src/AdminFOSUserBundle/Controller/AdminResettingController.php line 178

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Sonata Project package.
  5. *
  6. * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace AdminFOSUserBundle\Controller;
  14. use AdminBundle\Entity\Booking;
  15. use AdminBundle\Entity\BookingHistory;
  16. use AdminBundle\Entity\BookingReview;
  17. use AdminBundle\WebSockets\NotificationPusher;
  18. use FOS\UserBundle\Util\TokenGeneratorInterface;
  19. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  20. use Symfony\Component\HttpFoundation\JsonResponse;
  21. use Symfony\Component\HttpFoundation\RedirectResponse;
  22. use Symfony\Component\HttpFoundation\Request;
  23. use Symfony\Component\HttpFoundation\Response;
  24. use Symfony\Component\Security\Core\Exception\AccountStatusException;
  26. class AdminResettingController extends AbstractController
  27. {
  28. /**
  29. * @param Request $request
  30. * @return Response
  31. */
  32. public function requestAction(Request $request)
  33. {
  34. if ($this->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY')) {
  35. return $this->get('authentication.handler.login_success_handler')->onAuthenticationSuccess($request, $this->get('security.token_storage')->getToken());
  36. }
  38. return $this->render('@SonataUser/Admin/Security/Resetting/request.html.twig', array(
  39. 'base_template' => $this->get('sonata.admin.pool')->getTemplate('layout'),
  40. 'admin_pool' => $this->get('sonata.admin.pool'),
  41. ));
  42. }
  44. /**
  45. * @param Request $request
  46. *
  47. * @return Response
  48. */
  49. public function sendEmailAction(Request $request)
  50. {
  51. $username = $request->request->get('username');
  53. /** @var $userManager \FOS\UserBundle\Model\UserManagerInterface */
  54. $userManager = $this->get('fos_user.user_manager');
  56. $user = $userManager->findUserByUsernameOrEmail($username);
  58. $ttl = $this->container->getParameter('fos_user.resetting.retry_ttl');
  60. if (null !== $user && !$user->isPasswordRequestNonExpired($ttl)) {
  61. if (!$user->isAccountNonLocked()) {
  62. return new RedirectResponse($this->get('router')->generate('sonata_user_admin_resetting_request'));
  63. }
  65. if (null === $user->getConfirmationToken()) {
  66. /** @var $tokenGenerator TokenGeneratorInterface */
  67. $tokenGenerator = $this->get('fos_user.util.token_generator');
  68. $user->setConfirmationToken($tokenGenerator->generateToken());
  69. }
  71. $this->get('security.service')->sendResettingEmailMessage($user);
  72. $user->setPasswordRequestedAt(new \DateTime());
  73. $userManager->updateUser($user);
  74. }
  76. return new RedirectResponse($this->generateUrl('sonata_user_admin_resetting_check_email', array(
  77. 'username' => $username,
  78. )));
  79. }
  81. /**
  82. * @param Request $request
  83. *
  84. * @return Response
  85. */
  86. public function checkEmailAction(Request $request)
  87. {
  88. $username = $request->query->get('username');
  90. if (empty($username)) {
  91. // the user does not come from the sendEmail action
  92. return new RedirectResponse($this->generateUrl('sonata_user_admin_resetting_request'));
  93. }
  95. return $this->render('@SonataUser/Admin/Security/Resetting/checkEmail.html.twig', array(
  96. 'base_template' => $this->get('sonata.admin.pool')->getTemplate('layout'),
  97. 'admin_pool' => $this->get('sonata.admin.pool'),
  98. 'tokenLifetime' => ceil($this->container->getParameter('fos_user.resetting.retry_ttl') / 3600),
  99. ));
  100. }
  102. /**
  103. * @param Request $request
  104. * @param string $token
  105. *
  106. * @return Response
  107. */
  108. public function resetAction(Request $request, $token)
  109. {
