app/Customize/Controller/AuthController.php line 121

Open in your IDE?
  1. <?php
  3. namespace Customize\Controller;
  5. use Eccube\Form\Type\Front\CustomerLoginType;
  6. use Eccube\Repository\NewsRepository;
  7. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Method;
  8. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route;
  9. use Symfony\Component\HttpFoundation\Response;
  10. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  11. use Symfony\Component\HttpFoundation\Request;
  12. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  13. use Eccube\Event\EventArgs;
  14. use Eccube\Entity\Customer;
  15. use Eccube\Event\EccubeEvents;
  16. use Eccube\Controller\AbstractController;
  17. use Eccube\Repository\CustomerRepository;
  18. use Eccube\Form\Type\Front\EntryType;
  19. use Eccube\Repository\PageRepository;
  20. use Eccube\Service\MailService;
  21. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  22. use Eccube\Repository\BaseInfoRepository;
  23. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  24. use Symfony\Component\Validator\Validator\ValidatorInterface;
  25. use Eccube\Entity\Master\CustomerStatus;
  26. use Eccube\Service\CartService;
  27. use Eccube\Repository\Master\CustomerStatusRepository;
  28. use Symfony\Component\Validator\Constraints as Assert;
  29. use Symfony\Component\HttpKernel\Exception as HttpException;
  30. use Eccube\Form\Type\Front\ForgotType;
  31. use Eccube\Form\Type\Front\PasswordResetType;
  32. use Exception;
  33. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  35. class AuthController extends AbstractController
  36. {
  37.   /**
  38.    * @var CustomerRepository
  39.    */
  40.   protected $customerRepository;
  42.   /**
  43.    * @var PageRepository
  44.    */
  45.   protected $pageRepository;
  47.   /**
  48.    * @var EncoderFactoryInterface
  49.    */
  50.   protected $encoderFactory;
  53.   /**
  54.    * @var CustomerStatusRepository
  55.    */
  56.   protected $customerStatusRepository;
  59.   /**
  60.    * @var BaseInfo
  61.    */
  62.   protected $BaseInfo;
  64.   /**
  65.    * @var MailService
  66.    */
  67.   protected $mailService;
  69.   /**
  70.    * @var \Eccube\Service\CartService
  71.    */
  72.   protected $cartService;
  74.   /**
  75.    * @var ValidatorInterface
  76.    */
  77.   protected $recursiveValidator;
  79.   /**
  80.    * @var TokenStorageInterface
  81.    */
  82.   protected $tokenStorage;
  84.   public function __construct(
  85.     CustomerRepository $customerRepository,
  86.     PageRepository $pageRepository,
  87.     BaseInfoRepository $baseInfoRepository,
  88.     MailService $mailService,
  89.     EncoderFactoryInterface $encoderFactory,
  90.     ValidatorInterface $validatorInterface,
  91.     CartService $cartService,
  92.     CustomerStatusRepository $customerStatusRepository,
  93.     TokenStorageInterface $tokenStorage
  94.   ) {
  95.     $this->BaseInfo $baseInfoRepository->get();
  96.     $this->customerRepository $customerRepository;
  97.     $this->pageRepository $pageRepository;
  98.     $this->encoderFactory $encoderFactory;
  99.     $this->mailService $mailService;
  100.     $this->recursiveValidator $validatorInterface;
  101.     $this->cartService $cartService;
  102.     $this->customerStatusRepository $customerStatusRepository;
  103.     $this->tokenStorage $tokenStorage;
  104.   }
  105.   /**
  106.    * @Route("/mypage-login", name="mypage-login", methods={"GET", "POST"})
  107.    * @Template("@user_data/auth/mypage_login.twig")
  108.    */
  109.   public function login(Request $requestAuthenticationUtils $utils)
  110.   {
  111.     if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  112.       log_info('認証済のためログイン処理をスキップ');
  114.       return $this->redirectToRoute('mypage_index');
  115.     }
  117.     /* @var $form \Symfony\Component\Form\FormInterface */
  118.     $builder $this->formFactory
  119.       ->createNamedBuilder(''CustomerLoginType::class);
  121.     $builder->get('login_memory')->setData((bool) $request->getSession()->get('_security.login_memory'));
  123.     if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  124.       $Customer $this->getUser();
  125.       if ($Customer instanceof Customer) {
  126.         $builder->get('login_email')
  127.           ->setData($Customer->getEmail());
  128.       }
  129.     }
  131.     $event = new EventArgs(
  132.       [
  133.         'builder' => $builder,
  134.       ],
  135.       $request
  136.     );
  137.     $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_MYPAGE_MYPAGE_LOGIN_INITIALIZE);
  139.     $form $builder->getForm();
  140.     $this->tokenStorage->setToken(null);
  141.     return [
  142.       'error' => $utils->getLastAuthenticationError(false),
  143.       'form' => $form->createView(),
  144.     ];
  145.   }
  147.   /**
  148.    * Logout
  149.    *
  150.    * @Route("/customer_logout", name="customer_logout", methods={"GET"})
  151.    */
  152.   public function logout()
  153.   {
  154.       if ($this->tokenStorage->getToken() && $this->tokenStorage->getToken()->getUser() instanceof Customer) {
  155.           $this->tokenStorage->setToken(null);
  156.           
