vendor/ibexa/user/src/bundle/Controller/PasswordResetController.php line 68

Open in your IDE?
  1. <?php
  3. /**
  4. * @copyright Copyright (C) Ibexa AS. All rights reserved.
  5. * @license For full copyright and license information view LICENSE file distributed with this source code.
  6. */
  7. declare(strict_types=1);
  9. namespace Ibexa\Bundle\User\Controller;
  11. use DateInterval;
  12. use DateTime;
  13. use Ibexa\Bundle\User\Type\UserForgotPasswordReason;
  14. use Ibexa\Contracts\Core\Repository\Exceptions\NotFoundException;
  15. use Ibexa\Contracts\Core\Repository\PermissionResolver;
  16. use Ibexa\Contracts\Core\Repository\UserService;
  17. use Ibexa\Contracts\Core\Repository\Values\User\User;
  18. use Ibexa\Contracts\Core\Repository\Values\User\UserTokenUpdateStruct;
  19. use Ibexa\Contracts\Core\SiteAccess\ConfigResolverInterface;
  20. use Ibexa\Contracts\User\PasswordReset\NotifierInterface;
  21. use Ibexa\User\ExceptionHandler\ActionResultHandler;
  22. use Ibexa\User\Form\Data\UserPasswordResetData;
  23. use Ibexa\User\Form\Factory\FormFactory;
  24. use Ibexa\User\View\ForgotPassword\FormView;
  25. use Ibexa\User\View\ForgotPassword\LoginView;
  26. use Ibexa\User\View\ForgotPassword\SuccessView;
  27. use Ibexa\User\View\ResetPassword\FormView as UserResetPasswordFormView;
  28. use Ibexa\User\View\ResetPassword\InvalidLinkView;
  29. use Ibexa\User\View\ResetPassword\SuccessView as UserResetPasswordSuccessView;
  30. use Symfony\Component\HttpFoundation\Request;
  31. use Symfony\Component\HttpFoundation\Response;
  33. class PasswordResetController extends Controller
  34. {
  35. private FormFactory $formFactory;
  37. private UserService $userService;
  39. private ActionResultHandler $actionResultHandler;
  41. private PermissionResolver $permissionResolver;
  43. private ConfigResolverInterface $configResolver;
  45. private NotifierInterface $passwordResetMailer;
  47. public function __construct(
  48. FormFactory $formFactory,
  49. UserService $userService,
  50. ActionResultHandler $actionResultHandler,
  51. PermissionResolver $permissionResolver,
  52. ConfigResolverInterface $configResolver,
  53. NotifierInterface $passwordResetMailer
  54. ) {
  55. $this->formFactory = $formFactory;
  56. $this->userService = $userService;
  57. $this->actionResultHandler = $actionResultHandler;
  58. $this->permissionResolver = $permissionResolver;
  59. $this->configResolver = $configResolver;
  60. $this->passwordResetMailer = $passwordResetMailer;
  61. }
  63. /**
  64. * @return \Ibexa\User\View\ForgotPassword\FormView|\Ibexa\User\View\ForgotPassword\SuccessView|\Symfony\Component\HttpFoundation\RedirectResponse
  65. *
  66. * @throws \Ibexa\Core\Base\Exceptions\InvalidArgumentType
  67. */
  68. public function userForgotPasswordAction(Request $request, ?string $reason = null)
  69. {
  70. $form = $this->formFactory->forgotUserPassword();
  71. $form->handleRequest($request);
  73. if ($form->isSubmitted() && $form->isValid()) {
  74. $data = $form->getData();
  75. $users = $this->userService->loadUsersByEmail($data->getEmail());
  77. /** Because it is possible to have multiple user accounts with same email address we must gain a user login. */
  78. if (\count($users) > 1) {
  79. return $this->redirectToRoute('ibexa.user.forgot_password.login');
  80. }
  82. if (!empty($users)) {
  83. /** @var \Ibexa\Contracts\Core\Repository\Values\User\User $user */
  84. $user = reset($users);
  85. $token = $this->updateUserToken($user);
  87. $this->passwordResetMailer->sendMessage($user, $token);
  88. }
  90. return new SuccessView(null);
  91. }
  93. return new FormView(null, [
  94. 'form_forgot_user_password' => $form->createView(),
  95. 'reason' => $reason,
  96. 'userForgotPasswordReasonMigration' => UserForgotPasswordReason::MIGRATION,
  97. ]);
  98. }
  100. /**
