src/Security/GoogleAuthenticator.php line 178

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\Institution;
  6. use App\Entity\PdfmenuPersonalization;
  7. use App\Entity\Profile;
  8. use App\Entity\Setting;
  9. use App\Entity\User;
  10. use App\Entity\UserConnection;
  11. use App\Service\RoutingService;
  12. use App\Service\Tools;
  13. use App\Service\UserService;
  14. use App\Service\UserDefaultDataService;
  15. use DateTime;
  16. use Doctrine\ORM\EntityManagerInterface;
  17. use Google\Cloud\Core\Exception\ServiceException;
  18. use KnpU\OAuth2ClientBundle\Client\ClientRegistry;
  19. use KnpU\OAuth2ClientBundle\Client\OAuth2ClientInterface;
  20. use KnpU\OAuth2ClientBundle\Security\Authenticator\SocialAuthenticator;
  21. use League\OAuth2\Client\Provider\GoogleUser;
  22. use Stripe\Exception\ApiErrorException;
  23. use Symfony\Bridge\Twig\Mime\TemplatedEmail;
  24. use Symfony\Component\DependencyInjection\ContainerInterface;
  25. use Symfony\Component\HttpFoundation\RedirectResponse;
  26. use Symfony\Component\HttpFoundation\Request;
  27. use Symfony\Component\HttpFoundation\Response;
  28. use Symfony\Component\Mailer\Exception\TransportExceptionInterface;
  29. use Symfony\Component\Mailer\MailerInterface;
  30. use Symfony\Component\Mime\Address;
  31. use Symfony\Component\Routing\RouterInterface;
  32. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  33. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  34. use Symfony\Component\Security\Core\Exception\BadCredentialsException;
  35. use Symfony\Component\Security\Core\User\UserProviderInterface;
  36. use Symfony\Contracts\Translation\TranslatorInterface;
  38. class GoogleAuthenticator extends SocialAuthenticator
  39. {
  40.     private ClientRegistry $clientRegistry;
  41.     private EntityManagerInterface $em;
  42.     private RouterInterface $router;
  43.     private TranslatorInterface $translator;
  44.     private Tools $tools;
  45.     private UserService $userService;
  46.     private UserDefaultDataService $userDefaultDataService;
  47.     private RoutingService $routingService;
  48.     private MailerInterface $mailer;
  49.     private ContainerInterface $container;
  51.     public function __construct(
  52.         ClientRegistry $clientRegistry,
  53.         EntityManagerInterface $em,
  54.         RouterInterface $router,
  55.         TranslatorInterface $translator,
  56.         Tools $tools,
  57.         UserService $userService,
  58.         UserDefaultDataService $userDefaultDataService,
  59.         RoutingService $routingService,
  60.         MailerInterface $mailer,
  61.         ContainerInterface $container
  62.     ) {
  63.         $this->clientRegistry $clientRegistry;
  64.         $this->em $em;
  65.         $this->router $router;
  66.         $this->translator $translator;
  67.         $this->tools $tools;
  68.         $this->userService $userService;
  69.         $this->userDefaultDataService $userDefaultDataService;
  70.         $this->routingService $routingService;
  71.         $this->mailer $mailer;
  72.         $this->container $container;
  73.     }
  75.     /**
  76.      * @param Request $request
  77.      * @return bool
  78.      */
  79.     public function supports(Request $request)
  80.     {
  81.         return 'api_security_google_check' === $request->attributes->get('_route')
  82.             && $request->isMethod('GET');
  83.     }
  85.     /**
  86.      * @param $credentials
  87.      * @param UserProviderInterface $userProvider
  88.      * @return User
  89.      * @throws TransportExceptionInterface
  90.      */
  91.     public function getUser($credentialsUserProviderInterface $userProvider): User
  92.     {
  93.         /** @var GoogleUser $googleUser */
  94.         $googleUser $this->getGoogleClient()->fetchUserFromToken($credentials);
  96.         $email $googleUser->getEmail();
  98.         /** @var User $existingUser */
  99.         $existingUser $this->em->getRepository(User::class)->findOneBy(['googleId' => $googleUser->getId()]);
  101.         if ($existingUser) {
  102.             if (!$existingUser->isActive()) {
  103.                 throw new BadCredentialsException('user_disabled');
  104.             }
  106.             if (!$existingUser->isValidated()) {
  107.                 throw new BadCredentialsException('user_not_validated');
  108.             }
  110.             if ($existingUser->getProfile()->getRole() !== Profile::ROLE_CUSTOMER) {
  111.                 throw new BadCredentialsException('bad_user');
  112.             }
  114.             return $existingUser;
  115.         }
  117.         /** @var User $user */
  118.         $user $this->em->getRepository(User::class)->findOneBy(['email' => $email]);
  120.         if (!$user) {
  121.             /** @var Profile $profile */
  122.             $profile $this->em->getRepository(Profile::class)->findOneBy(['role' => Profile::ROLE_CUSTOMER]);
