src/Controller/SecurityController.php line 62

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Controller\Traits\SecurityTrait;
  6. use App\Exception\reCaptcha3Exception;
  7. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  8. use App\Services\{ParameterServicereCaptcha3ValidatorServiceTenantFlowServiceTenantServiceTranslatorService};
  10. use Symfony\Component\HttpFoundation\Request;
  11. use Symfony\Component\HttpFoundation\Response;
  12. use Symfony\Component\Routing\Annotation\Route;
  13. use Symfony\Component\Security\Core\Security;
  14. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  16. class SecurityController extends AbstractController
  17. {
  18.     use SecurityTrait;
  20.     private $tenant;
  21.     private $tenantFlowService;
  22.     private $translatorService;
  23.     private $reCaptcha3ValidatorService;
  25.     public function __construct(
  26.         TenantService $tenantService,
  27.         TenantFlowService $tenantFlowService,
  28.         TranslatorService $translatorService,
  29.         ParameterService $parameterService,
  30.         reCaptcha3ValidatorService $reCaptcha3ValidatorService
  31.     )
  32.     {
  33.         $this->tenant $tenantService->defineTenant();
  34.         $this->tenantFlowService $tenantFlowService;
  35.         $this->translatorService $translatorService;
  36.         $this->reCaptcha3ValidatorService $reCaptcha3ValidatorService;
  37.         $this->reCaptcha3ValidatorService->setAccess(
  38.             $parameterService->getParameter($this->tenant->getSettingsArrayAssoc()['config'] ?? 'non-existent''reCaptcha3.secretKey'),
  39.             $parameterService->getParameter($this->tenant->getSettingsArrayAssoc()['config'] ?? 'non-existent''reCaptcha3.allowableScore')
  40.         );
  41.     }
  43.     /**
  44.      * @Route("/log-in", name="user_sign_in")
  45.      */
  46.     public function controlSignIn(AuthenticationUtils $authenticationUtilsSecurity $security): Response
  47.     {
  48.         if (!is_null($security->getUser())) return $this->redirectToRoute('user_profile');
  49.         return $this->render("{$this->tenant->getRootPath()}/pages/sign-in.html.twig", [
  50.             'rootPath' => $this->tenant->getRootPath(),
  51.             'last_username' => $authenticationUtils->getLastUsername(),
  52.             'message' => $authenticationUtils->getLastAuthenticationError()
  53.         ]
  54.             + $this->tenantFlowService->prepareTemplateArguments('signUp'$this->tenant)
  55.             + $this->tenantFlowService->prepareTemplateArguments('menu'$this->tenant)
  56.         );
  57.     }
  59.     /**
  60.      * @Route("/ask-access", name="ask_access")
  61.      */
  62.     public function controlAskingOneTimeAuthorization(Request $request): Response
  63.     {
  64.         if ( $this->isPost() ) {
  65.             try {
  66.                 if ( ! $this->isCsrfTokenExistsAndValid('AskAccessForm') ) {
  67.                     throw new \Exception('Invalid CSRF token.');
  68.                 }
  70.                 $this->reCaptcha3ValidatorService->setToken($request->request->get('reCAPTCHA_token'));
  71.                 if ($this->reCaptcha3ValidatorService->validate()) {
  72.                     throw new reCaptcha3Exception('reCaptcha3 validation failed.');
  73.                 }
  74.                 
  75.                 return $this->tenantFlowService->controlRequest($this->tenant$request);
  76.                 
  77.             } catch (\Exception $exception) {
  78.                 $message $exception->getMessage();
  79.             }
  80.         }
  81.         return $this->render("{$this->tenant->getRootPath()}/pages/ask-access.html.twig", [
  82.             'rootPath' => $this->tenant->getRootPath(),
  83.             'message' => $message ?? ''
  84.         ]
  85.             + $this->tenantFlowService->prepareTemplateArguments('signUp'$this->tenant)
  86.             + $this->tenantFlowService->prepareTemplateArguments('menu'$this->tenant)
  87.         );
  88.     }
  90.     /**
  91.      * @Route("/use-access-code", name="use_access_code", methods={"GET", "HEAD"})
  92.      */
  93.     public function controlUseAccessCode(Request $request): Response
  94.     {
  95.         try {
  96.             if (is_null($request->query->get('code'))) return $this->redirectToRoute('user_sign_in');
  97.             return $this->tenantFlowService->controlRequest($this->tenant$request);
  98.         } catch (\Exception $exception) {
  99.             $message $exception->getMessage();
  100.         }
  101.         return $this->redirectToRoute('user_sign_in');
  102.     }
  104.     /**
  105.      * @Route("/sign-out", name="user_sign_out")
  106.      * @throws \RuntimeException
  107.      */
  108.     public function controlSignOut()
  109.     {
  110.         throw new \RuntimeException('Intercepted by the logout key on your firewall.');
  111.     }
  112. }