  101. * @param \Symfony\Component\HttpFoundation\Request $request
  102. *
  103. * @return \Ibexa\User\View\ForgotPassword\LoginView|\Ibexa\User\View\ForgotPassword\SuccessView
  104. *
  105. * @throws \Ibexa\Core\Base\Exceptions\InvalidArgumentType
  106. */
  107. public function userForgotPasswordLoginAction(Request $request)
  108. {
  109. $form = $this->formFactory->forgotUserPasswordWithLogin();
  111. $form->handleRequest($request);
  113. if ($form->isSubmitted() && $form->isValid()) {
  114. $data = $form->getData();
  116. try {
  117. $user = $this->userService->loadUserByLogin($data->getLogin());
  118. } catch (NotFoundException $e) {
  119. $user = null;
  120. }
  122. if (!$user || \count($this->userService->loadUsersByEmail($user->email)) < 2) {
  123. return new SuccessView(null);
  124. }
  126. $token = $this->updateUserToken($user);
  127. $this->passwordResetMailer->sendMessage($user, $token);
  129. return new SuccessView(null);
  130. }
  132. return new LoginView(null, [
  133. 'form_forgot_user_password_with_login' => $form->createView(),
  134. ]);
  135. }
  137. /**
  138. * @param \Symfony\Component\HttpFoundation\Request $request
  139. * @param string $hashKey
  140. *
  141. * @return \Ibexa\User\View\ResetPassword\FormView|\Ibexa\User\View\ResetPassword\InvalidLinkView|\Ibexa\User\View\ResetPassword\SuccessView
  142. *
  143. * @throws \Ibexa\Core\Base\Exceptions\InvalidArgumentType
  144. */
  145. public function userResetPasswordAction(Request $request, string $hashKey)
  146. {
  147. $response = new Response();
  148. $response->headers->set('X-Robots-Tag', 'noindex');
  150. try {
  151. $user = $this->userService->loadUserByToken($hashKey);
  152. } catch (NotFoundException $e) {
  153. $view = new InvalidLinkView(null);
  154. $view->setResponse($response);
  156. return $view;
  157. }
  158. $userPasswordResetData = new UserPasswordResetData();
  159. $form = $this->formFactory->resetUserPassword(
  160. $userPasswordResetData,
  161. null,
  162. $user->getContentType(),
  163. $user
  164. );
  165. $form->handleRequest($request);
  167. if ($form->isSubmitted() && $form->isValid()) {
  168. try {
  169. $currentUser = $this->permissionResolver->getCurrentUserReference();
  170. $this->permissionResolver->setCurrentUserReference($user);
  171. } catch (NotFoundException $e) {
  172. $view = new InvalidLinkView(null);
  173. $view->setResponse($response);
  175. return $view;
  176. }
  178. $data = $form->getData();
  180. try {
  181. $this->userService->updateUserPassword($user, $data->getNewPassword());
  182. $this->userService->expireUserToken($hashKey);
  183. $this->permissionResolver->setCurrentUserReference($currentUser);
  185. $view = new UserResetPasswordSuccessView(null);
  186. $view->setResponse($response);
  188. return $view;
  189. } catch (\Exception $e) {
  190. $this->actionResultHandler->error($e->getMessage());
  191. }
  192. }
  194. $view = new UserResetPasswordFormView(null, [
  195. 'form_reset_user_password' => $form->createView(),
  196. ]);
  197. $view->setResponse($response);
  199. return $view;
  200. }
  202. /**
  203. * @param \Ibexa\Contracts\Core\Repository\Values\User\User $user
  204. *
  205. * @return string
  206. *
  207. * @throws \Exception
  208. */
  209. private function updateUserToken(User $user): string
  210. {
  211. $struct = new UserTokenUpdateStruct();
  212. $struct->hashKey = bin2hex(random_bytes(16));
  213. $date = new DateTime();
  214. $date->add(new DateInterval($this->configResolver->getParameter('security.token_interval_spec')));
  215. $struct->time = $date;
  216. $this->userService->updateUserToken($user, $struct);
  218. return $struct->hashKey;
  219. }
  220. }
  222. class_alias(PasswordResetController::class, 'EzSystems\EzPlatformUserBundle\Controller\PasswordResetController');