src/Controller/UserController.php line 245

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use Psr\Log\LoggerInterface;
  6. use App\Entity\User;
  7. use Symfony\Component\Routing\Annotation\Route;
  8. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  11. use App\Entity\UserAction;
  12. use Pagerfanta\Pagerfanta;
  13. use Symfony\Contracts\Translation\TranslatorInterface;
  14. use Symfony\Component\Mailer\MailerInterface;
  15. use Symfony\Component\Mime\Email;
  16. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  17. use Pagerfanta\Doctrine\ORM\QueryAdapter;
  18. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  20. class UserController  extends AbstractController
  21. {
  23.     /**
  24.      * @Route("/user/create", name="user_create")
  25.      */
  26.     public function indexAction(Request $requestTranslatorInterface $translator)
  27.     {
  28.         return $this->render('users/create.html.twig', [
  29.             'page_title' => $translator->trans('Add User'),
  30.             'box_title' => '<i class="fa fa-plus-circle fa-fw"></i> '.$translator->trans('Add new'),
  31.         ]);
  32.     }
  34.     /**
  35.      * @IsGranted("ROLE_SUPER_ADMIN")
  36.      * @Route("/user/create/process", name="user_create_process")
  37.      */
  38.     public function createAction(Request $requestLoggerInterface $loggerTranslatorInterface $translatorMailerInterface $mailerUserPasswordHasherInterface $passwordHasher)
  39.     {
  41.         $email $request->request->get('email');
  42.         $username $request->request->get('username');
  43.         $password $request->request->get('pwd');
  45.         
  46.         // $userManager = $this->get('fos_user.user_manager');
  48.         // $user = $userManager->createUser();
  49.         $user = new User();
  50.         $user->setUsername($username);
  51.         $user->setEmail($email );
  52.         // $user->setEmailCanonical($email );
  53.         $user->setEnabled(1);
  54.         // $password = bin2hex(openssl_random_pseudo_bytes(4));
  55.         $user->setPassword($passwordHasher->hashPassword($user,$password));
  56.         $user->addRole($request->request->get('role'));
  58.         $user->setOldPasswords($this->my_simple_crypt($password"e"));
  59.         $user->setRappel$request->request->get('rappel') ? 0);
  60.         $user->setPasswordUpdatedAt(new \DateTime());
  61.         $em $this->getDoctrine()->getManager();
  62.         $em->persist($user);
  63.         $em->flush();
  64.         // $userManager->updateUser($user);
  66.         // send email using swiftmailer
  67.         $mailFrom $this->getParameter('email_from'"fiberlink.m6@gmail.com");
  68.         $appName $this->getParameter('app_name');
  69.         $loginUrl $this->getParameter('base_url');
  70.         $subject $appName." Account created";
  72.         $htmlContent $this->renderView(
  73.             'email/registration.html.twig', array(
  74.                 'username' => $username,
  75.                 'password' => $password,
  76.                 'login_url' => $loginUrl,
  77.                 'app_name' => $appName
  78.             )
  79.         );
  80.         $email = (new Email())
  81.                             ->from($mailFrom)
  82.                             ->to($email)
  83.                             ->subject($subject)
  84.                             ->html($htmlContent);
  85.         // $message = (new \Swift_Message($subject));
  86.         // $message->setFrom($mailFrom)
  87.         // ->setTo($email)
  88.         // ->setBody(
  89.         //     $htmlContent,
  90.         //     'text/html'
  91.         // );
  93.         try {
  94.             $mailer->send($email);
  95.             // $https['ssl']['verify_peer'] = FALSE;
  96.             // $https['ssl']['verify_peer_name'] = FALSE;
  98.             // // $transport = \Swift_SmtpTransport::newInstance($this->getParameter('mailer_host'), $this->getParameter('mailer_port'),  $this->getParameter('mailer_encryption'))
  99.             // //     ->setUsername($this->getParameter('mailer_user'))
  100.             // //     ->setPassword($this->getParameter('mailer_password'))
  101.             // //     ->setStreamOptions($https)
  102.             // // ;
  103.             // $transport = new \Swift_SmtpTransport($this->container->getParameter('mailer_host'), $this->container->getParameter('mailer_port'),  $this->container->getParameter('mailer_encryption'));
  104.             // $transport->setUsername($this->container->getParameter('mailer_user'));
  105.             // $transport->setPassword($this->container->getParameter('mailer_password'));
  106.             // $transport->setStreamOptions($https);
