src/Controller/Security/SecurityController.php line 40

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Security;
  5. use App\Controller\API\ApiTrait;
  6. use App\Form\CrmUser\LoginType;
  7. use App\Repository\ServiceFormRepository;
  8. use App\Repository\ServiceSectionGroupRepository;
  9. use App\Service\BarrierCache;
  10. use Drenso\OidcBundle\OidcClientInterface;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  13. use Symfony\Component\HttpFoundation\RedirectResponse;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  18. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  19. use Symfony\Component\Security\Core\User\UserInterface;
  21. class SecurityController extends AbstractController
  22. {
  23.     use ApiTrait;
  25.     public function __construct(
  26.         private readonly ParameterBagInterface $parameterBag,
  27.     )
  28.     {
  29.     }
  31.     #[Route('/login_oidc'name'login_oidc')]
  32.     public function loginOIDC(OidcClientInterface $oidcClient): RedirectResponse
  33.     {
  34.         // Redirect to authorization @ OIDC provider
  35.         $redirect $oidcClient->generateAuthorizationRedirect(
  36.             null,
  37.             ['openid''account''email''profile''phone''address'],
  38.             false,
  39.             [
  40.                 "callback_uri" => 'http://localhost/infonot-sso-callback'
  41.             ],
  42.         );
  44.         return $redirect;
  45.     }
  47.     #[Route('/login_oidc_exist'name'login_oidc_exist')]
  48.     public function loginOIDCfromExistProfile(
  49.         BarrierCache        $barrierCache,
  50.         OidcClientInterface $oidcClient,
  51.         UserInterface       $user): RedirectResponse
  52.     {
  53.         // Redirect to authorization @ OIDC provider
  54.         $redirect $oidcClient->generateAuthorizationRedirect(
  55.             null,
  56.             ['openid''account''email''profile''phone''address'],
  57.             false,
  58.             [
  59.                 "callback_uri" => 'http://localhost/infonot-sso-callback'
  60.             ],
  61.         );
  63.         $query parse_url($redirect->getTargetUrl(), PHP_URL_QUERY);
  65.         $params = [];
  66.         parse_str($query$params);
  68.         if (($params['state'] ?? false) && $user && $user->getEmail()) {
  69.             $barrierCache->setValue('oidc_' $params['state'], $user->getId());
  70.         }
  72.         return $redirect;
  73.     }
  75.     /**
  76.      * @Route("/login_check", name="login_check")
  77.      * @Security("is_granted('ROLE_NOTARY') or is_granted('ROLE_REFOVOD')")
  78.      */
  79.     public function loginCheckAction(): Response
  80.     {
  81.         return new Response();
  82.     }
  84.     /**
  85.      * @Route("/partner_login_check", name="partner_login_check")
  86.      * @Security("is_granted('ROLE_NOTARY') or is_granted('ROLE_REFOVOD')")
  87.      */
  88.     public function partnerLoginCheckAction(): Response
  89.     {
  90.         return new Response();
  91.     }
  93.     /**
  94.      * @Route("/login", name="app_login")
  95.      */
  96.     public function login(
  97.         AuthenticationUtils $authenticationUtils,
  98.         ServiceFormRepository $serviceFormRepository,
  99.         ServiceSectionGroupRepository $serviceSectionGroupRepository,
  100.         Request $request
  101.     ): Response
  102.     {
  103.         if ($this->isGranted('ROLE_NOTARY')) {
  104.             return $this->redirectToRoute('area_notary_index');
  105.         }
  107.         if ($request->getHost() === $this->getParameter('public_appraiser_domain')) {
  108.             return $this->forward(AppraiserController::class . '::homepage', [
  109.                 'authenticationUtils' => $authenticationUtils,
  110.                 'serviceFormRepository' => $serviceFormRepository,
  111.                 'serviceSectionGroupRepository' => $serviceSectionGroupRepository,
  112.             ]);
  113.         }
  115.         list($error$lastUsername$groupsWithSections$paperCopy) =
  116.             $this->getLoginPageData($authenticationUtils$serviceSectionGroupRepository$serviceFormRepository);
  118.         // Костыль, но для срочности. Определим правельный paperCopy, из релевантного groupsWithSections
  119.         // TODO переработать
  120.         /** @see 271 */
  121.         foreach($groupsWithSections[0]['sections'] as $section) {
  122.             foreach($section['serviceForms'] as $form) {
  123.                 if($form['icon'] !== 'paper-copy') {
  124.                     continue;
  125.                 }
  126.                 $paperCopy $form;
  127.             }
  128.         }
  130.         return $this->render('publicPages/notaryLandingPage.html.twig',
  131.             [
  132.                 'controller_name' => 'Сервис электронной оценки',
  133.                 'is_login'        => true,
  134.                 'last_username'   => $lastUsername,
  135.                 'error'           => $error,
  136.                 'group'           => $groupsWithSections[0],
  137.                 'paperCopy'       => $paperCopy,
  138.             ]);
  139.     }
  141.     /**
