src/CoreBundle/Controller/AccountController.php line 34

Open in your IDE?
  1. <?php
  3. namespace CoreBundle\Controller;
  5. use CoreBundle\Form\RequestPasswordResetFormType;
  6. use CoreBundle\Form\ResetPasswordFormType;
  7. use CoreBundle\Model\Customer;
  8. use CoreBundle\Form\LoginFormType;
  9. use CoreBundle\Form\RegistrationFormHandler;
  10. use CoreBundle\Form\RegistrationFormType;
  11. use CustomerManagementFrameworkBundle\CustomerProvider\CustomerProviderInterface;
  12. use CustomerManagementFrameworkBundle\CustomerSaveValidator\Exception\DuplicateCustomerException;
  13. use CustomerManagementFrameworkBundle\Security\Authentication\LoginManagerInterface;
  14. use CustomerManagementFrameworkBundle\Security\OAuth\Exception\AccountNotLinkedException;
  15. use CustomerManagementFrameworkBundle\Security\OAuth\OAuthRegistrationHandler;
  16. use Pimcore\Bundle\EcommerceFrameworkBundle\EnvironmentInterface;
  17. use Pimcore\Bundle\EcommerceFrameworkBundle\IEnvironment;
  18. use Pimcore\Mail;
  19. use Pimcore\Model\Document;
  20. use Pimcore\Model\Site;
  21. use Symfony\Component\HttpFoundation\RedirectResponse;
  22. use Symfony\Component\HttpFoundation\Request;
  23. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  24. use \Pimcore\Model\DataObject;
  25. use \Pimcore\Model\DataObject\OnlineShopOrder\Listing;
  27. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security//important for annotation!
  28. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route//important for annotation!
  29. //use CoreBundle\Controller\SecureController;
  31. use Symfony\Component\Security\Core\User\UserInterface;
  32. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  34. class AccountController extends AbstractController
  35. {
  36.     CONST TOKEN_DIGIT_SIZE 12;
  37.     CONST EMAIL_CUSTOMER_REGISTER "/mail/customerRegister";
  38.     CONST EMAIL_CUSTOMER_PW_RESET "/mail/passwordReset";
  40.     /**
  41.      * @param Request $request
  42.      * @param CustomerProviderInterface $customerProvider
  43.      * @param LoginManagerInterface $loginManager
  44.      * @param RegistrationFormHandler $registrationFormHandler
  45.      * @param UserInterface|null $user
  46.      * @param SessionInterface $session
  47.      * @param IEnvironment $environment
  48.      * @return \Symfony\Component\HttpFoundation\RedirectResponse
  49.      */
  50.     public function registerAction(
  51.         Request $request,
  52.         CustomerProviderInterface $customerProvider,
  53.         LoginManagerInterface $loginManager,
  54.         RegistrationFormHandler $registrationFormHandler,
  55.         UserInterface $user null,
  56.         SessionInterface $session,
  57.         EnvironmentInterface $environment
  58.     ) {
  59.         //redirect user to index page if logged in
  60.         if ($user && $this->isGranted('ROLE_USER')) {
  61.             return $this->redirectToRoute('acc_index', ['controller' => 'account''action' => 'index']);
  62.         }
  63.         $registrationKey $request->get('registrationKey');
  64.         // create a new, empty customer instance
  65.         $customer $customerProvider->create();
  66.         // the registration form handler is just a utility class to map pimcore object data to form
  67.         $formData $registrationFormHandler->buildFormData($customer);
  68.         $hidePassword false;
  69.         // build the registration form and pre-fill it with customer data
  70.         $form $this->createForm(RegistrationFormType::class, $formData, ['hidePassword' => $hidePassword]);
  71.         $form->handleRequest($request);
  72.         $errors = [];
  73.         if ($form->isSubmitted() && $form->isValid()) {
  74.             $registrationFormHandler->updateCustomerFromForm($customer$form);
  75.             $customer->setActive(true);
  76.             try {
  77.                 $token $this->generateToken();
  78.                 $customer->setEmailConfirmToken($token);
  79.                 $customer->save();
  80.                 //check if special redirect is necessary
  81.                 if($session->get("referrer")) {
  82.                     $response $this->redirect($session->get("referrer"));
  83.                     $session->remove("referrer");
  84.                 } else {
  85.                     $response $this->redirectToRoute('acc_index', ['controller' => 'account''action' => 'index']);
  86.                 }
  87.                 // log user in manually
  88.                 // pass response to login manager as it adds potential remember me cookies
  89.                 $loginManager->login($customer$request$response);
  90.                 $environment->setCurrentUserId($customer->getId());
  91.                 $environment->save();
  93.                 return $response;
  94.             } catch (DuplicateCustomerException $e) {