  108.             // $res = $this->get('mailer')->newInstance($transport)->send($message);
  109.             $logger->info("message envoyé");
  110.             // $this->get('mailer')->send($message);
  111.         } catch (\Exception $e) {
  113.         }
  116.         // send email via sendgrid
  117.         // require __DIR__.'/../Services/sendgrid-php/vendor/autoload.php';
  118.         //
  119.         // $mailFrom = $this->getParameter('email_noreply');
  120.         // $appName = $this->getParameter('app_name');
  121.         // $loginUrl = $this->getParameter('base_url');
  122.         //
  123.         // $htmlContent = $this->renderView(
  124.         //     'email/registration.html.twig', array(
  125.         //         'username' => $username,
  126.         //         'password' => $password,
  127.         //         'login_url' => $loginUrl,
  128.         //         'app_name' => $appName
  129.         //     )
  130.         // );
  131.         //
  132.         // $from = new \SendGrid\Email($appName, $mailFrom);
  133.         // $subject = $appName." Account created";
  134.         // $to = new \SendGrid\Email($username, $email);
  135.         // $content = new \SendGrid\Content("text/html", $htmlContent);
  136.         //
  137.         // $mail = new \SendGrid\Mail($from, $subject, $to, $content);
  138.         // $apiKey = $this->getParameter('sendgrid_api_key');
  139.         // $sg = new \SendGrid($apiKey);
  140.         // $sg->client->mail()->send()->post($mail);
  143.         return $this->redirectToRoute('user_list');
  145.     }
  147.     /**
  148.      * @Route("/user/list", name="user_list")
  149.      */
  150.     public function listAction(Request $requestTranslatorInterface $translator)
  151.     {
  152.         $list $this->getDoctrine()->getRepository('App\Entity\User')->findAll();
  154.         return $this->render('users/list.html.twig', [
  155.             'page_title' => $translator->trans('List Users'),
  156.             'list' => $list
  157.         ]);
  158.     }
  160.     /**
  161.      * @Route("/user/view/{id}", name="user_view")
  162.      */
  163.     public function viewAction($idTranslatorInterface $translator)
  164.     {
  165.         $user $this->getDoctrine()->getRepository('App\Entity\User')->findOneById($id);
  167.         return $this->render('users/view.html.twig', [
  168.             'page_title' => $translator->trans('View User'),
  169.             'box_title' => '<i class="fa fa-edit fa-fw"></i> '.$translator->trans('Edit'),
  170.             'user' => $user
  171.         ]);
  172.     }
  174.     /**
  175.      * @IsGranted("ROLE_SUPER_ADMIN")
  176.      * @Route("/user/edit", name="user_edit_process")
  177.      */
  178.     public function editAction(Request $requestTranslatorInterface $translator)
  179.     {
  181.         $em $this->getDoctrine()->getManager();
  183.         $user $this->getDoctrine()->getRepository('App\Entity\User')->findOneById($request->request->get('id'));
  184.         $username $user->getUsername();
  186.         $user->setEmail($request->request->get('email'));
  187.         // $user->setEmailCanonical($request->request->get('email'));
  188.         $user->setRappel$request->request->get('rappel') ? 0);
  190.         if ($username != 'superadmin'){
  192.             if (isset($_POST['enabled'])) {
  193.                 $user->setEnabled(1);
  194.             } else {
  195.                 $user->setEnabled(0);
  196.             }
  198.             $roles $user->getRoles();
  199.             foreach ($roles as $role){
  200.                 $user->removeRole($role);
  201.             }
  202.             $user->addRole($request->request->get('role'));
  204.         }
  207.         $em->persist($user);
  208.         $em->flush();
  210.         return $this->redirectToRoute('user_list');
  211.     }
  213.     /**
  214.      * @Route("/user/check/new", name="ajax_check_new_user")
  215.      */
  216.     public function checkNewUserAction(Request $requestTranslatorInterface $translator)
  217.     {
  219.         $usernameExists $this->getDoctrine()->getRepository('App\Entity\User')->findOneByUsername($_POST['username']);
  220.         $emailExists $this->getDoctrine()->getRepository('App\Entity\User')->findOneByEmail($_POST['email']);
  222.         $response['username'] = ($usernameExists) ? 0;
  223.         $response['email'] = ($emailExists) ? 0;
  225.         return $this->json($response);
  226.     }
  228.     /**
  229.      * @Route("/user/check/edit", name="ajax_check_edit_user")
  230.      */
  231.     public function checkEditUserAction(Request $request)
  232.     {