  157.           return $this->redirectToRoute('homepage');
  158.       }
  159.   }
  161.   /**
  162.    * 会員登録画面.
  163.    *
  164.    * @Route("/register", name="register", methods={"GET", "POST"})
  165.    * @Route("/register", name="register_confirm", methods={"GET", "POST"})
  166.    * @Template("@user_data/auth/mypage_register.twig")
  167.    */
  168.   public function index(Request $request)
  169.   {
  170.     if ($this->isGranted('ROLE_USER')) {
  171.       log_info('認証済のためログイン処理をスキップ');
  173.       return $this->redirectToRoute('mypage_index');
  174.     }
  176.     /** @var $Customer \Eccube\Entity\Customer */
  177.     $Customer $this->customerRepository->newCustomer();
  179.     /* @var $builder \Symfony\Component\Form\FormBuilderInterface */
  180.     $builder $this->formFactory->createBuilder(EntryType::class, $Customer);
  182.     $event = new EventArgs(
  183.       [
  184.         'builder' => $builder,
  185.         'Customer' => $Customer,
  186.       ],
  187.       $request
  188.     );
  189.     $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_ENTRY_INDEX_INITIALIZE);
  191.     /* @var $form \Symfony\Component\Form\FormInterface */
  192.     $form $builder->getForm();
  194.     $form->handleRequest($request);
  196.     if ($form->isSubmitted() && $form->isValid()) {
  197.       $mailmagaFlg $form->get('mailmaga_flg')->getData() ? 0;
  198.       $Customer->setMailmagaFlg($mailmagaFlg);
  199.       switch ($request->get('mode')) {
  200.         case 'confirm':
  201.           log_info('会員登録確認開始');
  202.           log_info('会員登録確認完了');
  204.           return $this->render(
  205.             '@user_data/auth/mypage_register_confirm.twig',
  206.             [
  207.               'form' => $form->createView(),
  208.               'Page' => $this->pageRepository->getPageByRoute('register_confirm'),
  209.             ]
  210.           );
  212.         case 'complete':
  213.           log_info('会員登録開始');
  215.           $encoder $this->encoderFactory->getEncoder($Customer);
  216.           $salt $encoder->createSalt();
  217.           $password $encoder->encodePassword($Customer->getPlainPassword(), $salt);
  218.           $secretKey $this->customerRepository->getUniqueSecretKey();
  220.           $Customer
  221.             ->setSalt($salt)
  222.             ->setPassword($password)
  223.             ->setSecretKey($secretKey)
  224.             ->setPoint(0);
  226.           $this->entityManager->persist($Customer);
  227.           $this->entityManager->flush();
  229.           log_info('会員登録完了');
  231.           $event = new EventArgs(
  232.             [
  233.               'form' => $form,
  234.               'Customer' => $Customer,
  235.             ],
  236.             $request
  237.           );
  238.           $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_ENTRY_INDEX_COMPLETE);
  240.           $activateFlg $this->BaseInfo->isOptionCustomerActivate();
  242.           // 仮会員設定が有効な場合は、確認メールを送信し完了画面表示.
  243.           if ($activateFlg) {
  244.             $activateUrl $this->generateUrl('register_activate', ['secret_key' => $Customer->getSecretKey()], UrlGeneratorInterface::ABSOLUTE_URL);
  246.             // メール送信
  247.             $this->mailService->sendCustomerConfirmMail($Customer$activateUrl);
  249.             if ($event->hasResponse()) {
  250.               return $event->getResponse();
  251.             }
  253.             log_info('仮会員登録完了画面へリダイレクト');
  255.             return $this->redirectToRoute('register_complete');
  256.           } else {
  257.             // 仮会員設定が無効な場合は、会員登録を完了させる.
  258.             $qtyInCart $this->entryActivate($request$Customer->getSecretKey());
  260.             // URLを変更するため完了画面にリダイレクト
  261.             return $this->redirectToRoute('register_activate', [
  262.               'secret_key' => $Customer->getSecretKey(),
  263.               'qtyInCart' => $qtyInCart,
  264.             ]);
  265.           }
  266.       }
  267.     }
  269.     return [
  270.       'form' => $form->createView(),
  271.     ];
  272.   }
  274.   /**
  275.    * 会員登録完了画面.