  95.                 $errors[] = 'Customer already exists';
  96.             } catch (\Exception $e) {
  97.                 $errors[] = $e->getMessage();
  98.             }
  99.         }
  100.         if($form->isSubmitted() && !$form->isValid()) {
  101.             foreach($form->getErrors() as $error) {
  102.                 $errors[] = $error->getMessage();
  103.             }
  105.             foreach($form->all()['captcha']->getErrors() as $error) {
  106.                 $errors[] = $error->getMessage();
  107.             }
  108.         }
  109.         $this->view->customer $customer;
  110.         $this->view->form     $form->createView();
  111.         $this->view->errors   $errors;
  112.         $this->view->hideNav true;
  113.         $this->view->hideBreadcrumb true;
  114.         $this->view->hidePassword $hidePassword;
  115.     }
  118.     /**
  119.      * @param AuthenticationUtils $authenticationUtils
  120.      * @param UserInterface|null $user
  121.      * @return \Symfony\Component\HttpFoundation\RedirectResponse
  122.      * @throws \Exception
  123.      */
  124.     public function loginAction(
  125.         AuthenticationUtils $authenticationUtils,
  126. //        OAuthRegistrationHandler $oAuthHandler,
  127.         UserInterface $user nullRequest $request
  128.     )
  129.     {
  130.         //redirect user to index page if logged in, write User ID to cart
  131.         if ($user && $this->isGranted('ROLE_USER')) {
  132.             $cart $this->getCart();
  133.             $cart->setUserId($user->getId());
  134.             $cart->save();
  135.             return $this->redirectToRoute('acc_index', ['controller' => 'account''action' => 'index']);
  136.         }
  137.         // get the login error if there is one
  138.         $error $authenticationUtils->getLastAuthenticationError();
  140.         // last username entered by the user
  141.         $lastUsername $authenticationUtils->getLastUsername();
  142.         $formData = [
  143.             '_username'    => $lastUsername
  144.         ];
  145.         $form $this->createForm(LoginFormType::class, $formData, [
  146.             'action' => $this->generateUrl('login'),
  147.         ]);
  148.         $this->view->reset = (bool)$request->get('reset');
  149.         $this->view->success = (bool)$request->get('success'); // After PW was successfully reset
  150.         $this->view->user $user;
  151.         $this->view->form  $form->createView();
  152.         $this->view->error $error;
  153.         $this->view->hideNav true;
  154.         $this->view->hideBreadcrumb true;
  155.     }
  157.     /**
  158.      * @param UserInterface|null $user
  159.      * @return RedirectResponse
  160.      */
  161.     private function buildUserRedirect(UserInterface $user null): RedirectResponse
  162.     {
  163.         if ($user!=null && $this->isGranted('ROLE_USER')) {
  164.             return $this->redirectToRoute('acc_index');
  165.         }
  166.         return $this->redirectToRoute('login');
  167.     }
  169.     /**
  170.      * Index page for account - it is restricted to ROLE_USER via security annotation
  171.      *
  172.      * @param UserInterface|null $user
  173.      * @return void
  174.      * @throws \Exception
  175.      * @Security("is_granted('ROLE_USER')")
  176.      */
  177.     public function indexAction() {
  178.         $user $this->getUser();
  179.         $this->view->user $user;
  180.         if($user!=null && $user->getEmailConfirmed()){
  181.             $orderList = new Listing();
  182.             //list all confirmed orders of logged in user
  183.             $orderList->addConditionParam('originShop = ?'$_SERVER['HTTP_HOST'], 'AND');
  184.             $orderList->addConditionParam('customerEmail = ?'$user->getEmail(), 'AND');
  185.             $orderList->addConditionParam('orderState = ?''committed''AND');
  186.             $orderList->load();
  187.         }
  188.         else{
  189.             $this->addFlash('error'$this->get("translator")->trans("emailAdressNotConfirmedError"));
  191.             $customer Customer::getByEmail($user->getEmail(), 1);
  192.             if($customer){
  193.                 $token $customer->getEmailConfirmToken();
  194.                 $this->sendTokenMail($customer->getId(), $customer->getEmail(), $tokenSite::getCurrentSite()->getRootPath().self::EMAIL_CUSTOMER_REGISTER);
  195.                 $customer->save();
  196.                 $this->addFlash('success'$this->get("translator")->trans("passwordResetEmailSent"));
  197.             }
  198.         }
  199.         $this->view->orders $orderList;
  201.     }
  204.     /**
  205.      * @param Request $request
  206.      * @param UserInterface|null $user
  207.      * @return RedirectResponse
  208.      */
  209.     public function confirmAction(Request $requestUserInterface $user null) {
