src/Controller/SecurityController.php line 34

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Controller;
  7. use App\Exception\ValidationErrorException;
  8. use App\Response\MessageResponse;
  9. use App\Service\CustomerServiceInterface;
  10. use App\Service\Security\AuthServiceInterface;
  11. use App\Service\User\UserServiceInterface;
  12. use App\Validator\ViolationsTrait;
  13. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  14. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpFoundation\Response;
  17. use Symfony\Component\Routing\Annotation\Route;
  18. use Symfony\Component\Security\Core\User\UserInterface;
  19. use Symfony\Component\Validator\Validator\ValidatorInterface;
  21. final class SecurityController extends AbstractController
  22. {
  23.     use ViolationsTrait;
  25.     public function __construct(
  26.         private AuthServiceInterface $authService,
  27.         private UserServiceInterface $userService,
  28.         private CustomerServiceInterface $customerService,
  29.         private ValidatorInterface $validator,
  30.     ) {
  31.     }
  33.     #[Route('/'name'default_route')]
  34.     public function index(): Response
  35.     {
  36.         return new Response('No direct access.'400);
  37.     }
  39.     #[Route(path'/auth/forgotten_password/{email}'name'auth_forgotten_password'methods: ['GET'])]
  40.     public function forgottenPassword(string $email): Response
  41.     {
  42.         if (!empty(trim($email))) {
  43.             $user $this->userService->getUserByEmail($email);
  44.             if (null === $user) {
  45.                 $user $this->customerService->findCustomerByEmail($email);
  46.             }
  48.             if (null !== $user) {
  49.                 $this->authService->resetPassword($user);
  50.             }
  51.         }
  53.         return new MessageResponse('OK');
  54.     }
  56.     /**
  57.      * @throws ValidationErrorException
  58.      */
  59.     #[Route(path'/auth/reset_password/{resetToken}'name'auth_reset_password'methods: ['POST'])]
  60.     public function changePassword(string $resetTokenRequest $request): MessageResponse
  61.     {
  62.         $user $this->userService->findByResetToken($resetToken);
  64.         $request json_decode($request->getContent(), true);
  66.         if (
  67.             null === $user->getResetTokenCreatedAt() ||
  68.             (new \DateTimeImmutable())->getTimestamp() - $user->getResetTokenCreatedAt()->getTimestamp() >= 172800
  69.         ) {
  70.             throw new \DomainException('ERROR.USER.PASSWORD.TOKEN.EXPIRED'Response::HTTP_BAD_REQUEST);
  71.         }
  73.         if (!isset($request['newPassword'])) {
  74.             throw new \DomainException('ERROR.USER.PASSWORD.MISSING'Response::HTTP_BAD_REQUEST);
  75.         }
  77.         $user->setPassword($request['newPassword']);
  79.         $this->checkViolations($this->validator->validate($user));
  81.         $this->authService->changePassword($user);
  83.         return new MessageResponse('INFO.USER.PASSWORD.UPDATED');
  84.     }
  86.     #[Route(path'/auth/invalidate_refresh_token'name'auth_invalidate_refresh_token'methods: ['GET'])]
  87.     #[IsGranted('ROLE_ADMIN')]
  88.     public function invalidateRefreshToken(): Response
  89.     {
  90.         if (!$this->getUser() instanceof UserInterface) {
  91.             throw new \DomainException('ERROR.USER.INVALID.ACCESS.RIGHTS'403);
  92.         }
  94.         $this->authService->invalidate($this->getUser());
  96.         return new MessageResponse('INFO.USER.REFRESH.TOKEN.INVALIDATED');
  97.     }
  98. }