src/Controller/Admin/LoginController.php line 55

Open in your IDE?
  1. <?php
  3. namespace EADPlataforma\Controller\Admin;
  5. use EADPlataforma\Entity\User;
  6. use EADPlataforma\Enum\UserEnum;
  7. use EADPlataforma\Error\ActionInvalidException;
  8. use EADPlataforma\Error\FieldException;
  9. use EADPlataforma\Error\NotFoundException;
  10. use EADPlataforma\Requests\Login\AuthenticationRequest;
  11. use EADPlataforma\Requests\Login\LoginRequest;
  12. use EADPlataforma\Requests\Login\ResetPasswordRequest;
  13. use EADPlataforma\Requests\Login\SendEmailAuthenticationRequest;
  14. use EADPlataforma\Requests\Login\SendEmailRecoverPasswordRequest;
  15. use EADPlataforma\Requests\Login\UpdateUserNotificationRequest;
  16. use EADPlataforma\Response\HttpNoContent;
  17. use EADPlataforma\Response\HttpOk;
  18. use EADPlataforma\Services\EntityServices\LoginService;
  19. use EADPlataforma\Services\EntityServices\PermissionService;
  20. use EADPlataforma\Services\EntityServices\SessionService;
  21. use EADPlataforma\Services\EntityServices\UserService;
  22. use EADPlataforma\Services\EntityServices\ConfigurationIpService;
  23. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Cache;
  24. use Symfony\Component\HttpFoundation\JsonResponse;
  25. use Symfony\Component\HttpFoundation\Request;
  26. use Symfony\Component\Routing\Annotation\Route;
  28. /**
  29.  * @Route(
  30.  *      path          = "/auth",
  31.  *      schemes         = {"http|https"}
  32.  * )
  33.  * @Cache(
  34.  *      maxage          = "0",
  35.  *      smaxage         = "0",
  36.  *      expires         = "now",
  37.  *      public          = false
  38.  * )
  39.  */
  40. class LoginController extends AbstractController {
  42.     public function getEntityClass(): string
  43.     {
  44.         return User::class;
  45.     }
  47.     /**
  48.      * @Route(
  49.      *      name          = "authLogin",
  50.      *      methods       = {"POST"}
  51.      * )
  52.      * 
  53.      * @throws ActionInvalidException
  54.      */
  55.     public function authLogin(
  56.         LoginRequest $request,
  57.         LoginService $loginService
  58.         PermissionService $permissionService,
  59.         SessionService $sessionService,
  60.         ConfigurationIpService $configurationIpService
  61.     ): JsonResponse
  62.     {
  63.         if(!$loginService->verifyUserAgentValid($request)){
  64.             throw new ActionInvalidException(
  65.                 $this->configuration->getLanguage('login_invalid''login')
  66.             );
  67.         }
  69.         $user $loginService->getUserLogin($request);
  71.         if(!$user){
  72.             throw new ActionInvalidException(
  73.                 $this->configuration->getLanguage('login_invalid''login')
  74.             );
  75.         }
  77.         if(!$configurationIpService->isValidIp($request->request->getClientIp())){
  78.             throw new ActionInvalidException(
  79.                 $this->configuration->getLanguage('login_invalid''login')
  80.             );
  81.         }
  83.         if($user->getId() != UserEnum::YES && $user->getPassword() == UserEnum::PASSWORD_RESET){
  84.             throw new ActionInvalidException(
  85.                 $this->configuration->getLanguage('password_reset''login')
  86.             );
  87.         }
  89.         if(!$loginService->verifyUserLoginValid($user$request->password)){
  90.             throw new ActionInvalidException(
  91.                 $this->configuration->getLanguage('login_invalid''login')
  92.             );
  93.         }
  95.         $platformStatus $this->clientConfig->getPlatformStatus();
  96.         if(!$loginService->verifyPlataformStatus($user$platformStatus)){
  97.             throw new ActionInvalidException(
  98.                 $this->configuration->getLanguage('login_invalid''login')
  99.             );
  100.         }
  102.         if($user->getAuthenticationAllow()){
  104.             $signId $this->generalService->signDataWithExpiration($user->getId(), 300);
  105.             