  234.         $username $_POST['username'];
  235.         $email $_POST['email'];
  237.         $response $this->getDoctrine()->getRepository('App\Entity\User')->checkOtherMail($username$email);
  239.         return $this->json($response);
  240.     }
  242.     /**
  243.      * @Route("/change-password", name="change_password")
  244.      */
  245.     public function changePasswordAction(Request $requestTranslatorInterface $translatorUserPasswordHasherInterface $passwordHasher)
  246.     {
  247.         $user $this->getUser();
  248.         $username $user->getUsername();
  249.         $email $user->getEmail();
  250.         if (null !== $request->request->get('pwd')){
  252.             $new_pwd $request->request->get('pwd');
  253.             $em $this->getDoctrine()->getManager();
  256.             $oldPasswordsTemp explode($this->getParameter("password.delimiter"), $user->getOldPasswords());
  257.             $oldPasswords = array();
  258.             foreach ($oldPasswordsTemp as $value) {
  259.                 $oldPasswords[] = $this->my_simple_crypt($value"d");
  260.             }
  261.             if (in_array($new_pwd$oldPasswords)) {
  262.                 $info $translator->trans('le mot de passe ne doit être identique au trois précédents');
  263.             }
  264.             else {
  265.                 //tweak - have to make other change in db
  266.                 $now = new \DateTime();
  267.                 $user->setLastLogin($now);
  269.                 // now set pwd
  270.                 $user->setPassword($passwordHasher->hashPassword($user,$new_pwd));
  271.                 for ($i=0$i count($oldPasswords); $i++) {
  272.                     $oldPasswords[$i] = $this->my_simple_crypt($oldPasswords[$i], "e");
  273.                 }
  274.                 if (count($oldPasswords) < 3) {
  275.                     $oldPasswords[] = $this->my_simple_crypt($new_pwd"e");
  276.                 }
  277.                 else {
  278.                     $oldPasswords[0] = $oldPasswords[1];
  279.                     $oldPasswords[1] = $oldPasswords[2];
  280.                     $oldPasswords[2] = $this->my_simple_crypt($new_pwd"e");
  281.                 }
  282.                 $user->setOldPasswords(implode($this->getParameter("password.delimiter"), $oldPasswords));
  283.                 $user->setPasswordUpdatedAt(new \DateTime());
  284.                 $user->setOneWeekRemainderSent(0);
  285.                 $user->setTwoWeekRemainderSent(0);
  287.                 $em->persist($user);
  288.                 $em->flush();
  290.                 $info $translator->trans('Password changed successfully');
  291.             }
  293.         } else {
  294.             $info '';
  295.         }
  297.         return $this->render('users/change_password.html.twig', array(
  298.             'page_title' => $translator->trans('Change Password'),
  299.             'box_title' => '<i class="fa fa-unlock fa-fw"></i> '$translator->trans('Change Password'),
  300.             'info' => $info,
  301.             "username" => $username,
  302.             "email" => $email,
  303.         ));
  305.     }
  307.     /**
  308.      * @Route("/reset-password", name="reset_password")
  309.      */
  310.     public function resetPasswordAction(Request $requestLoggerInterface $loggerTranslatorInterface $translatorMailerInterface $mailerUserPasswordHasherInterface $passwordHasher)
  311.     {
  312.         if (null !== $request->request->get('user')){
  314.             $em $this->getDoctrine()->getManager();
  316.             $query $request->request->get('user');
  318.             // try to find by email
  319.             $user $this->getDoctrine()->getRepository('App\Entity\User')->findOneByEmail($query);
  321.             // try to find by username
  322.             if (!$user){
  323.                 $user $this->getDoctrine()->getRepository('App\Entity\User')->findOneByUsername($query);
  324.             }
  326.             // user found
  327.             if($user){
  328.                 $oldPasswords explode($this->getParameter("password.delimiter"), $user->getOldPasswords());
  329.                 if (count($oldPasswords) == && !$oldPasswords[0]) {
  330.                     $oldPasswords = array();
  331.                 }
  332.                 //tweak - have to make other change in db
  333.                 $now = new \DateTime();
  334.                 $user->setLastLogin($now);
  336.                 // now set pwd
  337.                 $pwd $this->generateStrongPassword($length 8$add_dashes false$available_sets 'lud');
  338.                 // $pwd = bin2hex(openssl_random_pseudo_bytes(8));