  276.    *
  277.    * @Route("/register/complete", name="register_complete", methods={"GET"})
  278.    * @Template("@user_data/auth/mypage_register_complete.twig")
  279.    */
  280.   public function register_complete()
  281.   {
  282.     return [];
  283.   }
  285.   /**
  286.    * 会員のアクティベート(本会員化)を行う.
  287.    *
  288.    * @Route("/register/activate/{secret_key}/{qtyInCart}", name="register_activate", methods={"GET"})
  289.    * @Template("@user_data/auth/mypage_register_activate.twig")
  290.    */
  291.   public function activate(Request $request$secret_key$qtyInCart null)
  292.   {
  293.     $errors $this->recursiveValidator->validate(
  294.       $secret_key,
  295.       [
  296.         new Assert\NotBlank(),
  297.         new Assert\Regex(
  298.           [
  299.             'pattern' => '/^[a-zA-Z0-9]+$/',
  300.           ]
  301.         ),
  302.       ]
  303.     );
  305.     if (!$this->session->has('eccube.login.target.path')) {
  306.       $this->setLoginTargetPath($this->generateUrl('mypage', [], UrlGeneratorInterface::ABSOLUTE_URL));
  307.     }
  309.     if (!is_null($qtyInCart)) {
  310.       return [
  311.         'qtyInCart' => $qtyInCart,
  312.       ];
  313.     } elseif ($request->getMethod() === 'GET' && count($errors) === 0) {
  314.       // 会員登録処理を行う
  315.       try {
  316.         $qtyInCart $this->entryActivate($request$secret_key);
  318.         return [
  319.           'qtyInCart' => $qtyInCart,
  320.         ];
  321.       } catch(Exception $e) {
  322.         return $this->redirectToRoute('homepage');
  323.       }
  324.     }
  326.     throw new HttpException\NotFoundHttpException();
  327.   }
  329.   /**
  330.    * 会員登録処理を行う
  331.    *
  332.    * @param Request $request
  333.    * @param $secret_key
  334.    *
  335.    * @return \Eccube\Entity\Cart|mixed
  336.    */
  337.   private function entryActivate(Request $request$secret_key)
  338.   {
  339.     log_info('本会員登録開始');
  340.     $Customer $this->customerRepository->getProvisionalCustomerBySecretKey($secret_key);
  341.     if (is_null($Customer)) {
  342.       throw new HttpException\NotFoundHttpException();
  343.     }
  345.     $CustomerStatus $this->customerStatusRepository->find(CustomerStatus::REGULAR);
  346.     $Customer->setStatus($CustomerStatus);
  347.     $this->entityManager->persist($Customer);
  348.     $this->entityManager->flush();
  350.     log_info('本会員登録完了');
  352.     $event = new EventArgs(
  353.       [
  354.         'Customer' => $Customer,
  355.       ],
  356.       $request
  357.     );
  358.     $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_ENTRY_ACTIVATE_COMPLETE);
  360.     // メール送信
  361.     $this->mailService->sendCustomerCompleteMail($Customer);
  363.     // Assign session carts into customer carts
  364.     $Carts $this->cartService->getCarts();
  365.     $qtyInCart 0;
  366.     foreach ($Carts as $Cart) {
  367.       $qtyInCart += $Cart->getTotalQuantity();
  368.     }
  370.     if ($qtyInCart) {
  371.       $this->cartService->save();
  372.     }
  374.     return $qtyInCart;
  375.   }
  377.   /**
  378.    * パスワードリマインダ.
  379.    *
  380.    * @Route("/forgot_password", name="forgot_password", methods={"GET", "POST"})
  381.    * @Template("@user_data/auth/mypage_forgot_password.twig")
  382.    */
  383.   public function forgot(Request $request)
  384.   {
  385.     if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  386.       throw new HttpException\NotFoundHttpException();
  387.     }
  389.     $builder $this->formFactory
  390.       ->createNamedBuilder(''ForgotType::class);
  392.     $event = new EventArgs(
  393.       [
  394.         'builder' => $builder,
  395.       ],
  396.       $request
  397.     );
  398.     $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_INDEX_INITIALIZE);
  400.     $form $builder->getForm();
  401.     $form->handleRequest($request);
  403.     if ($form->isSubmitted() && $form->isValid()) {
  404.       $Customer $this->customerRepository
  405.         ->getRegularCustomerByEmail($form->get('login_email')->getData());
  407.       if (!is_null($Customer)) {
  408.         // リセットキーの発行・有効期限の設定
  409.         $Customer
  410.           ->setResetKey($this->customerRepository->getUniqueResetKey())
  411.           ->setResetExpire(new \DateTime('+' $this->eccubeConfig['eccube_customer_reset_expire'] . ' min'));
  413.         // リセットキーを更新
  414.         $this->entityManager->persist($Customer);
  415.         $this->entityManager->flush();
  417.         $event = new EventArgs(
  418.           [
  419.             'form' => $form,
  420.             'Customer' => $Customer,
  421.           ],
  422.           $request
  423.         );
  424.         $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_INDEX_COMPLETE);
  426.         // 完了URLの生成
  427.         $reset_url $this->generateUrl('forgot_password_reset', ['reset_key' => $Customer->getResetKey()], UrlGeneratorInterface::ABSOLUTE_URL);
  429.         // メール送信
  430.         $this->mailService->sendPasswordResetNotificationMail($Customer$reset_url);
  432.         // ログ出力
  433.         log_info('send reset password mail to:' "{$Customer->getId()} {$Customer->getEmail()} {$request->getClientIp()}");
  434.       } else {
  435.         log_warning(
  436.           'Un active customer try send reset password email: ',
  437.           ['Enter email' => $form->get('login_email')->getData()]
  438.         );
  439.       }
  441.       return $this->redirectToRoute('forgot_password_complete');
  442.     }
  444.     return [
  445.       'form' => $form->createView(),
  446.     ];
  447.   }
  449.   /**
  450.    * 再設定URL送信完了画面.