  106.             $data = [
  107.                 "userHash" => $signId,
  108.                 "authenticationActivated" => $user->getAuthenticationAllow()
  109.             ];
  111.             return new HttpOk($data);
  112.         }
  114.         $data $sessionService->registerSession($request$user);
  115.         if(!$data) {
  116.             throw new ActionInvalidException("ExecutionTypeInvalid");
  117.         }
  119.         return new HttpOk($data);
  120.     }
  122.     /**
  123.      * @Route(
  124.      *      path          = "/mfa",
  125.      *      name          = "authMFA",
  126.      *      methods       = {"POST"},
  127.      * )
  128.      * 
  129.      * @throws ActionInvalidException
  130.      * @throws NotFoundException
  131.      */
  132.     public function authMFA(
  133.         AuthenticationRequest $request,
  134.         UserService $userService,
  135.         LoginService $loginService,
  136.         SessionService $sessionService
  137.     ): JsonResponse
  138.     {
  139.         $userHash $request->data['userHash'];
  140.         $userId $this->generalService->verifySignedDataExpire($userHash);
  141.         if(!$userId){
  142.             throw new ActionInvalidException(
  143.                 $this->configuration->getLanguage('user_not_found''login')
  144.             );
  145.         }
  147.         $user $userService->searchUser($userId);
  148.         if(!$user){
  149.             throw new NotFoundException(
  150.                 $this->configuration->getLanguage('user_not_found''login')
  151.             ); 
  152.         }
  154.         if(!$user->getAuthenticationAllow()){
  155.             throw new NotFoundException(
  156.                 $this->configuration->getLanguage('authentication_not_enabled''login')
  157.             ); 
  158.         }
  160.         if(!$loginService->verifyAuthenticationValid($request$user)){
  161.             throw new ActionInvalidException(
  162.                 $this->configuration->getLanguage('authentication_invalid''login')
  163.             );
  164.         }
  166.         $data $sessionService->registerSession($request$user);
  167.         if(!$data) {
  168.             throw new ActionInvalidException("ExecutionTypeInvalid");
  169.         }
  171.         return new HttpOk($data);
  172.     }
  174.     /**
  175.      * @Route(
  176.      *      path          = "/email/mfa/{userHash}",
  177.      *      name          = "sendEmailAuthentication",
  178.      *      methods       = {"PUT"}
  179.      * )
  180.      * 
  181.      * @throws ActionInvalidException
  182.      * @throws NotFoundException
  183.      */
  184.     public function sendEmailAuthentication(
  185.         SendEmailAuthenticationRequest $request,
  186.         UserService $userService,
  187.         LoginService $loginService
  188.     ): JsonResponse
  189.     {
  190.         $userHash $request->request->get('userHash');
  191.         $userId $this->generalService->verifySignedDataExpire($userHash);
  192.         if(!$userId){
  193.             throw new ActionInvalidException(
  194.                 $this->configuration->getLanguage('email_invalid''login')
  195.             );
  196.         }
  198.         $user $userService->searchUser($userId);
  199.         if (!$user) {
  200.             throw new NotFoundException($this->configuration->getLanguage('user_not_found''login'));
  201.         }
  203.         if(!$loginService->sendEmailAuthentication($user)){
  204.             throw new ActionInvalidException(
  205.                 $this->configuration->getLanguage('email_invalid''login')
  206.             );
  207.         }
  209.         return new HttpNoContent;
  210.     }
  212.     /**
  213.      * @Route(
  214.      *      path          = "/user/notification/{hash}",
  215.      *      name          = "updateUserNotification",
  216.      *      methods       = {"PUT"},
  217.      *      requirements  = { "hash" = "([a-zA-Z0-9_-]+)" }
  218.      * )
  219.      * 
  220.      * @throws ActionInvalidException
  221.      * @throws NotFoundException
  222.      */
  223.     public function updateUserNotification(
  224.         UpdateUserNotificationRequest $request,
  225.         UserService $userService,
  226.         LoginService $loginService
  227.     ): JsonResponse
  228.     {
  229.         $hash $request->request->get('hash');
  230.         $user $userService->searchUserByHash($hash);
  231.         if(!$user){
  232.             throw new NotFoundException($this->configuration->getLanguage('user_not_found''login'));
  233.         }
  235.         $userService->updateUserNotification($request->data$user);
  237.         return new HttpNoContent;
  238.     }
  240.     /**
  241.      * @Route(
  242.      *      path          = "/email/recover/password",
  243.      *      name          = "sendEmailRecoverPassword",
  244.      *      methods       = {"POST"}
  245.      * )
  246.      * 
  247.      * @throws ActionInvalidException
  248.      * @throws NotFoundException
  249.      */
  250.     public function sendEmailRecoverPassword(
  251.         SendEmailRecoverPasswordRequest $request,
  252.         UserService $userService,
  253.         LoginService $loginService
  254.     ): JsonResponse
  255.     {
  256.         $email $request->data["email"];
  258.         $user $userService->searchUserByEmail($emailUserEnum::ITEM_NO_DELETED);
  259.         if(!$user){
  260.             throw new NotFoundException($this->configuration->getLanguage('user_not_found''login')); 
  261.         }
  263.         if(!$loginService->sendEmailRecoverPassword($user)){
  264.             throw new ActionInvalidException(
  265.                 $this->configuration->getLanguage('email_invalid''login')
  266.             );
  267.         }
  269.         return new HttpNoContent;
  270.     }
  272.     /**
  273.      * @Route(
  274.      *      path          = "/reset/password",
  275.      *      name          = "resetPassword",
  276.      *      methods       = {"POST"}
  277.      * )
  278.      * 
  279.      * @throws ActionInvalidException
  280.      */
  281.     public function resetPassword(
  282.         ResetPasswordRequest $request,
  283.         UserService $userService,
  284.         LoginService $loginService
  285.     ): JsonResponse
  286.     {
  287.         $errorMessage $loginService->verifyResetPassword($request->data);
  288.         if(!empty($errorMessage)){
  289.             throw new ActionInvalidException($errorMessage);
  290.         }
  292.         $data = [ 
  293.             "message" => $this->configuration->getLanguage('updated_password''login'),
  294.             "status" => UserEnum::YES,
  295.             "url" => "https://{$this->client->getDomainPrimary()}/login"
  296.         ];
  298.         return new HttpOk($data);
  299.     }
  300.     
  301. }