Route("/reset/{token}", name="app_reset_password")
  108.      */
  109.     public function reset(Request $requestUserPasswordEncoderInterface $passwordEncoderstring $token null): Response
  110.     {
  111.         if ($token) {
  112.             // We store the token in session and remove it from the URL, to avoid the URL being
  113.             // loaded in a browser and potentially leaking the token to 3rd party JavaScript.
  114.             $this->storeTokenInSession($token);
  115.             return $this->redirectToRoute('app_reset_password');
  116.         }
  118.         $token $this->getTokenFromSession();
  120.         if (null === $token) {
  121.             throw $this->createNotFoundException('No reset password token found in the URL or in the session.');
  122.         }
  124.         try {
  125.             $user $this->resetPasswordHelper->validateTokenAndFetchUser($token);
  126.         } catch (ResetPasswordExceptionInterface $e) {
  127.             $this->addFlash('reset_password_error'sprintf(
  128.                 "C'รจ stato un problema di validazione richiesta reset password - %s",
  129.                 $e->getReason()
  130.             ));
  132.             return $this->redirectToRoute('app_forgot_password_request');
  133.         }
  135.         // The token is valid; allow the user to change their password.
  136.         $form $this->createForm(ChangePasswordFormType::class);
  137.         $form->handleRequest($request);
  139.         if ($form->isSubmitted() && $form->isValid()) {
  140.             // A password reset token should be used only once, remove it.
  141.             $this->resetPasswordHelper->removeResetRequest($token);
  142.             // Encode the plain password, and set it.
  143.             $encodedPassword $passwordEncoder->encodePassword(
  144.                 $user,
  145.                 $form->get('plainPassword')->getData()
  146.             );
  148.             $user->setPassword($encodedPassword);
  149.             $this->getDoctrine()->getManager()->flush();
  151.             // The session is cleaned up after the password has been changed.
  152.             $this->cleanSessionAfterReset();
  154.             return $this->render('reset_password/reset_ok.html.twig', [
  155.                 'ok' => $this->translator->trans("frontoffice.reset_password_ok") ]);
  156.             //return $this->redirectToRoute('app_login');
  157.         }
  159.         return $this->render('reset_password/reset.html.twig', [
  160.             'resetForm' => $form->createView(),
  161.         ]);
  162.     }
  164.     private function processSendingPasswordResetEmail(string $emailFormDataMailerInterface $mailer$agent false): RedirectResponse
  165.     {
  166.         $users $this->userRepository->findUserByRole(($agent 'ROLE_AGENT' 'ROLE_CLIENT'), 'LIKE'falsefalse, ['email'=>$emailFormData]);
  167.         $user null;
  168.         if(count($users) >= 1) {
  169.             $user $users[0];
  170.         }
  172.         // Marks that you are allowed to see the app_check_email page.
  173.         $this->setCanCheckEmailInSession();
  175.         // Do not reveal whether a user account was found or not.
  176.         if (!$user) {
  177.             return $this->redirectToRoute('app_check_email');
  178.         }
  179.         try {
  180.             $resetToken $this->resetPasswordHelper->generateResetToken($user);
  181.         } catch (ResetPasswordExceptionInterface $e) {
  182.             $this->addFlash('reset_password_error'sprintf(
  183.                 $this->translator->trans("frontoffice.reset_password_error") . " - %s",
  184.                 $e->getReason()
  185.             ));
  186.             return $this->redirectToRoute('app_forgot_password_request');
  187.         }
  188.         $email = (new TemplatedEmail())
  189.             ->from(new Address(GeneralConstants::TDB_DEV_EMAILGeneralConstants::TDB_EXTENDED_COMPANY_NAME))
  190.             ->to($user->getEmail())
  191.             ->subject('Reset Password')
  192.             ->htmlTemplate('reset_password/email.html.twig')
  193.             ->context([
  194.                 'resetToken' => $resetToken,
  195.                 'tokenLifetime' => $this->resetPasswordHelper->getTokenLifetime(),
  196.             ])
  197.         ;
  198.         $mailer->send($email);
  199.         return $this->redirectToRoute('app_check_email');
  200.     }
  201. }