  110. if ($this->get('security.authorization_checker')->isGranted('IS_AUTHENTICATED_FULLY')) {
  111. return $this->get('authentication.handler.login_success_handler')->onAuthenticationSuccess($request, $this->get('security.token_storage')->getToken());
  112. }
  114. /** @var $formFactory \FOS\UserBundle\Form\Factory\FactoryInterface */
  115. $formFactory = $this->get('fos_user.resetting.form.factory');
  116. /** @var $userManager \FOS\UserBundle\Model\UserManagerInterface */
  117. $userManager = $this->get('fos_user.user_manager');
  118. /** @var $loginManager \FOS\UserBundle\Security\LoginManagerInterface */
  119. $loginManager = $this->get('fos_user.security.login_manager');
  121. $user = $userManager->findUserByConfirmationToken($token);
  123. $firewallName = $this->container->getParameter('fos_user.firewall_name');
  125. if (null === $user) {
  126. $this->get('session')->getFlashBag()->add('danger', sprintf('The user with "confirmation token" does not exist for value "%s"', $token));
  127. return new RedirectResponse($this->generateUrl('sonata_user_admin_security_login'));
  128. }
  130. if (!$user->isPasswordRequestNonExpired($this->container->getParameter('fos_user.resetting.token_ttl'))) {
  131. return new RedirectResponse($this->generateUrl('sonata_user_admin_resetting_request'));
  132. }
  134. $form = $formFactory->createForm();
  135. $form->setData($user);
  137. $form->handleRequest($request);
  139. if ($form->isSubmitted() && $form->isValid()) {
  140. $user->setConfirmationToken(null);
  141. $user->setPasswordRequestedAt(null);
  142. $user->setEnabled(true);
  144. $message = $this->get('translator')->trans('resetting.flash.success', array(), 'FOSUserBundle');
  145. $this->addFlash('success', $message);
  146. $response = new RedirectResponse($this->generateUrl('sonata_admin_dashboard'));
  148. try {
  149. $loginManager->logInUser($firewallName, $user, $response);
  150. $response = $this->get('authentication.handler.login_success_handler')->onAuthenticationSuccess($request, $this->get('security.token_storage')->getToken());
  151. $user->setLastLogin(new \DateTime());
  152. } catch (AccountStatusException $ex) {
  153. // We simply do not authenticate users which do not pass the user
  154. // checker (not enabled, expired, etc.).
  155. if ($this->has('logger')) {
  156. $this->get('logger')->warning(sprintf(
  157. 'Unable to login user %d after password reset',
  158. $user->getId())
  159. );
  160. }
  161. }
  163. $userManager->updateUser($user);
  165. return $response;
  166. }
  168. return $this->render('@SonataUser/Admin/Security/Resetting/reset.html.twig', array(
  169. 'token' => $token,
  170. 'form' => $form->createView(),
  171. 'base_template' => $this->get('sonata.admin.pool')->getTemplate('layout'),
  172. 'admin_pool' => $this->get('sonata.admin.pool'),
  173. ));
  174. }
  176. public function privacyAction(Request $request)
  177. {
  178. return $this->render('@SonataUser/Admin/privacy.html.twig');
  179. }
  181. public function appAction(Request $request)
  182. {
  183. return $this->render('SonataUserBundle:Admin:app.html.twig');
  184. }
  188. public function bookingReviewAction($id, Request $request)
  189. {
  190. $em = $this->getDoctrine()->getManager();
  191. $booking = $this->get('doctrine')->getRepository(Booking::class)->findOneBy([
  192. 'key' => $id,
  193. ]);
  195. if (!$booking) {
  196. return new JsonResponse([
  197. "status" => 400,
  198. "message" => "Invalid booking key.",
  199. ]);
  200. }
  202. if (empty($booking->getDriver())) {
  203. return new JsonResponse([
  204. "status" => 400,
  205. "message" => "This booking has no driver.",
  206. ]);
  207. }
  209. $user = $booking->getClientUser();
  211. if (empty($user)) {
  212. return new JsonResponse([
  213. "status" => 403,
