vendor/roothirsch/core-bundle/Security/Controller/RegistrationController.php line 92

Open in your IDE?
  1. <?php
  3. namespace Roothirsch\CoreBundle\Security\Controller;
  5. use Doctrine\ORM\EntityManagerInterface;
  6. use Roothirsch\CoreBundle\Entity\Address;
  7. use Roothirsch\CoreBundle\Entity\ContactValidation;
  8. use Roothirsch\CoreBundle\Entity\User;
  9. use Roothirsch\CoreBundle\Messaging\MessagingService;
  10. use Roothirsch\CoreBundle\Repository\GroupRepository;
  11. use Roothirsch\CoreBundle\Repository\UserRepository;
  12. use Roothirsch\CoreBundle\Security\Event\RegistrationCompletedEvent;
  13. use Roothirsch\CoreBundle\Security\Event\RegistrationTokenCreatedEvent;
  14. use Roothirsch\CoreBundle\Security\Form\RegistrationUserType;
  15. use Roothirsch\CoreBundle\Security\Form\RegistrationRequestFormType;
  16. use Roothirsch\CoreBundle\Security\UserManager;
  17. use Roothirsch\CoreBundle\Site\Repository\SiteRepository;
  18. use Roothirsch\CoreBundle\Site\SiteProvider;
  19. use Roothirsch\CoreBundle\Translation\Services\CoreTranslator;
  20. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  21. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  22. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  23. use Symfony\Component\HttpFoundation\RedirectResponse;
  24. use Symfony\Component\HttpFoundation\Request;
  25. use Symfony\Component\HttpFoundation\Response;
  26. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  27. use Symfony\Component\Mailer\MailerInterface;
  28. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  29. use Symfony\Component\Routing\Annotation\Route;
  30. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  31. use SymfonyCasts\Bundle\ResetPassword\Exception\ResetPasswordExceptionInterface;
  33. /**
  34. * @Route("/registration", name="app_registration_")
  35. */
  36. class RegistrationController extends AbstractController
  37. {
  38. /** @var UserRepository */
  39. private $userRepository;
  41. /** @var SiteProvider */
  42. private $siteProvider;
  44. /** @var MailerInterface */
  45. private $mailer;
  47. /** @var EntityManagerInterface */
  48. private $entityManager;
  50. /** @var UserPasswordHasherInterface */
  51. private $passwordHasher;
  53. /** @var EventDispatcherInterface */
  54. private $dispatcher;
  56. /** @var GroupRepository */
  57. private $groupRepository;
  59. /** @var MessagingService */
  60. private $messaging;
  62. /** @var CoreTranslator */
  63. private $translationService;
  65. /**
  66. * @param UserRepository $userRepository
  67. * @param SiteProvider $sideProvider
  68. * @param MailerInterface $mailer
  69. * @param EntityManagerInterface $entityManager
  70. * @param UserPasswordHasherInterface $passwordHasher
  71. * @param EventDispatcherInterface $dispatcher
  72. */
  73. public function __construct(UserRepository $userRepository, SiteProvider $sideProvider, MailerInterface $mailer, EntityManagerInterface $entityManager, UserPasswordHasherInterface $passwordHasher, EventDispatcherInterface $dispatcher, GroupRepository $groupRepository, MessagingService $messaging, CoreTranslator $translator)
  74. {
  75. $this->userRepository = $userRepository;
  76. $this->siteProvider = $sideProvider;
  77. $this->mailer = $mailer;
  78. $this->entityManager = $entityManager;
  79. $this->passwordHasher = $passwordHasher;
  80. $this->dispatcher = $dispatcher;
  81. $this->groupRepository = $groupRepository;
  82. $this->messaging = $messaging;
  83. $this->translationService = $translator;
  84. }
  87. /**
  88. * @Route("", name="request")
  89. * @param Request $request
  90. * @return Response
  91. */
  92. public function request(Request $request): Response
  93. {
  94. $form = $this->createForm(RegistrationRequestFormType::class);
  95. $form->handleRequest($request);
  97. if ($form->isSubmitted() && $form->isValid()) {
  98. return $this->processRegistrationData($form->get('email')->getData(), $request->getLocale());
  99. }
  100. return $this->render(
  101. 'security/registration/request.html.twig', [
  102. 'requestForm' => $form->createView()
  103. ]
  104. );
  105. }
  107. /**
  108. * Confirmation page after a user has requested a password reset.
  109. *
  110. * @Route("/check-email", name="check_email")
  111. */
  112. public function checkEmail(): Response
  113. {
  114. // Generate a fake token if the user does not exist or someone hit this page directly.
  115. // This prevents exposing whether or not a user was found with the given email address or not
  116. // if (null === ($resetToken = $this->getTokenObjectFromSession())) {
  117. // $resetToken = $this->resetPasswordHelper->generateFakeResetToken();
  118. // }
  120. return $this->render(
  121. 'security/registration/check_email.html.twig', [
  122. ]
  123. );
  124. }
  126. /**
  127. * Confirmation page after a user has requested a password reset.
