src/Controller/SecurityController.php line 48

  1. <?php
  3. namespace App\Controller;
  5. use App\Balance\BalanceRefillAmountEnum;
  6. use App\Balance\BalanceService;
  7. use App\Donation\DonationLevelEnum;
  8. use App\Entity\User;
  9. use App\Form\RegistrationFormStepOneType;
  10. use App\Form\RegistrationFormStepTwoType;
  11. use App\Repository\UserRepository;
  12. use App\Security\LoginFormAuthenticator;
  13. use App\Util\Formatter;
  14. use App\Util\USA as USAUtil;
  15. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  16. use Symfony\Bundle\SecurityBundle\Security;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\RequestStack;
  19. use Symfony\Component\HttpFoundation\Response;
  20. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  21. use Symfony\Component\Routing\Annotation\Route;
  22. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  24. class SecurityController extends AbstractController
  25. {
  26.     private const SESSION_KEY 'registration_user_id';
  28.     // todo make sure we don't start sessions for anon users
  29.     public function __construct(
  30.         private RequestStack   $requestStack,
  31.         private UserRepository $userRepository,
  33.     )
  34.     {
  35.     }
  37.     #[Route('/app'name'app_default'methods'GET')]
  38.     public function default(): Response
  39.     {
  40.         /**
  41.          * This is the entry point for requests without valid cup tag, e.g. direct URL type ins
  42.          */
  43.         return $this->render('home/default.html.twig', [
  44.         ]);
  45.     }
  47.     #[Route('/login'name'app_login'methods: ['GET''POST'])]
  48.     public function login(AuthenticationUtils $authenticationUtils): Response
  49.     {
  50.          if ($this->getUser()) {
  51.              return $this->redirectToRoute('app_home');
  52.          }
  54.         // get the login error if there is one
  55.         $error $authenticationUtils->getLastAuthenticationError();
  57.         // last username entered by the user
  58.         $lastUsername $authenticationUtils->getLastUsername();
  60.         return $this->render('security/login.html.twig', [
  61.             'last_username' => $lastUsername,
  62.             'error' => $error,
  63.             'states' => USAUtil::getUsStateDemocraticParties()
  64.         ]);
  65.     }
  67.     #[Route(path'/logout'name'app_logout')]
  68.     public function logout(): void
  69.     {
  70.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  71.     }
  73.     #[Route('/register'name'app_register_step_one'methods: ['GET''POST'])]
  74.     public function registerStepOne(
  75.         Request                     $request,
  76.         UserPasswordHasherInterface $userPasswordHasher,
  77.     ): Response
  78.     {
  79.         $user = new User();
  80.         $form $this->createForm(RegistrationFormStepOneType::class, $user);
  81.         $form->handleRequest($request);
  83.         if ($form->isSubmitted() && $form->isValid()) {
  84.             // encode the plain password
  85.             $user->setPassword(
  86.                 $userPasswordHasher->hashPassword(
  87.                     $user,
  88.                     $form->get('plainPassword')->getData()
  89.                 )
  90.             );
  92.             // keep uncompleted user in DB
  93.             $this->userRepository->save($usertrue);
  95.             // pass user to next step
  96.             $this->requestStack->getSession()->set(self::SESSION_KEY$user->getId());
  98.             return $this->redirectToRoute('app_register_step_two');
  99.         }
  101.         return $this->render('security/register_step_one.html.twig', [
  102.             'form' => $form,
  103.         ]);
  104.     }
  106.     #[Route('/register/fill'name'app_register_step_two'methods: ['GET''POST'])]
  107.     public function registerStepTwo(Request $requestBalanceService $balanceService): Response
  108.     {
  109.         $user $this->getUserFromPreviousStep();
  110.         if (empty($user)) {
  111.             return $this->redirectToRoute('app_register_step_one');
  112.         }
  114.         $form $this->createForm(RegistrationFormStepTwoType::class);
  115.         $form->handleRequest($request);
  117.         if ($form->isSubmitted() && $form->isValid()) {
  118.             $refillAmount BalanceRefillAmountEnum::tryFrom($form->get('refillAmount')->getData());
  119.             $level DonationLevelEnum::tryFrom($form->get('donationAmount')->getData());
  121.             // todo steps below should be in one transaction
  122.             // set default donation level, no flush needed yet since the user already in DB and has an ID
  123.             $user->setTransactionDefaultAmount($level);
  125.             // add points to balance
  126.             $balanceService->addToBalanceForUser($refillAmount$user);
  128.             // activate user
  129.             $user->activate();
  130.             $this->userRepository->save($user);
  132.             return $this->redirectToRoute('app_register_success');
  133.         }
  135.         return $this->render('security/register_step_two.html.twig', [
  136.             'form' => $form,
  137.         ]);
  138.     }
  140.     private function getUserFromPreviousStep(): ?User
  141.     {
  142.         // get user id passed from the previous step
  143.         $session $this->requestStack->getSession();
  144.         $userId $session->get(self::SESSION_KEY);
  145.         if (empty($userId) || !is_int($userId)) {
  146.             $session->invalidate();
  147.             return null;
  148.         }
  150.         // find previously saved user
  151.         $user $this->userRepository->find($userId);
  152.         if (empty($user)) {
  153.             $session->invalidate();
  154.             return null;
  155.         }
  157.         return $user;
  158.     }
  160.     #[Route('/register/success'name'app_register_success'methods'GET')]
  161.     public function registerSuccess(BalanceService $balanceServiceSecurity $security): Response
  162.     {
  163.         $user $this->getUserFromPreviousStep();
  164.         if (empty($user)) {
  165.             $this->redirectToRoute('app_register_step_one');
  166.         }
  168.         $security->login($userLoginFormAuthenticator::class);
  170.         $data = [
  171.             'name' => $user->getFullName(),
  172.             'email' => $user->getEmail(),
  173.             'employer' => $user->getEmployer(),
  174.             'occupation' => $user->getOccupation(),
  175.             'level' => Formatter::formatMoney($user->getTransactionDefaultAmount()),
  176.             'balance' => Formatter::formatMoney($balanceService->getBalanceForUser($user)),
  177.         ];
  179.         return $this->render('security/register_success.html.twig', [
  180.             'data' => $data,
  181.         ]);
  182.     }
  183. }