src/Controller/Website/Auth/SecurityController.php line 61

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Website\Auth;
  5. use App\Controller\Website\ThemeRenderController;
  6. use App\Entity\Generic\Customer\Customer;
  7. use App\Form\Website\NewPasswordType;
  8. use App\Form\Website\ResetPasswordSmsRequestFormType;
  9. use App\Form\Website\VerifySmsCodeType;
  10. use App\Security\Authenticator\CustomerAuthenticator;
  11. use App\Service\SmsHandler;
  12. use App\Service\WebsiteManager;
  13. use App\Service\Util\Sms;
  14. use Doctrine\ORM\EntityManagerInterface;
  15. use LogicException;
  16. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  17. use Symfony\Component\HttpFoundation\RedirectResponse;
  18. use Symfony\Component\HttpFoundation\Request;
  19. use Symfony\Component\HttpFoundation\Response;
  20. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  21. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  22. use Symfony\Component\Routing\Annotation\Route;
  23. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  24. use Symfony\Component\Security\Core\Security;
  25. use Symfony\Component\Security\Csrf\TokenGenerator\TokenGeneratorInterface;
  26. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  27. use Symfony\Component\Security\Http\Authentication\UserAuthenticatorInterface;
  29. class SecurityController extends ThemeRenderController
  30. {
  31.     #[Route(path'/website-panel/login'name'customer_panel_login')]
  32.     public function login(AuthenticationUtils $authenticationUtilsWebsiteManager $shopManager): Response
  33.     {
  34.         if ($this->getUser()) {
  35.             return $this->redirectToRoute('customer_panel_user_handler');
  36.         }
  37.         $error $authenticationUtils->getLastAuthenticationError();
  38.         $lastUsername $authenticationUtils->getLastUsername();
  39.         return $this->renderUserTemplate('security/login.html.twig', ['last_username' => $lastUsername'error' => $error]);
  42.     }
  44.     #[Route(path'/website-panel/user-handler'name'customer_panel_user_handler')]
  45.     public function userHandler(Security $security): RedirectResponse
  46.     {
  47.         $user $security->getUser();
  48.         if ($user->hasRole('ROLE_ADMIN')) {
  49.             return $this->redirectToRoute('shop_customer_panel_admin_dashboard');
  50.         }
  51.         return $this->redirectToRoute('shop_customer_panel_dashboard');
  52.     }
  54.     #[Route(path'/website-panel/logout'name'shop_owner_logout')]
  55.     public function logout(): void
  56.     {
  57.         throw new LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  58.     }
  60.     #[Route('/forgot-password/sms'name'app_forgot_password_sms')]
  61.     public function requestSmsReset(
  62.         Request                 $request,
  63.         EntityManagerInterface  $em,
  64.         SmsHandler                     $smsSender,
  65.         TokenGeneratorInterface $tokenGenerator,
  66.     ): Response
  67.     {
  68.         $form $this->createForm(ResetPasswordSmsRequestFormType::class);
  69.         $form->handleRequest($request);
  71.         if ($form->isSubmitted() && $form->isValid()) {
  72.             $phone $form->get('phoneNumber')->getData();
  73.             $user $em->getRepository(Customer::class)->findOneBy(['mobile' => $phone]);
  75.             if ($user) {
  76.                 $code random_int(100000999999);
  77.                 $user->setVerifyCode($code);
  78.                 $user->setPasswordResetAt(new \DateTime());
  80.                 $em->flush();
  82.                 $smsSender->sendCode($phone$code);
  83.             }
  85.             $this->addFlash('success''در صورت ثبت شماره صحیح، کدی برای شما ارسال خواهد شد');
  86.             return $this->redirectToRoute('app_verify_sms_code');
  87.         }
  89.         return $this->renderUserTemplate('security/request_sms_reset.html.twig', [
  90.             'form' => $form->createView(),
  91.         ]);
  92.     }
  94.     #[Route('/forgot-password/sms/verify'name'app_verify_sms_code')]
  95.     public function verifyCode(
  96.         Request                $request,
  97.         EntityManagerInterface $em,
  98.         UrlGeneratorInterface  $urlGenerator,
  99.         SessionInterface       $session
  100.     ): Response
  101.     {
  102.         $form $this->createForm(VerifySmsCodeType::class);
  103.         $form->handleRequest($request);
  105.         if ($form->isSubmitted() && $form->isValid()) {
  106.             $phone $form->get('phoneNumber')->getData();
  107.             $code $form->get('code')->getData();
  109.             $user $em->getRepository(Customer::class)->findOneBy(['mobile' => $phone'verifyCode' => $code]);
  111.             if ($user && $user->getPasswordResetAt() > (new \DateTime('-10 minutes'))) {
  112.                 // ذخیره موقتی کاربر برای مرحله بعدی
  113.                 $session->set('reset_user_id'$user->getId());
  114.                 return $this->redirectToRoute('app_reset_password_form');
  115.             }
  117.             $this->addFlash('danger''کد وارد شده صحیح نیست یا منقضی شده');
  118.         }
  120.         return $this->renderUserTemplate('security/verify_sms_code.html.twig', [
  121.             'form' => $form->createView(),
  122.         ]);
  123.     }
  126.     #[Route('/forgot-password/sms/reset'name'app_reset_password_form')]
  127.     public function resetPassword(
  128.         Request                     $request,
  129.         EntityManagerInterface      $em,
  130.         UserPasswordHasherInterface $hasher,
  131.         SessionInterface            $session
  132.     ): Response
  133.     {
  134.         $userId $session->get('reset_user_id');
  135.         if (!$userId) {
  136.             return $this->redirectToRoute('app_forgot_password_sms');
  137.         }
  139.         $user $em->getRepository(Customer::class)->find($userId);
  140.         if (!$user) {
  141.             return $this->redirectToRoute('app_forgot_password_sms');
  142.         }
  144.         $form $this->createForm(NewPasswordType::class);
  145.         $form->handleRequest($request);
  147.         if ($form->isSubmitted() && $form->isValid()) {
  148.             $password $form->get('newPassword')->getData();
  149.             $user->setPassword($hasher->hashPassword($user$password));
  150.             $user->setVerifyCode(null);
  151.             $user->setPasswordResetAt(null);
  153.             $em->flush();
  155.             $session->remove('reset_user_id');
  156.             $this->addFlash('success''رمز عبور با موفقیت تغییر کرد');
  157.             return $this->redirectToRoute('customer_panel_login');
  158.         }
  160.         return $this->renderUserTemplate('security/reset_password.html.twig', [
  161.             'form' => $form->createView(),
  162.         ]);
  163.     }
  166.     #[Route('/streight-login/{id}'name'app_website_streight_login')]
  167.     public function app_website_streight_login(
  168.         Customer $customer null,
  169.         Request $request,
  170.         UserAuthenticatorInterface $userAuthenticator,
  171.         CustomerAuthenticator $customerAuthenticator,   // همون authenticator خودت
  172.     )
  173.     {
  174.         if ($customer){
  175.             return $userAuthenticator->authenticateUser(
  176.                 $customer,
  177.                 $customerAuthenticator// Authenticator مربوط به فایروال customer_firewall
  178.                 $request
  179.             );
  180.         }else{
  181.             return $this->redirectToRoute('app_shop_site_index');
  182.         }
  183.     }
  184. }