  339.                 $user->setPassword($passwordHasher->hashPassword($user,$pwd));
  341.                 if (count($oldPasswords) < 3) {
  342.                     $oldPasswords[] = $this->my_simple_crypt($pwd"e");
  343.                 }
  344.                 else {
  345.                     $oldPasswords[0] = $oldPasswords[1];
  346.                     $oldPasswords[1] = $oldPasswords[2];
  347.                     $oldPasswords[2] = $this->my_simple_crypt($pwd"e");
  348.                 }
  349.                 $user->setOldPasswords(implode($this->getParameter("password.delimiter"), $oldPasswords));
  350.                 $user->setPasswordUpdatedAt(new \DateTime());
  351.                 $user->setOneWeekRemainderSent(0);
  352.                 $user->setTwoWeekRemainderSent(0);
  354.                 $em->persist($user);
  355.                 $em->flush();
  357.                 // send email using swiftmailer
  358.                 $mailFrom $this->getParameter('email_from'"fiberlink.m6@gmail.com");
  359.                 $username $user->getUsername();
  360.                 $baseUrl $this->getParameter('base_url');
  361.                 $appName $this->getParameter('app_name');
  362.                 $mailTo $user->getEmail();
  363.                 $subject $appName." Password reset";
  365.                 $htmlContent $this->renderView(
  366.                     'email/reset_password.html.twig', array('username' => $username'password' => $pwd'base_url' => $baseUrl)
  367.                 );
  368.                 $email = (new Email())
  369.                             ->from($mailFrom)
  370.                             ->to($mailTo)
  371.                             ->subject($subject)
  372.                             ->html($htmlContent);
  374.                 // $message = (new \Swift_Message($subject));
  375.                 // $message->setFrom($mailFrom)
  376.                 // ->setTo($mailTo)
  377.                 // ->setBody(
  378.                 //     $htmlContent,
  379.                 //     'text/html'
  380.                 // );
  382.                 try {
  383.                     $mailer->send($email);
  384.                     // $https['ssl']['verify_peer'] = FALSE;
  385.                     // $https['ssl']['verify_peer_name'] = FALSE;
  387.                     // // $transport = \Swift_SmtpTransport::newInstance($this->getParameter('mailer_host'), $this->getParameter('mailer_port'),  $this->getParameter('mailer_encryption'))
  388.                     // //     ->setUsername($this->getParameter('mailer_user'))
  389.                     // //     ->setPassword($this->getParameter('mailer_password'))
  390.                     // //     ->setStreamOptions($https)
  391.                     // // ;
  392.                     // $transport = new \Swift_SmtpTransport($this->container->getParameter('mailer_host'), $this->container->getParameter('mailer_port'),  $this->container->getParameter('mailer_encryption'));
  393.                     // $transport->setUsername($this->container->getParameter('mailer_user'));
  394.                     // $transport->setPassword($this->container->getParameter('mailer_password'));
  395.                     // $transport->setStreamOptions($https);
  397.                     // $res = $this->get('mailer')->newInstance($transport)->send($message);
  398.                     $logger->info("message envoyé");
  399.                     // $this->get('mailer')->send($message);
  400.                 } catch (\Exception $e) {
  402.                 }
  405.                 // send email
  406.                 // require __DIR__.'/../Services/sendgrid-php/vendor/autoload.php';
  407.                 //
  408.                 // $username = $user->getUsername();
  409.                 // $baseUrl = $this->getParameter('base_url');
  410.                 // $appName = $this->getParameter('app_name');
  411.                 //
  412.                 //
  413.                 // $htmlContent = $this->renderView(
  414.                 //     'email/reset_password.html.twig', array('username' => $username, 'password' => $pwd, 'base_url' => $baseUrl)
  415.                 // );
  416.                 //
  417.                 // $mailTo = $user->getEmail();
  418.                 // $mailFrom = $this->getParameter('email_noreply');
  419.                 //
  420.                 // $from = new \SendGrid\Email($appName, $mailFrom);
  421.                 // $subject = $appName." Password reset";
  422.                 // $to = new \SendGrid\Email($username, $mailTo);
  423.                 // $content = new \SendGrid\Content("text/html", $htmlContent);
  424.                 // $mail = new \SendGrid\Mail($from, $subject, $to, $content);
