Part-DB.Part-DB-server/src/Controller/SecurityController.php

<?php
/**
 * This file is part of Part-DB (https://github.com/Part-DB/Part-DB-symfony).
 *
 * Copyright (C) 2019 Jan Böhmer (https://github.com/jbtronics)
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA
 */

namespace App\Controller;

use App\Services\PasswordResetManager;
use Gregwar\CaptchaBundle\Type\CaptchaType;
use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
use Symfony\Component\Form\Extension\Core\Type\PasswordType;
use Symfony\Component\Form\Extension\Core\Type\RepeatedType;
use Symfony\Component\Form\Extension\Core\Type\SubmitType;
use Symfony\Component\Form\Extension\Core\Type\TextType;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
use Symfony\Component\Routing\Annotation\Route;
use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
use Symfony\Component\Validator\Constraints\Length;
use Symfony\Component\Validator\Constraints\NotBlank;
use Symfony\Contracts\Translation\TranslatorInterface;

class SecurityController extends AbstractController
{
    protected $translator;
    protected $allow_email_pw_reset;

    public function __construct(TranslatorInterface $translator, bool $allow_email_pw_reset)
    {
        $this->translator = $translator;
        $this->allow_email_pw_reset = $allow_email_pw_reset;
    }

    /**
     * @Route("/login", name="login", methods={"GET", "POST"})
     */
    public function login(AuthenticationUtils $authenticationUtils)
    {
        // get the login error if there is one
        $error = $authenticationUtils->getLastAuthenticationError();

        // last username entered by the user
        $lastUsername = $authenticationUtils->getLastUsername();

        return $this->render('security/login.html.twig', [
            'last_username' => $lastUsername,
            'error' => $error,
        ]);
    }

    /**
     * @Route("/pw_reset/request", name="pw_reset_request")
     */
    public function requestPwReset(PasswordResetManager $passwordReset, Request $request)
    {
        if (!$this->allow_email_pw_reset) {
            throw new AccessDeniedHttpException('The password reset via email is disabled!');
        }

        if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
            throw new AccessDeniedHttpException('You are already logged in, so you can not reset your password!');
        }

        $builder = $this->createFormBuilder();
        $builder->add('user', TextType::class, [
            'label' => $this->translator->trans('pw_reset.user_or_email'),
            'constraints' => [new NotBlank()]
        ]);
        $builder->add('captcha', CaptchaType::class, [
            'width' => 200,
            'height' => 50,
            'length' => 6,
        ]);
        $builder->add('submit', SubmitType::class, [
            'label' => 'pw_reset.submit'
        ]);

        $form = $builder->getForm();
        $form->handleRequest($request);

        if ($form->isSubmitted() && $form->isValid()) {
            $passwordReset->request($form->getData()['user']);
            $this->addFlash('success', 'pw_reset.request.success');
            return $this->redirectToRoute('login');
        }

        return $this->render('security/pw_reset_request.html.twig', [
            'form' => $form->createView()
        ]);
    }

    /**
     * @Route("/pw_reset/new_pw/{user}/{token}", name="pw_reset_new_pw")
     */
    public function pwResetNewPw(PasswordResetManager $passwordReset, Request $request, string $user = null, string $token = null)
    {
        if (!$this->allow_email_pw_reset) {
            throw new AccessDeniedHttpException('The password reset via email is disabled!');
        }

        if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
            throw new AccessDeniedHttpException('You are already logged in, so you can not reset your password!');
        }

        $data = ['username' => $user, 'token' => $token];
        $builder = $this->createFormBuilder($data);
        $builder->add('username', TextType::class, [
            'label' => $this->translator->trans('pw_reset.username')
        ]);
        $builder->add('token', TextType::class, [
            'label' => $this->translator->trans('pw_reset.token')
        ]);
        $builder->add('new_password', RepeatedType::class, [
            'type' => PasswordType::class,
            'first_options' => ['label' => 'user.settings.pw_new.label'],
            'second_options' => ['label' => 'user.settings.pw_confirm.label'],
            'invalid_message' => 'password_must_match',
            'constraints' => [new Length([
                'min' => 6,
                'max' => 128,
            ])],
        ]);

