src/Controller/BackendBundle/OAuth2Controller.php line 61

Open in your IDE?
  1. <?php
  3. namespace App\Controller\BackendBundle;
  5. use Doctrine\ORM\EntityManagerInterface;
  6. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  7. use Symfony\Component\Routing\Annotation\Route;
  8. use Symfony\Component\HttpFoundation\Request;
  9. use Symfony\Component\HttpFoundation\Session\Session;
  10. use Symfony\Component\HttpFoundation\RedirectResponse;
  11. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  12. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  13. use Symfony\Component\Security\Core\Security;
  14. use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
  15. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  16. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  17. use App\BackendBundle\Helper\OAuth2Helper;
  18. use App\BackendBundle\Helper\SiteTitleHelper;
  19. use App\BackendBundle\Security\UserManager\UserNormalProvider;
  20. use App\Entity\User;
  22. class OAuth2Controller extends AbstractController {
  24.     private AuthenticationManagerInterface $authManager;
  25.     private CsrfTokenManagerInterface $csrfTokenManager;
  26.     private EntityManagerInterface $em;
  27.     private OAuth2Helper $oauth2Helper;
  28.     private TokenStorageInterface $tokenStorage;
  29.     private UserNormalProvider $userNormalProvider;
  30.     private UserPasswordHasherInterface $userPasswordHasher;
  31.     private SessionInterface $session;
  32.     private SiteTitleHelper $siteTitleHelper;
  33.     private $sessionEmail 'oauth2_session_email';
  35.     /* needs to match with \App\BackendBundle\Security\Authenticator\OAuth2Authenticator */
  36.     private $sessionOAuthKey 'oauth2_session_username';
  38.     public function __construct(CsrfTokenManagerInterface $csrfTokenManagerEntityManagerInterface $em,
  39.             SiteTitleHelper $sitehelperUserNormalProvider $userNormalProviderUserPasswordHasherInterface $userPasswordHasher,
  40.             AuthenticationManagerInterface $authManagerTokenStorageInterface $tokenStorageOAuth2Helper $oauth2Helper,
  41.             SessionInterface $session) {
  42.         $this->authManager $authManager;
  43.         $this->csrfTokenManager $csrfTokenManager;
  44.         $this->em $em;
  45.         $this->oauth2Helper $oauth2Helper;
  46.         $this->session $session;
  47.         $this->siteTitleHelper $sitehelper;
  48.         $this->tokenStorage $tokenStorage;
  49.         $this->userNormalProvider $userNormalProvider;
  50.         $this->userPasswordHasher $userPasswordHasher;
  51.     }
  53.     /**
  54.      * @return \Symfony\Component\HttpFoundation\Response
  55.      * @Route("/oauthlogin", name="oauth2_login", defaults={"title": "Berufsreise Login", "description": "Berufsreise Login"}) 
  56.      */
  57.     public function oauthLoginAction(Request $requestSession $session) {
  58.         $this->siteTitleHelper->setTitleDescription($request);
  60.         $username '';
  61.         if ($session->has($this->sessionEmail)) {
  62.             $username $session->get($this->sessionEmail'');
  63.         }
  65.         $error false;
  66.         if ($session->has(Security::AUTHENTICATION_ERROR)) {
  67.             $error true;
  68.         }
  70.         return $this->render('@frontend/oauth2/login.html.twig', array(
  71.                     'username' => $username,
  72.                     'error' => $error
  73.         ));
  74.     }
  76.     private function processForm(Request $request) {
  77.         /* get data from submitted form */
  78.         $csrfToken $request->request->get("_csrf_token");
  79.         $username $request->request->get('username');
  80.         $password $request->request->get('password');
  82.         $isCsrfTokenValid $this->isCsrfTokenValid('oauth2_authenticate'$csrfToken);
  83.         if (!$isCsrfTokenValid) {
  84.             return null;
  85.         }
  87.         /* try to get user from submitted data */
  88.         $user $this->processUserData($username$password);
  89.         if (empty($user)) {
  90.             return null;
  91.         }
  93.         $this->session->set('symfony_username'$user->getUsername());
  95.         $parameters $request->query->all();
  96.         $url $this->generateUrl('oauth2_authorize'$parameters);
  97.         return new RedirectResponse($url);
  98.     }
  100.     private function processUserData($username$password) {
  101.         /* @var $user User */
  102.         $user $this->userNormalProvider->loadUserByUsername($username);
  103.         if (empty($user)) {
  104.             return null;
  105.         }
  107.         if (!$user->getIsActive()) {
  108.             return null;
  109.         }
  111.         $isPasswordValid $this->userPasswordHasher->isPasswordValid($user$password);
  112.         if (!$isPasswordValid) {
  113.             return null;
  114.         }
  116.         return $user;
  117.     }
  119.     /**
  120.      * @return \Symfony\Component\HttpFoundation\Response
  121.      * @Route("/oauthlogout", name="oauth2_logout", defaults={"title": "", "description": ""}) 
  122.      */
  123.     public function oauthLogoutAction(Request $request) {
  124.         $user $this->getUser();
  125.         if (empty($user)) {
  126.             return $this->getLogoutRedirect($request);
  127.         }
  129.         $userName $user->getUsername();
  130.         $this->oauth2Helper->revokeTokens($userName);
  131.         $this->session->remove($this->sessionOAuthKey);
  133.         return $this->getLogoutRedirect($request);
  134.     }
  136.     private function getLogoutRedirect(Request $request) {
  137.         $redirectURI $request->query->get('post_logout_redirect_uri');
  138.         if (empty($redirectURI)) {
  139.             $redirectURI 'https://www.berufsreise.at';
  140.         }
  142.         $url urldecode($redirectURI);
  143.         return $this->redirect($url);
  144.     }
  145. }