  425.                 //
  426.                 // $apiKey = $this->getParameter('sendgrid_api_key');
  427.                 // $sg = new \SendGrid($apiKey);
  428.                 //
  429.                 // $sg->client->mail()->send()->post($mail);
  431.                 // send info to view
  432.                 $info $translator->trans('Password reset successfully. Check your email for new password.');
  434.                 // not found
  435.             } else {
  437.                 $info $translator->trans('User not found');
  439.             }
  442.         } else {
  444.             $info '';
  446.         }
  448.         return $this->render('security/reset.html.twig', array(
  449.             'info' => $info,
  450.         ));
  452.     }
  453.     /**
  454.      * @Route("/trace_actions_list", name="trace_actions_list")
  455.      */
  456.     public function traceActionsList(Request $requestTranslatorInterface $translator)
  457.     {
  458.         // $list = $this->getDoctrine()->getRepository(UserAction::class)->findAll();
  459.         $em $this->getDoctrine()->getManager();
  460.         $queryBuilder $em->createQueryBuilder()
  461.         ->select('ua')
  462.         ->from('App\Entity\UserAction''ua')
  463.         ->orderBy("ua.id""DESC");
  464.         // $adapter = new DoctrineORMAdapter($queryBuilder);
  465.         // $pagerfanta = new Pagerfanta($adapter);
  466.         $pagerfanta = new Pagerfanta(
  467.             new QueryAdapter($queryBuilder)
  468.         );
  469.         $pageLength $request->query->get("pageLength"$this->getParameter("ua.maxPerPage"));
  470.         if ($pageLength == "Tout") {
  471.           $qb $em->createQueryBuilder()
  472.           ->select('COUNT(ua.id)')
  473.           ->from('App\Entity\UserAction''ua');
  475.           $count $qb->getQuery()->getSingleScalarResult();
  476.           $pagerfanta->setMaxPerPage($count); // 10 by default
  477.         }
  478.         else {
  479.           $pagerfanta->setMaxPerPage($pageLength); // 10 by default
  480.         }
  481.         $page $request->query->get("page"1);
  482.         $pagerfanta->setCurrentPage($page);
  484.         return $this->render('users/trace_actions_list.html.twig', [
  485.             'page_title' => $translator->trans('Historique des Actions'),
  486.             'box_title' => $translator->trans('Historique des Actions'),
  487.             // 'list' => $list,
  488.             'my_pager' => $pagerfanta,
  489.             'pageLength' => $pageLength,
  490.         ]);
  492.     }
  493.     public function my_simple_crypt$string$action 'e' ) {
  494.         // you may change these values to your own
  495.         $secret_key 'fiberlink m6 key';
  496.         $secret_iv 'fiberlink m6 key';
  498.         $output false;
  499.         $encrypt_method "AES-256-CBC";
  500.         $key hash'sha256'$secret_key );
  501.         $iv substrhash'sha256'$secret_iv ), 016 );
  503.         if( $action == 'e' ) {
  504.             $output base64_encodeopenssl_encrypt$string$encrypt_method$key0$iv ) );
  505.         }
  506.         else if( $action == 'd' ){
  507.             $output openssl_decryptbase64_decode$string ), $encrypt_method$key0$iv );
  508.         }
  510.         return $output;
  511.     }
  512.     function generateStrongPassword($length 8$add_dashes false$available_sets 'luds')
  513.     {
  514.         $sets = array();
  515.         if(strpos($available_sets'l') !== false)
  516.             $sets[] = 'abcdefghjkmnpqrstuvwxyz';
  517.         if(strpos($available_sets'u') !== false)
  518.             $sets[] = 'ABCDEFGHJKMNPQRSTUVWXYZ';
  519.         if(strpos($available_sets'd') !== false)
  520.             $sets[] = '23456789';
  521.         if(strpos($available_sets's') !== false)
  522.             $sets[] = '!@#$%&*?';
  523.         $all '';
  524.         $password '';
  525.         foreach($sets as $set)
  526.         {
  527.             $password .= $set[array_rand(str_split($set))];
  528.             $all .= $set;
  529.         }
  530.         $all str_split($all);
  531.         for($i 0$i $length count($sets); $i++)
  532.             $password .= $all[array_rand($all)];
  533.         $password str_shuffle($password);
  534.         if(!$add_dashes)
  535.             return $password;
  536.         $dash_len floor(sqrt($length));
  537.         $dash_str '';
  538.         while(strlen($password) > $dash_len)
  539.         {
  540.             $dash_str .= substr($password0$dash_len) . '-';
  541.             $password substr($password$dash_len);
  542.         }
  543.         $dash_str .= $password;
  544.         return $dash_str;
  545.     }
  547. }