  124.             /** @var Setting $setting */
  125.             $setting $this->em->getRepository(Setting::class)->findOneBy(['name' => 'FREE_SMS_PER_MONTH']);
  127.             $user = new User();
  128.             $user->setEmail($googleUser->getEmail());
  129.             $user->setUsername($googleUser->getName());
  130.             $user->setGoogleId($googleUser->getId());
  131.             $user->setProfile($profile);
  132.             $user->setHash($this->tools->generateRandomString(20));
  133.             $user->setValidated(true);
  134.             $user->setSmsRemaining($setting->getValue());
  136.             $institution = new Institution();
  137.             $institution->setIsDefault(true);
  138.             $institution->setName('Mon restaurant');
  139.             $institution->setUser($user);
  140.             $institution->setHash($this->tools->generateRandomString(20));
  142.             $pdfmenuPersonalization = new PdfmenuPersonalization();
  143.             $institution->setPdfmenuPersonalization($pdfmenuPersonalization);
  145.             $this->userService->setDefaultDataOnRegistration($institution);
  147.             $user->addInstitution($institution);
  149.             $this->em->persist($user);
  150.             $this->em->persist($pdfmenuPersonalization);
  151.             $this->em->flush();
  153.             $this->userService->generateQRCodeInstitution($institution);
  155.             $message = (new TemplatedEmail())
  156.                 ->from(new Address($this->container->getParameter('MAILER_FROM'), $this->container->getParameter('MAILER_FROM_NAME')))
  157.                 ->to($user->getEmail())
  158.                 ->subject($this->translator->trans('registrationSocial.title', [], 'email'))
  159.                 ->htmlTemplate('front/emails/registration_social.html.twig')
  160.                 ->context([
  161.                     'userEmail' => $user->getEmail(),
  162.                 ]);
  164.             $this->mailer->send($message);
  165.         } else {
  166.             $user->setGoogleId($googleUser->getId());
  167.             $user->setRegistrationValidationToken(null);
  168.             $user->setRegistrationValidationRequestAt(null);
  169.             $user->setValidated(true);
  171.             $this->em->persist($user);
  172.             $this->em->flush();
  173.         }
  175.         return $user;
  176.     }
  178.     public function getCredentials(Request $request)
  179.     {
  180.         return $this->fetchAccessToken($this->getGoogleClient());
  181.     }
  183.     /**
  184.      * @return OAuth2ClientInterface
  185.      */
  186.     private function getGoogleClient(): OAuth2ClientInterface
  187.     {
  188.         return $this->clientRegistry->getClient('google');
  189.     }
  191.     /**
  192.      * @param Request $request
  193.      * @param AuthenticationException|null $authException
  194.      * @return string|Response
  195.      */
  196.     public function start(Request $requestAuthenticationException $authException null): string|Response
  197.     {
  198.         return $this->router->generate('api_security_login');
  199.     }
  201.     /**
  202.      * @param Request $request
  203.      * @param AuthenticationException $exception
  204.      * @return RedirectResponse
  205.      */
  206.     public function onAuthenticationFailure(Request $requestAuthenticationException $exception): RedirectResponse
  207.     {
  208.         return new RedirectResponse($route $this->routingService->generate('login') . '?s=' $exception->getMessage());
  209.     }
  211.     /**
  212.      * @param Request $request
  213.      * @param TokenInterface $token
  214.      * @param $providerKey
  215.      * @return RedirectResponse
  216.      * @throws ApiErrorException
  217.      * @throws ServiceException
  218.      */
  219.     public function onAuthenticationSuccess(Request $requestTokenInterface $token$providerKey): RedirectResponse
  220.     {
  221.         /** @var User $user */
  222.         $user $token->getUser();
  224.         $this->userDefaultDataService->setDefaultCategories($user);
  226.         $user->setLastConnection(new DateTime());
  228.         $userConnection = new UserConnection();
  229.         $userConnection->setUser($user);
  230.         $userConnection->setConnectionAt(new DateTime());
  231.         $user->addUserConnection($userConnection);
  233.         $hasCookieCart $this->userService->checkHaveCookieCart($request$user);
  235.         $this->userService->checkIsValideSubscription($user);
  237.         $this->em->flush();
  239.         $response = new RedirectResponse($this->routingService->generate('login'));
  241.         if ($hasCookieCart) {
  242.             $response->headers->clearCookie('cart');
  243.         }
  245.         return $response;
  246.     }
  247. }