  214. "message" => "You are not allowed to review this booking.",
  215. ]);
  216. }
  218. $securityService = $this->get('security.service');
  219. $roles = $securityService->isRoleClientOrCompany($user->getRoles());
  221. if (empty($roles)) {
  222. return new JsonResponse([
  223. "status" => 403,
  224. "message" => "You are not allowed to review this booking.",
  225. ]);
  226. }
  228. $review = $this->get('doctrine')->getRepository(BookingReview::class)->findOneBy([
  229. 'booking' => $booking->getId(), 'client' => $user->getId(),
  230. ]);
  232. $review_rating = 0;
  233. $review_content = "";
  234. $isReviewed = false;
  236. if (!empty($review)) {
  237. $review_rating = $review->getRating();
  238. $review_content = $review->getReviewContent();
  239. $isReviewed = true;
  240. }
  242. if ($request->isMethod('POST')) {
  243. $rating = intval($request->request->get('rating'));
  244. $reviewContent = addslashes($request->request->get('review_content'));
  246. if (!$rating) {
  247. return new JsonResponse([
  248. "status" => 400,
  249. "message" => "Please add a rating value.",
  250. ]);
  251. }
  253. if ($rating < 1 || $rating > 5) {
  254. return new JsonResponse([
  255. "status" => 400,
  256. "message" => "Rating value must be between 1-5.",
  257. ]);
  258. }
  260. if (empty($review)) {
  261. $bookingReview = new BookingReview();
  262. $bookingReview->setRating($rating);
  263. $bookingReview->setReviewContent($reviewContent);
  264. $bookingReview->setBooking($booking);
  265. $bookingReview->setClient($user);
  266. $bookingReview->setDriver($booking->getDriver());
  268. $em->persist($bookingReview);
  269. } else {
  270. $review->setRating($rating);
  271. $review->setReviewContent($reviewContent);
  272. }
  274. $bookingHistoryDriver = new BookingHistory();
  275. $bookingHistoryDriver->setBooking($booking);
  276. $bookingHistoryDriver->setActionType(BookingHistory::ACTION_TYPE_ADDED_REVIEW);
  277. $bookingHistoryDriver->setUser($user);
  279. $bookingHistoryDriver->setPayload(['status' => 'add_review']);
  281. $em->persist($bookingHistoryDriver);
  282. $em->flush();
  284. $driver = $booking->getDriver();
  286. if ($driver && $driver->getUser() && $driver->getUser()->getApiKey()) {
  287. $this
  288. ->get('websocket_notification.service')
  289. ->send([
  290. 'apiKey' => $driver->getUser()->getApiKey(),
  291. 'data' => [
  292. 'event' => NotificationPusher::SEND_CLIENT_BOOKING_REVIEW_EVENT,
  293. 'booking' => $id,
  294. 'message' => 'New review on one of your bookings',
  295. ],
  296. ]);
  297. }
  299. return $this->render('@SonataUser/Admin/Security/Review/review-booking.html.twig', array(
  300. 'base_template' => $this->get('sonata.admin.pool')->getTemplate('layout'),
  301. 'admin_pool' => $this->get('sonata.admin.pool'),
  302. 'review_rating' => $rating,
  303. 'review_content' => $reviewContent,
  304. 'bookingKey' => $booking->getKey(),
  305. 'pickupAddress' => $booking->getPickUpAddress(),
  306. 'destinationAddress' => $booking->getDestinationAddress(),
  307. 'bookingDate' => $booking->getPickUpDate(),
  308. 'isReviewed' => true,
  310. ));
  311. }
  313. return $this->render('@SonataUser/Admin/Security/Review/review-booking.html.twig', array(
  314. 'base_template' => $this->get('sonata.admin.pool')->getTemplate('layout'),
  315. 'admin_pool' => $this->get('sonata.admin.pool'),
  316. 'review_rating' => $review_rating,
  317. 'review_content' => $review_content,
  318. 'bookingKey' => $booking->getKey(),
  319. 'pickupAddress' => $booking->getPickUpAddress(),
  320. 'destinationAddress' => $booking->getDestinationAddress(),
  321. 'bookingDate' => $booking->getPickUpDateTime()->format('Y-m-d H:s:i'),
  322. 'isReviewed' => $isReviewed,
  323. ));
  324. }
  325. }