  142.      * @Route("/remote/login", name="app_login_ajax", methods={"GET", "POST"})
  143.      */
  144.     public function loginAjax(AuthenticationUtils $authenticationUtils): Response
  145.     {
  146.         // Если пользователь уже авторизован (успешный логин)
  147.         if ($this->isGranted('ROLE_USER')) {
  148.             $redirectUrl $this->generateUrl('area_client_index');
  150.             if ($this->isGranted('ROLE_NOTARY')) {
  151.                 $redirectUrl $this->generateUrl('area_notary_index');
  152.             }
  153.             if ($this->isGranted('ROLE_PARTNER')) {
  154.                 $redirectUrl $this->generateUrl('area_partner_index');
  155.             }
  156.             if ($this->isGranted('ROLE_WORKER')) {
  157.                 $redirectUrl $this->generateUrl('area_notary_index');
  158.             }
  159.             if ($this->isGranted('ROLE_INFO_NOT')) {
  160.                 $redirectUrl $this->generateUrl('area_infonot_balance');
  161.             }
  162.             if ($this->isGranted('ROLE_REFOVOD')) {
  163.                 $redirectUrl $this->generateUrl('area_refovod_balance');
  164.             }
  166.             return $this->response([
  167.                 'success' => true,
  168.                 'redirect' => $redirectUrl
  169.             ]);
  170.         }
  172.         $error $authenticationUtils->getLastAuthenticationError();
  173.         if ($error) {
  174.             return $this->response(['error' => $error->getMessage()], 400);
  175.         }
  177.         // Если нет ошибки и пользователь не аутентифицирован - значит форма еще не отправлена
  178.         return $this->response(['error' => 'Неверный email или пароль'], 400);
  179.     }
  181.     /**
  182.      * @Route("/r-p/{code}", name="app_main_referal")
  183.      */
  184.     public function mainForReferal(
  185.         string $code,
  186.         AuthenticationUtils $authenticationUtils,
  187.         ServiceFormRepository $serviceFormRepository,
  188.         ServiceSectionGroupRepository $serviceSectionGroupRepository,
  189.     ): Response
  190.     {
  191.         if ($this->isGranted('ROLE_NOTARY')) {
  192.             return $this->redirectToRoute('area_notary_index');
  193.         }
  196.         list($error$lastUsername$groupsWithSections$paperCopy) =
  197.             $this->getLoginPageData($authenticationUtils$serviceSectionGroupRepository$serviceFormRepository);
  199.         // Костыль, но для срочности. Определим правельный paperCopy, из релевантного groupsWithSections
  200.         // TODO переработать
  201.         /** @see 271 */
  202.         foreach($groupsWithSections[0]['sections'] as $section) {
  203.             foreach($section['serviceForms'] as $form) {
  204.                 if($form['icon'] !== 'paper-copy') {
  205.                     continue;
  206.                 }
  207.                 $paperCopy $form;
  208.             }
  209.         }
  211.         return $this->render('publicPages/notaryLandingPage.html.twig',
  212.             [
  213.                 'controller_name' => 'Сервис электронной оценки',
  214.                 'is_login'        => true,
  215.                 'last_username'   => $lastUsername,
  216.                 'error'           => $error,
  217.                 'group'           => $groupsWithSections[0],
  218.                 'paperCopy'       => $paperCopy,
  219.                 'registerCode'    => $code,
  220.             ]);
  221.     }
  223.     /**
  224.      * @Route("/logout", name="app_logout")
  225.      */
  226.     public function logout()
  227.     {
  228.         throw new \LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  229.     }
  231.     protected function getLoginPageData(
  232.         AuthenticationUtils $authenticationUtils,
  233.         ServiceSectionGroupRepository $serviceSectionGroupRepository,
  234.         ServiceFormRepository $serviceFormRepository,
  235.     ): array
  236.     {
  237.         $error $authenticationUtils->getLastAuthenticationError();
  238.         $lastUsername $authenticationUtils->getLastUsername();
  240.         $groupsWithSections $serviceSectionGroupRepository->getList();
  241.         $services = [];
  243.         foreach ($serviceFormRepository->findAll() ?? [] as $service) {
  244.             $services[$service->getId()] = $service;
  245.         }
  247.         $paperCopy 0;
  248.         foreach ($groupsWithSections as $key => &$group) {
  249.             foreach ($group['sections'] as $sectionKey => $section) {
  250.                 foreach ($section['serviceForms'] ?? [] as $serviceForm) {
  251.                     if ($services[$serviceForm['id']]->getIcon() === 'paper-copy') {
  252.                         //Отдельно отчет
  253.                         $paperCopy $services[$serviceForm['id']];
  254.                         continue;
  255.                     }
  256.                     $groupsWithSections[$key]['sections'][$sectionKey]['forms'][] = $services[$serviceForm['id']];
  257.                 }
  258.             }
  260.             $group['sections'] = array_reverse($group['sections']);
  261.         }
  263.         return [$error$lastUsername$groupsWithSections$paperCopy];
  264.     }
  265. }