src/Controller/UserController.php line 24

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Internal\ApiUser;
  6. use App\Entity\Internal\TwoFaConfig;
  7. use App\Helper\LoginHelper;
  8. use Doctrine\ORM\EntityManagerInterface;
  9. use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTTokenManagerInterface;
  10. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  11. use Symfony\Component\HttpFoundation\JsonResponse;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  14. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  15. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  16. use Symfony\Component\Routing\Annotation\Route;
  17. use Symfony\Component\Serializer\SerializerInterface;
  19. class UserController extends AbstractController
  20. {
  21.     /**
  22.      * @Route("/api/me", name="users_me")
  23.      */
  24.     public function me(SerializerInterface $serializerEntityManagerInterface $internalEntityManager): JsonResponse
  25.     {
  26.         if (!$this->getUser() || $this->getUser() instanceof ApiUser) {
  27.             throw new UnauthorizedHttpException('Bearer');
  28.         }
  30.         $twoFaConfig $internalEntityManager->getRepository(TwoFaConfig::class)->findOneBy([
  31.             'userId' => $this->getUser()->getUser()->getUserId(),
  32.         ]);
  34.         $this->getUser()->setTwoFaStatus($twoFaConfig?->getStatus() ?? TwoFaConfig::STATUS_DISABLED);
  36.         return new JsonResponse($serializer->normalize($this->getUser(), 'json', ['groups' => 'user:read']));
  37.     }
  39.     /**
  40.      * @Route("/api/impersonate", name="users_impersonate", methods={"POST"})
  41.      */
  42.     public function impersonate(Request $requestJWTTokenManagerInterface $JWTManagerEntityManagerInterface $entityManager): JsonResponse
  43.     {
  44.         $data json_decode($request->getContent(), true);
  45.         if (!isset($data['secretKey']) || $data['secretKey'] != $_ENV['APP_SECRET']) {
  46.             throw new AccessDeniedHttpException();
  47.         }
  48.         $data['origin'] = $this->getUser()->getUser()->getUserId();
  49.         $userId = (int)$data['userId'] ?? 0;
  50.         unset($data['userId'], $data['secretKey']);
  51.         $user LoginHelper::fetchUser($entityManager'user_id'$userId);
  52.         if ($user) {
  53.             $impToken $JWTManager->createFromPayload($user$data);
  54.             return new JsonResponse([
  55.                 'impToken' => $impToken,
  56.             ]);
  57.         }
  58.         throw new NotFoundHttpException('User not found');
  59.     }
  60. }