src/Controller/ResetPasswordController.php line 43

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\User;
  6. use App\Form\ChangePasswordFormType;
  7. use App\Form\ResetPasswordRequestFormType;
  8. use Doctrine\ORM\EntityManagerInterface;
  9. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\HttpFoundation\RedirectResponse;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpFoundation\Response;
  14. use Symfony\Component\Mailer\MailerInterface;
  15. use Symfony\Component\Mime\Address;
  16. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  17. use Symfony\Component\Routing\Annotation\Route;
  18. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  19. use Symfony\Contracts\Translation\TranslatorInterface;
  20. use SymfonyCasts\Bundle\ResetPassword\Controller\ResetPasswordControllerTrait;
  21. use SymfonyCasts\Bundle\ResetPassword\Exception\ResetPasswordExceptionInterface;
  22. use SymfonyCasts\Bundle\ResetPassword\ResetPasswordHelperInterface;
  24. /**
  25. * @Route("/reset-password")
  26. */
  27. class ResetPasswordController extends AbstractController
  28. {
  29. use ResetPasswordControllerTrait;
  31. private ResetPasswordHelperInterface $resetPasswordHelper;
  32. private EntityManagerInterface $entityManager;
  34. public function __construct(ResetPasswordHelperInterface $resetPasswordHelper, EntityManagerInterface $entityManager)
  35. {
  36. $this->resetPasswordHelper = $resetPasswordHelper;
  37. $this->entityManager = $entityManager;
  38. }
  40. /**
  41. * @Route("", name="app_reset_password_request")
  42. */
  43. public function request(Request $request, MailerInterface $mailer, TranslatorInterface $translator): Response
  44. {
  45. $form = $this->createForm(ResetPasswordRequestFormType::class);
  46. $form->handleRequest($request);
  48. if ($form->isSubmitted() && $form->isValid()) {
  49. return $this->processSendingPasswordResetEmail(
  50. $form->get('email')->getData(),
  51. $mailer,
  52. $translator
  53. );
  54. }
  56. return $this->render('reset_password/request.html.twig', [
  57. 'requestForm' => $form->createView(),
  58. ]);
  59. }
  61. /**
  62. * @Route("/check-email", name="app_check_email")
  63. */
  64. public function checkEmail(): Response
  65. {
  66. if (null === ($resetToken = $this->getTokenObjectFromSession())) {
  67. $resetToken = $this->resetPasswordHelper->generateFakeResetToken();
  68. }
  70. return $this->render('reset_password/check_email.html.twig', [
  71. 'resetToken' => $resetToken,
  72. ]);
  73. }
  75. /**
  76. * @Route("/reset/{token}", name="app_reset_password")
  77. */
  78. public function reset(Request $request, UserPasswordHasherInterface $userPasswordHasher, TranslatorInterface $translator, string $token = null): Response
  79. {
  80. if ($token) {
  81. $this->storeTokenInSession($token);
  82. return $this->redirectToRoute('app_reset_password');
  83. }
  85. $token = $this->getTokenFromSession();
  86. if (null === $token) {
  87. throw $this->createNotFoundException('Aucun token de réinitialisation de mot de passe trouvé dans l\'URL ou dans la session.');
  88. }
  90. try {
  91. /** @var PasswordAuthenticatedUserInterface $user */
  92. $user = $this->resetPasswordHelper->validateTokenAndFetchUser($token);
  93. } catch (ResetPasswordExceptionInterface $e) {
  94. $this->addFlash('warning', 'Le lien de réinitialisation de mot de passe est invalide.
  95. Veuillez essayer de réinitialiser votre mot de passe à nouveau.');
  97. return $this->redirectToRoute('app_reset_password_request');
  98. }
  100. $form = $this->createForm(ChangePasswordFormType::class);
  101. $form->handleRequest($request);
  103. if ($form->isSubmitted() && $form->isValid()) {
  104. $this->resetPasswordHelper->removeResetRequest($token);
  106. $encodedPassword = $userPasswordHasher->hashPassword(
  107. $user,
  108. $form->get('plainPassword')->getData()
  109. );
  111. $user->setPassword($encodedPassword);
  112. $this->entityManager->flush();
  114. $this->cleanSessionAfterReset();
  115. $this->addFlash('success', 'Votre mot de passe a été modifié avec succès.');
  117. return $this->redirectToRoute('app_login');
  118. }
  120. return $this->render('reset_password/reset.html.twig', [
  121. 'resetForm' => $form->createView(),
  122. ]);
  123. }
  124. private function processSendingPasswordResetEmail(string $emailFormData, MailerInterface $mailer, TranslatorInterface $translator): RedirectResponse
  125. {
  126. $user = $this->entityManager->getRepository(User::class)->findOneBy([
  127. 'email' => $emailFormData,
  128. ]);
  129. if (!$user || !$user->isVerified()) {
  130. return $this->redirectToRoute('app_check_email');
  131. }
  133. try {
  134. $resetToken = $this->resetPasswordHelper->generateResetToken($user);
  135. } catch (ResetPasswordExceptionInterface $e) {
  136. return $this->redirectToRoute('app_check_email');
  137. }
  139. $email = (new TemplatedEmail())
  140. ->from(new Address('noreply@proximy.net', 'PROXIMY'))
  141. ->to($user->getEmail())
  142. ->subject('Votre demande de réinitialisation de mot de passe')
  143. ->htmlTemplate('reset_password/email.html.twig')
  144. ->context([
  145. 'resetToken' => $resetToken,
  146. 'username' => $user->getUsername(),
  147. 'nom' => $user->getPrenomNom(),
  148. ]);
  151. $mailer->send($email);
  153. $this->setTokenObjectInSession($resetToken);
  155. return $this->redirectToRoute('app_check_email');
  156. }
  157. }