        $builder->add('submit', SubmitType::class, [
            'label' => 'pw_reset.submit'
        ]);

        $form = $builder->getForm();
        $form->handleRequest($request);

        if ($form->isSubmitted() && $form->isValid()) {
            $data = $form->getData();
            //Try to set the new password
            $success = $passwordReset->setNewPassword($data['username'], $data['token'], $data['new_password']);
            if (!$success) {
                $this->addFlash('error', 'pw_reset.new_pw.error');
            } else {
                $this->addFlash('success', 'pw_reset.new_pw.success');
                return $this->redirectToRoute('login');
            }
        }


        return $this->render('security/pw_reset_new_pw.html.twig', [
            'form' => $form->createView()
        ]);
    }

    /**
     * @Route("/logout", name="logout")
     */
    public function logout()
    {
        throw new \RuntimeException('Will be intercepted before getting here');
    }
}
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`<?php`
			`/**`
Added an PHP CS fixer config file and applied it to files. We now use the same the same style as the symfony project, and it allows us to simply fix the style by executing php_cs_fixer fix in the project root. 2019-11-09 00:47:20 +01:00			`* This file is part of Part-DB (https://github.com/Part-DB/Part-DB-symfony).`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`*`
Updated copyright headers. 2019-11-01 13:40:30 +01:00			`* Copyright (C) 2019 Jan Böhmer (https://github.com/jbtronics)`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`*`
			`* This program is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU General Public License`
			`* as published by the Free Software Foundation; either version 2`
			`* of the License, or (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA`
			`*/`

			`namespace App\Controller;`

Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`use App\Services\PasswordResetManager;`
			`use Gregwar\CaptchaBundle\Type\CaptchaType;`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`use Symfony\Component\Form\Extension\Core\Type\PasswordType;`
			`use Symfony\Component\Form\Extension\Core\Type\RepeatedType;`
			`use Symfony\Component\Form\Extension\Core\Type\SubmitType;`
			`use Symfony\Component\Form\Extension\Core\Type\TextType;`
			`use Symfony\Component\HttpFoundation\Request;`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`use Symfony\Component\Routing\Annotation\Route;`
			`use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`use Symfony\Component\Validator\Constraints\Length;`
			`use Symfony\Component\Validator\Constraints\NotBlank;`
			`use Symfony\Contracts\Translation\TranslatorInterface;`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00
			`class SecurityController extends AbstractController`
			`{`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`protected $translator;`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`protected $allow_email_pw_reset;`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`public function __construct(TranslatorInterface $translator, bool $allow_email_pw_reset)`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`{`
			`$this->translator = $translator;`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`$this->allow_email_pw_reset = $allow_email_pw_reset;`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`}`

Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`/**`
			`* @Route("/login", name="login", methods={"GET", "POST"})`
			`*/`
			`public function login(AuthenticationUtils $authenticationUtils)`
			`{`
			`// get the login error if there is one`
			`$error = $authenticationUtils->getLastAuthenticationError();`

			`// last username entered by the user`
			`$lastUsername = $authenticationUtils->getLastUsername();`

			`return $this->render('security/login.html.twig', [`
			`'last_username' => $lastUsername,`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`'error' => $error,`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`]);`
			`}`

Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`/**`
			`* @Route("/pw_reset/request", name="pw_reset_request")`
			`*/`
			`public function requestPwReset(PasswordResetManager $passwordReset, Request $request)`
			`{`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`if (!$this->allow_email_pw_reset) {`
Fixed some inspection issues. 2020-01-04 20:14:42 +01:00			`throw new AccessDeniedHttpException('The password reset via email is disabled!');`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`}`

			`if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {`
Fixed some inspection issues. 2020-01-04 20:14:42 +01:00			`throw new AccessDeniedHttpException('You are already logged in, so you can not reset your password!');`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`}`

Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`$builder = $this->createFormBuilder();`
			`$builder->add('user', TextType::class, [`
Added german translations for password reset dialogs and email 2019-12-01 13:50:43 +01:00			`'label' => $this->translator->trans('pw_reset.user_or_email'),`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`'constraints' => [new NotBlank()]`
			`]);`
			`$builder->add('captcha', CaptchaType::class, [`
			`'width' => 200,`
			`'height' => 50,`
			`'length' => 6,`
			`]);`
			`$builder->add('submit', SubmitType::class, [`
			`'label' => 'pw_reset.submit'`
			`]);`

