src/Controller/UserController.php line 24

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Internal\ApiUser;
  6. use App\Entity\Internal\TwoFaConfig;
  7. use App\Entity\Monolith\User;
  8. use App\Helper\LoginHelper;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTTokenManagerInterface;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\HttpFoundation\JsonResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException;
  15. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  16. use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
  17. use Symfony\Component\HttpKernel\Exception\UnauthorizedHttpException;
  18. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  19. use Symfony\Component\Routing\Annotation\Route;
  20. use Symfony\Component\Serializer\SerializerInterface;
  22. class UserController extends AbstractController
  23. {
  24.     /**
  25.      * @Route("/api/me", name="users_me")
  26.      */
  27.     public function me(SerializerInterface $serializerEntityManagerInterface $internalEntityManager): JsonResponse
  28.     {
  29.         if (!$this->getUser() || $this->getUser() instanceof ApiUser) {
  30.             throw new UnauthorizedHttpException('Bearer');
  31.         }
  33.         $twoFaConfig $internalEntityManager->getRepository(TwoFaConfig::class)->findOneBy([
  34.             'userId' => $this->getUser()->getUser()->getUserId(),
  35.         ]);
  37.         $this->getUser()->setTwoFaStatus($twoFaConfig?->getStatus() ?? TwoFaConfig::STATUS_DISABLED);
  39.         return new JsonResponse($serializer->normalize($this->getUser(), 'json', ['groups' => 'user:read']));
  40.     }
  42.     /**
  43.      * @Route("/api/impersonate", name="users_impersonate", methods={"POST"})
  44.      */
  45.     public function impersonate(Request $requestJWTTokenManagerInterface $JWTManagerEntityManagerInterface $entityManager): JsonResponse
  46.     {
  47.         $data json_decode($request->getContent(), true);
  48.         if (!isset($data['secretKey']) || $data['secretKey'] != $_ENV['APP_SECRET']) {
  49.             throw new AccessDeniedHttpException();
  50.         }
  51.         $data['origin'] = $this->getUser()->getUser()->getUserId();
  52.         $userId = (int)$data['userId'] ?? 0;
  53.         unset($data['userId'], $data['secretKey']);
  54.         $user LoginHelper::fetchUser($entityManager'user_id'$userId);
  55.         if ($user) {
  56.             $impToken $JWTManager->createFromPayload($user$data);
  57.             return new JsonResponse([
  58.                 'impToken' => $impToken,
  59.             ]);
  60.         }
  61.         throw new NotFoundHttpException('User not found');
  62.     }
  64.     #[Route('/api/confirm-password'name'users_confirm_password'methods: ['POST'])]
  65.     public function confirmPassword(Request $requestEntityManagerInterface $entityManagerUserPasswordHasherInterface $passwordHasher): JsonResponse
  66.     {
  67.         $data json_decode($request->getContent(), true);
  68.         if (!isset($data['password'])) {
  69.             throw new BadRequestHttpException('Password is required.');
  70.         }
  72.         $user $entityManager->getRepository(User::class)->find($this->getUser()?->getUser()->getUserId());
  73.         if ($user && $passwordHasher->isPasswordValid($user$data['password'])) {
  74.             return new JsonResponse();
  75.         }
  76.         throw new AccessDeniedHttpException('Invalid password.');
  77.     }
  78. }