  211.         $this->view->user $user;
  212.         $token $request->get('token');
  213.         //check if user is confirming his token
  214.         if ($user!=null && $this->isGranted('ROLE_USER')) {
  215.             if($user->getEmailConfirmToken() == $token){
  216.                 $user->setEmailConfirmed(true);
  217.                 $user->save();
  218.                 $this->addFlash('success'$this->get("translator")->trans("emailAddressConfirmedSuccess"));
  219.             }
  220.             else{
  221.                 $this->addFlash('error'$this->get("translator")->trans("emailAdressConfirmedError").$token);
  222.             }
  223.             return $this->redirectToRoute('acc_index');
  224.         }
  226.         //check if user (not logged in) is confirming an email
  227.         $unloggedUser Customer::getByEmailConfirmToken($token1);
  228.         if($unloggedUser){
  229.             $unloggedUser->setEmailConfirmed(true);
  230.             $unloggedUser->save();
  231.             $this->addFlash('success'$this->get("translator")->trans("emailAddressConfirmedSuccess"));
  232.             return $this->redirectToRoute('login');
  233.         }
  235.         $this->addFlash('error'$this->get("translator")->trans("emailAdressConfirmedError").$token);
  236.         return $this->redirectToRoute('login');
  237.     }
  239.     /**
  240.      * @param Request $request
  241.      * @return RedirectResponse
  242.      * @throws \Exception
  243.      */
  244.     public function requestPasswordResetAction(Request $request){
  245.         //Form -> email, send email with token to that mail -> link to resetPasswordAction
  246.         $form $this->createForm(RequestPasswordResetFormType::class);
  247.         $form->handleRequest($request);
  248.         if ($form->isSubmitted() && $form->isValid()) {
  249.             $customer Customer::getByEmail($request->get('email'), 1);
  250.             if($customer){
  251.                 $token $this->generateToken();
  252.                 $customer->setPwResetToken($token);
  253.                 $customer->save();
  254.                 $this->sendTokenMail($customer->getId(), $customer->getEmail(), $tokenSite::getCurrentSite()->getRootPath().self::EMAIL_CUSTOMER_PW_RESET);
  255.                 $this->addFlash('success'$this->get("translator")->trans("passwordResetEmailSent"));
  256.                 return $this->redirectToRoute('login', ['reset' => 1]);
  257.             }
  260.         }
  261.         $this->view->form $form->createView();
  262.     }
  265.     /**
  266.      * @param Request $request
  267.      * @return RedirectResponse
  268.      */
  269.     public function resetPasswordAction(Request $request){
  270.         $customer Customer::getByEmail($request->get('email'), 1);
  272.         //Check if token matches customer -> provide form to reset PW
  273.         if($customer && $request->get('token') == $customer->getPwResetToken()){
  274.             $form $this->createForm(ResetPasswordFormType::class);
  275.             $form->handleRequest($request);
  276.             $this->view->form     $form->createView();
  277.             if ($form->isSubmitted() && $form->isValid()) {
  278.                 $customer->setPassword($request->get('password')['first']);
  279.                 $customer->setPwResetToken('');
  280.                 $customer->save();
  281.                 $this->addFlash('success'$this->get("translator")->trans("passwordResetSuccessfully"));
  282.                 return $this->redirectToRoute('login', ['success' => 1]);
  283.             }
  284.         }
  285.         else{
  286.             $this->addFlash('error'$this->get("translator")->trans("passwordResetLinkNoLongerValid"));
  287.             return $this->redirectToRoute('login');
  288.         }
  290.     }
  292.     /**
  293.      * @param Int $customerId
  294.      * @param String $email
  295.      * @param String $token
  296.      * @param String $template
  297.      */
  298.     protected function sendTokenMail(Int $customerIdString $emailString $tokenString $template)
  299.     {
  300.         $customer Customer::getById($customerId);
  301.         $params = [];
  302.         $params['token'] = $token;
  303.         $params['customer'] = $customer;
  304.         $params['email'] = $email;
  305.         $emailDoc Document::getByPath($template);
  306.         $mail = new Mail(['document' => $emailDoc'params' => $params]);
  307.         $mail->setParams($params);
  308.         $mail->addTo($email);
  309.         $mail->send();
  310.     }
  312.     /**
  313.      * @return string
  314.      * @throws \Exception
  315.      */
  316.     protected function generateToken(){
  317.         return bin2hex(random_bytes(self::TOKEN_DIGIT_SIZE));
  318.     }
  319. }