			`$form = $builder->getForm();`
			`$form->handleRequest($request);`

			`if ($form->isSubmitted() && $form->isValid()) {`
			`$passwordReset->request($form->getData()['user']);`
Dont call translator inside the form classes. Translation is already done in the templates, so translator calls in form classes, are bad for performance and readability. 2019-12-26 14:53:13 +01:00			`$this->addFlash('success', 'pw_reset.request.success');`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`return $this->redirectToRoute('login');`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`}`

			`return $this->render('security/pw_reset_request.html.twig', [`
			`'form' => $form->createView()`
			`]);`
			`}`

			`/**`
			`* @Route("/pw_reset/new_pw/{user}/{token}", name="pw_reset_new_pw")`
			`*/`
			`public function pwResetNewPw(PasswordResetManager $passwordReset, Request $request, string $user = null, string $token = null)`
			`{`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`if (!$this->allow_email_pw_reset) {`
Fixed some inspection issues. 2020-01-04 20:14:42 +01:00			`throw new AccessDeniedHttpException('The password reset via email is disabled!');`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`}`

			`if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {`
Fixed some inspection issues. 2020-01-04 20:14:42 +01:00			`throw new AccessDeniedHttpException('You are already logged in, so you can not reset your password!');`
Added an setting to disable password reset mechanism. By default the pw reset is disabled, when no email server is configured. 2019-12-01 12:48:59 +01:00			`}`

Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`$data = ['username' => $user, 'token' => $token];`
			`$builder = $this->createFormBuilder($data);`
			`$builder->add('username', TextType::class, [`
			`'label' => $this->translator->trans('pw_reset.username')`
			`]);`
			`$builder->add('token', TextType::class, [`
			`'label' => $this->translator->trans('pw_reset.token')`
			`]);`
			`$builder->add('new_password', RepeatedType::class, [`
			`'type' => PasswordType::class,`
			`'first_options' => ['label' => 'user.settings.pw_new.label'],`
			`'second_options' => ['label' => 'user.settings.pw_confirm.label'],`
			`'invalid_message' => 'password_must_match',`
			`'constraints' => [new Length([`
			`'min' => 6,`
			`'max' => 128,`
			`])],`
			`]);`

			`$builder->add('submit', SubmitType::class, [`
			`'label' => 'pw_reset.submit'`
			`]);`

			`$form = $builder->getForm();`
			`$form->handleRequest($request);`

			`if ($form->isSubmitted() && $form->isValid()) {`
			`$data = $form->getData();`
			`//Try to set the new password`
			`$success = $passwordReset->setNewPassword($data['username'], $data['token'], $data['new_password']);`
			`if (!$success) {`
Dont call translator inside the form classes. Translation is already done in the templates, so translator calls in form classes, are bad for performance and readability. 2019-12-26 14:53:13 +01:00			`$this->addFlash('error', 'pw_reset.new_pw.error');`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`} else {`
Dont call translator inside the form classes. Translation is already done in the templates, so translator calls in form classes, are bad for performance and readability. 2019-12-26 14:53:13 +01:00			`$this->addFlash('success', 'pw_reset.new_pw.success');`
Added an mechanism to reset passwords via mail. 2019-11-24 22:49:22 +01:00			`return $this->redirectToRoute('login');`
			`}`
			`}`


			`return $this->render('security/pw_reset_new_pw.html.twig', [`
			`'form' => $form->createView()`
			`]);`
			`}`
Added possibilty to invalidate trusted devices. 2019-12-29 16:43:43 +01:00
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`/**`
			`* @Route("/logout", name="logout")`
			`*/`
			`public function logout()`
			`{`
Fixed some inspection issues. 2019-08-20 18:39:57 +02:00			`throw new \RuntimeException('Will be intercepted before getting here');`
Added user entity and basic login/logout system. 2019-03-14 18:01:41 +01:00			`}`
Used PHP_CS_Fixer with symfony preset on codebase. 2019-03-20 23:16:07 +01:00			`}`