  451.    *
  452.    * @Route("/forgot_password/complete", name="forgot_password_complete", methods={"GET"})
  453.    * @Template("@user_data/auth/forgot_password_complete.twig")
  454.    */
  455.   public function complete(Request $request)
  456.   {
  457.     if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  458.       throw new HttpException\NotFoundHttpException();
  459.     }
  461.     return [];
  462.   }
  464.   /**
  465.    * パスワード再発行実行画面.
  466.    *
  467.    * @Route("/forgot_password/reset/{reset_key}", name="forgot_password_reset", methods={"GET", "POST"})
  468.    * @Template("@user_data/auth/mypage_reset_password.twig")
  469.    */
  470.   public function reset(Request $request$reset_key)
  471.   {
  472.     if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  473.       throw new HttpException\NotFoundHttpException();
  474.     }
  476.     $errors $this->recursiveValidator->validate(
  477.       $reset_key,
  478.       [
  479.         new Assert\NotBlank(),
  480.         new Assert\Regex(
  481.           [
  482.             'pattern' => '/^[a-zA-Z0-9]+$/',
  483.           ]
  484.         ),
  485.       ]
  486.     );
  488.     if (count($errors) > 0) {
  489.       // リセットキーに異常がある場合
  490.       throw new HttpException\NotFoundHttpException();
  491.     }
  493.     $Customer $this->customerRepository
  494.       ->getRegularCustomerByResetKey($reset_key);
  496.     if (null === $Customer) {
  497.       // リセットキーから会員データが取得できない場合
  498.       throw new HttpException\NotFoundHttpException();
  499.     }
  501.     $builder $this->formFactory
  502.       ->createNamedBuilder(''PasswordResetType::class);
  504.     $form $builder->getForm();
  505.     $form->handleRequest($request);
  506.     $error null;
  508.     if ($form->isSubmitted() && $form->isValid()) {
  509.       // リセットキー・入力メールアドレスで会員情報検索
  510.       $Customer $this->customerRepository
  511.         ->getRegularCustomerByResetKey($reset_key$form->get('login_email')->getData());
  512.       if ($Customer) {
  513.         // パスワードの発行・更新
  514.         $encoder $this->encoderFactory->getEncoder($Customer);
  515.         $pass $form->get('password')->getData();
  516.         $Customer->setPassword($pass);
  518.         // 発行したパスワードの暗号化
  519.         if ($Customer->getSalt() === null) {
  520.           $Customer->setSalt($this->encoderFactory->getEncoder($Customer)->createSalt());
  521.         }
  522.         $encPass $encoder->encodePassword($pass$Customer->getSalt());
  524.         // パスワードを更新
  525.         $Customer->setPassword($encPass);
  526.         // リセットキーをクリア
  527.         $Customer->setResetKey(null);
  529.         // パスワードを更新
  530.         $this->entityManager->persist($Customer);
  531.         $this->entityManager->flush();
  533.         $event = new EventArgs(
  534.           [
  535.             'Customer' => $Customer,
  536.           ],
  537.           $request
  538.         );
  539.         $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_RESET_COMPLETE);
  541.         // 完了メッセージを設定
  542.         $this->addFlash('password_reset_complete'trans('front.forgot.reset_complete'));
  544.         // ログインページへリダイレクト
  545.         return $this->redirectToRoute('mypage-login');
  546.       } else {
  547.         // リセットキー・メールアドレスから会員データが取得できない場合
  548.         $error trans('front.forgot.reset_not_found');
  549.       }
  550.     }
  552.     return [
  553.       'error' => $error,
  554.       'form' => $form->createView(),
  555.     ];
  556.   }
  558. }