src/Controller/LoginController.php line 36

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\User;
  6. use DateTime;
  7. use Exception;
  8. use Doctrine\ORM\EntityManagerInterface;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\Security\Core\Security;
  11. use Symfony\Component\HttpFoundation\Response;
  12. use Symfony\Component\Routing\Annotation\Route;
  13. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  14. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  15. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  17. class LoginController extends AbstractController
  18. {
  19.     
  20.     /**
  21.      * @Route("/login", name="login")
  22.      */
  23.     public function index(EntityManagerInterface $entityManager,AuthenticationUtils $authenticationUtils,Request $request): Response
  24.     {
  25.         $error null;
  26.         $username $request->request->get('_username');
  27.         $password $request->request->get('_password');
  28.         //Récupération des credentials
  29.         $uid "uid=".$username;
  31.         $credentials = [
  32.             'username' => $username,
  33.             'password' => $password,
  34.             'csrf_token' => $request->request->get('_csrf_token'),
  35.         ];
  36.         $request->getSession()->set(
  37.             Security::LAST_USERNAME,
  38.             $credentials['username']
  39.         );
  40.         //Infos connexion ldap
  41.         $ldap_host 'ldap-authentification.inra.fr';
  42.         $base_dn 'dc=inra,dc=fr';
  44.         //Connexion au ldap
  45.         $connect ldap_connect($ldap_host); // Vérification syntaxique plausibilité de connexion
  46.                     
  47.         //Options du ldap
  48.         ldap_set_option($connectLDAP_OPT_PROTOCOL_VERSION3);
  49.         ldap_set_option($connectLDAP_OPT_REFERRALS0);
  50.             
  51.         //Recherche de l'utilisateur
  52.         try{
  53.             $read ldap_search($connect,$base_dn$uid);
  54.             //Recherche des infos concernant l'utilisateur
  55.             $info ldap_get_entries($connect$read);
  56.             if (count($info)>1)
  57.                 {
  58.                     $bind false;
  59.                     //Try catch pour couvrir les exceptions
  60.                     try {
  61.                         //Bind avec le password pour vérifier l'autorisation
  62.                         $bind ldap_bind($connect,$info[0]["dn"],$password);
  63.                     } catch (Exception $e) {
  64.                         $error "Mot de passe incorrect pour l'utilisateur '" $username "'";
  65.                     }
  66.                     
  67.                     if ($bind){
  68.                         $user $entityManager->getRepository(User::class)->findOneBy(['username' => $credentials['username']]);
  69.                         if($user == null){
  70.                             $user = new User();
  71.                             $user->setPassword("ldap");
  72.                             $user->setUsernameCanonical($username);
  73.                             $user->setUsername($username);
  74.                             $user->setNom($info[0]['sn'][0]);
  75.                             $user->setEmail($info[0]['mail'][0]);
  76.                             $user->setEnabled(1);
  77.                             $user->setEmailCanonical($info[0]['mail'][0]);
  78.                             $user->setSalt('???');
  79.                             $user->setLastLogin(new DateTime());
  80.                             $user->setRoles(["ROLE_USER"]);
  81.                             $user->setDn($info[0]['dn']);
  82.                             $user->setPrenom($info[0]['givenname'][0]);
  83.                             $user->setLogin($username);
  84.                             $user->setActif(0);
  85.                             $user->setMobileMdp("mobilepassword");
  86.                             $entityManager->persist($user);                   
  87.                             $entityManager->flush();
  88.                         }
  89.                     } 
  90.                 }else if($username != null)
  91.                 {
  92.                     $error "L'utilisateur '" $username "' n'existe pas";
  93.                 }
  94.                 if (isset($user)) {
  95.                     if($request->request->get('_remind') != null) {
  96.                         //TODO : Mettre en mémoire l'utilisateur (cookie ??? Securité ??)
  97.                         //TODO : Mettre en mémoire le ldap de l'utilisateur pour pré remplir le champ
  98.                         throw new Exception('Faire les TODO au dessus');
  99.                     }
  100.                     $token = new UsernamePasswordToken($user$user->getPassword(),"main"$user->getRoles());
  101.                     $this->get("security.token_storage")->setToken($token); 
  102.                     return $this->redirectToRoute('accueil');
  103.                 }
  104.             }catch(Exception $e){
  105.                 // $user = $entityManager->getRepository(Utilisateur::class)->findOneBy(['username' => 'mreichstadt']);
  107.                 // $token = new UsernamePasswordToken($user, $user->getPassword(),"main", $user->getRoles());
  108.                 // $this->get("security.token_storage")->setToken($token); 
  109.                 echo $e->getMessage();
  110.                 exit;
  111.                 return $this->redirectToRoute('login');
  112.             }
  114.         
  115.         
  116.         $lastUsername $authenticationUtils->getLastUsername();
  118.         return $this->render('login/index.html.twig', ['last_username' => $lastUsername'error' => $error]);
  119.     }
  121.     /**
  122.      * @Route("/logout", name="logout")
  123.      */
  124.     public function logout(){
  125.         //Force logout
  126.     }
  127. }