  128. *
  129. * @Route("/completed", name="completed")
  130. */
  131. public function completed(): Response
  132. {
  133. return $this->render('security/registration/completed.html.twig');
  134. }
  136. /**
  137. * Confirmation page after a user has requested a password reset.
  138. *
  139. * @Route("/confirm/{token?}", name="confirm")
  140. */
  141. public function confirm(string $token=null, Request $request): Response
  142. {
  143. if($token){
  144. $this->getSessionService()->set("token", $token);
  145. return $this->redirectToRoute('app_registration_confirm');
  146. }
  147. $token = $this->getSessionService()->get("token");
  148. if(!$token){
  149. throw $this->createNotFoundException('Beim Aufruf wurde kein Schlüssel übergeben.');
  150. }
  152. $user = $this->userRepository->findUserByRegistrationToken($token);
  153. if(!$user){
  154. $this->addFlash('error', 'Beim Versuch Ihre Registrierung abzuschließen ist ein Problem aufgetreten');
  155. return $this->redirectToRoute('app_registration_request');
  156. }
  157. if(!$user->getContactValidation()){
  158. $contactValidation = new ContactValidation();
  159. $contactValidation->setAddress(new Address());
  160. $contactValidation->setUser($user);
  161. $user->setContactValidation($contactValidation);
  162. }
  163. $form = $this->createForm(RegistrationUserType::class, $user);
  164. $form->handleRequest($request);
  165. if ($form->isSubmitted() && $form->isValid()) {
  166. $user->addGroup($this->groupRepository->getOrCreateRole('ROLE_USER'));
  167. $user->setPassword($this->passwordHasher->hashPassword($user, $form->get('password')->getData()));
  168. return $this->sendRegistrationNotification($user);
  169. }
  171. return $this->render(
  172. 'security/registration/confirm.html.twig', [
  173. 'form' => $form->createView(),
  174. ]
  175. );
  177. }
  180. private function processRegistrationData(string $emailFormData, $locale = 'de'): RedirectResponse
  181. {
  182. $user = $this->userRepository->findUserByEmail($emailFormData);
  184. // Do not reveal whether a user account was found or not.
  185. if ($user && $user->getActive()) {
  186. return $this->redirectToRoute('app_registration_check_email');
  187. }
  189. if ($user instanceof User) {
  190. $token = $user->getRegistrationToken();
  191. if (empty($token)) {
  192. $token = bin2hex(random_bytes(24));
  193. $user->setRegistrationToken($token);
  194. $this->entityManager->persist($user);
  195. $this->entityManager->flush();
  196. }
  197. } else {
  198. $token = bin2hex(random_bytes(24));
  199. $user = new User();
  200. $user->setUsername($emailFormData);
  201. $user->setEmail($emailFormData);
  202. $user->setActive(false);
  203. $user->setAdmin(false);
  204. $user->setRegistrationToken($token);
  205. $this->entityManager->persist($user);
  206. $this->entityManager->flush();
  207. }
  208. $url = $this->generateUrl('app_registration_confirm', [ 'token' => $user->getRegistrationToken(), 'locale' => $locale ], UrlGeneratorInterface::ABSOLUTE_URL);
  209. $email = $this->messaging->createTranslatedEmail('security/registration/email.html.twig', ['url' => $url], $locale);
  210. $email
  211. ->to($user->getEmail())
  212. ->subject(
  213. $this->translationService->translate('email.registration.user_email.subject', 'Ihre Registrierung bei {siteTitle}', ['siteTitle' => $this->siteProvider->getTitle()])
  214. );
  216. $event = new RegistrationTokenCreatedEvent($user, $this->currentRequest());
  217. $event->addEmail('user_token', $email);
  219. $this->dispatcher->dispatch($event, RegistrationTokenCreatedEvent::EVENT);
  220. if(!$event->isPropagationStopped()){
  221. foreach ($event->getEmails() as $email){
  222. $this->mailer->send($email);
  223. }
  224. }
  225. // Store the token object in session for retrieval in check-email route.
  226. // $this->setTokenObjectInSession($resetToken);
  228. return $this->redirectToRoute('app_registration_check_email');
  229. }
  231. public function sendRegistrationNotification($user)
  232. {
  233. $user->setRegistrationToken(null);
  234. $user->setActive(true);
  236. // Dispatching an event so E-Mails can be properly send.
  237. $event = new RegistrationCompletedEvent($user, $this->currentRequest());
  238. $this->dispatcher->dispatch($event, RegistrationCompletedEvent::EVENT);
  240. if(!$event->isPropagationStopped()){
  241. foreach ($event->getEmails() as $email){
  242. $this->mailer->send($email);
  243. }
  244. }
  246. $this->entityManager->persist($user);
  247. $this->entityManager->flush();
  248. $this->getSessionService()->remove("token");
  250. return $this->redirectToRoute('app_registration_completed');
  251. }
  253. private function getSessionService(): SessionInterface
  254. {
  255. return $this->currentRequest()->getSession();
  256. }
  258. private function currentRequest(): Request{
  259. return $this->container->get('request_stack')->getCurrentRequest();
  260. }
  261. }