src/Controller/SsoSecurityController.php line 39

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  6. use Symfony\Component\HttpFoundation\Response;
  7. use Symfony\Component\Routing\Annotation\Route;
  8. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  9. use Symfony\Component\HttpFoundation\Request;
  11. use App\Repository\SsoPersonaRepository;
  12. use App\Form\OlvidoPassType;
  13. use App\Entity\SsoPersona;
  14. use App\Service\PortalConsejoService;
  15. use App\Entity\Auditoria\Registro;
  16. use App\Service\AuditoriaService;
  18. class SsoSecurityController extends AbstractController
  19. {
  20.     #[Route('/login'name'app_login'methods: ['GET''POST'])]
  21.     public function login(AuthenticationUtils $authenticationUtils): Response
  22.     {
  23.         // get the login error if there is one
  24.         $error $authenticationUtils->getLastAuthenticationError();
  25.         // last username entered by the user
  26.         $lastUsername $authenticationUtils->getLastUsername();
  28.         $form $this->createForm(OlvidoPassType::class, null, [
  29.             'action' => $this->generateUrl('app_forgot'),
  30.             // // enable/disable CSRF protection for this form
  31.             // 'csrf_protection' => true,
  32.             // // the name of the hidden HTML field that stores the token
  33.             // 'csrf_field_name' => '_token_forgot',
  34.         ]);
  36.         return $this->renderForm('security/login.html.twig', [
  37.             'last_username' => $lastUsername
  38.             'error' => $error,
  39.             'formForgot' => $form,
  40.         ]);
  41.     }
  43.     #[Route('/login/aspirante'name'app_login_aspirante'methods: ['GET''POST'])]
  44.     public function loginAspirante(AuthenticationUtils $authenticationUtils): Response
  45.     {
  46.         // get the login error if there is one
  47.         $error $authenticationUtils->getLastAuthenticationError();
  48.         // last username entered by the user
  49.         $lastUsername $authenticationUtils->getLastUsername();
  51.         $form $this->createForm(OlvidoPassType::class, null, [
  52.             'action' => $this->generateUrl('app_forgot'),
  53.             // // enable/disable CSRF protection for this form
  54.             // 'csrf_protection' => true,
  55.             // // the name of the hidden HTML field that stores the token
  56.             // 'csrf_field_name' => '_token_forgot',
  57.         ]);
  59.         return $this->renderForm('security/login.html.twig', [
  60.             'last_username' => $lastUsername
  61.             'error' => $error,
  62.             'formForgot' => $form,
  63.             'aspirante' => true,
  64.         ]);
  65.     }
  67.     #[Route('/logout'name'app_logout')]
  68.     public function logout()
  69.     {
  70.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  71.     }
  73.     #[Route('/portal'name'app_portal')]
  74.     public function portal()
  75.     {
  76.         if (in_array('ROLE_CONSEJO'$this->getUser()->getRoles()))
  77.             return $this->redirectToRoute('portal_consejo', [], Response::HTTP_SEE_OTHER);
  78.             // return new RedirectResponse($this->urlGenerator->generate('portal_consejo'));
  79.         elseif (in_array('ROLE_ASPIRANTE'$this->getUser()->getRoles()))
  80.             return $this->redirectToRoute('portal_aspirante', [], Response::HTTP_SEE_OTHER);
  81.             // return new RedirectResponse($this->urlGenerator->generate('portal_aspirante'));
  82.     }
  84.     #[Route('/forgot'name:'app_forgot'methods: ['POST'])]
  85.     public function forgot(
  86.         Request $request
  87.         SsoPersonaRepository $ssoPersonaRepository
  88.     ): Response
  89.     {
  90.         
  91.         $form $this->createForm(OlvidoPassType::class, null, [
  92.             'action' => $this->generateUrl('app_forgot'),
  93.             // // enable/disable CSRF protection for this form
  94.             // 'csrf_protection' => true,
  95.             // // the name of the hidden HTML field that stores the token
  96.             // 'csrf_field_name' => '_token_forgot',
  97.         ]);
  98.         
  99.         $form->handleRequest($request);
  100.         if ($form->isSubmitted() && $form->isValid()) {
  101.             $persona $ssoPersonaRepository->findOneBy([
  102.                 'dni' => $form->get('dni')->getData()
  103.             ]);
  104.             if ($persona)
  105.                 return $this->renderForm('security/login.html.twig', [
  106.                     'last_username' => "",
  107.                     'error' => "",
  108.                     'persona' => $persona,
  109.                     'formForgot' => $form,
  110.                 ]);
  111.         } 
  113.         $request->getSession()->getFlashBag()->add(
  114.             'error'// notice / warning / error
  115.             'No se encuentra un usuario registrado con el DNI ingresado.'
  116.         );
  117.         return $this->redirectToRoute('app_login', [], Response::HTTP_SEE_OTHER);
  118.     }
  120.     #[Route('/forgot_ini/{id}'name'app_forgot_ini'methods: ['POST'])]
  121.     public function forgotIni(
  122.         Request $request
  123.         SsoPersona $persona
  124.         PortalConsejoService $portalService,
  125.         AuditoriaService $auditoriaService
  126.     ): Response
  127.     {
  128.         $submittedToken $request->request->get('ini_forgot_token');
  129.         if ($this->isCsrfTokenValid('iniciar-forgot'$submittedToken)) {
  130.             $user $persona->getUsuariosPortal()[0];
  131.             if ($portalService->procesarCorreo(
  132.                 $request
  133.                 $user
  134.                 $user->getPersona()->getEmailPersonal(),
  135.                 'RECUPERO'
  136.                 '[Portal del Consejo] Recupero de contraseƱa',
  137.                 'mail/recuperoPassword.html.twig'
  138.                 )) {
  139.                     $auditoriaService->auditarEvento(Registro::EVENTO_PASSWORD_OLVIDO$user);
  140.                     $request->getSession()->getFlashBag()->add(
  141.                         'notice'// notice / warning / error
  142.                         'Fue enviado un correo para continuar con el recupero de la contraseƱa.'
  143.                     );
  144.                 }
  145.         }
  147.         return $this->redirectToRoute('app_login', [], Response::HTTP_SEE_OTHER);
  148.     }
  150.     #[Route('/recupero/{mail}/{token}'name'app_recupero'methods: ['GET''POST'])]
  151.     public function recupero(
  152.         Request $request,
  153.         PortalConsejoService $portalService,
  154.         String $mail,
  155.         String $token
  156.     ): Response
  157.     {
  158.         $resultado $portalService->procesarRecuperoPassword($request$mail$token);
  159.         if ($resultado['login'])
  160.             return $this->redirectToRoute('app_login', [], Response::HTTP_SEE_OTHER);
  161.         else 
  162.             return $this->renderForm('security/forgotPass.html.twig', [
  163.                 'formPassword' => $resultado['form'],
  164.             ]);
  165.     }
  166. }