src/Controller/SecurityController.php line 25

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\User;
  6. use App\Services\CurlHttpClient;
  7. use App\Services\SeoManager;
  8. use Exception;
  9. use LogicException;
  10. use stdClass;
  11. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  12. use Symfony\Component\EventDispatcher\EventDispatcher;
  13. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  17. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  18. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  19. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  21. const EXTERNAL_LOGIN_ERROR 'external_login_error';
  23. class SecurityController extends AbstractController
  24. {
  25.     public function login(Request $requestSeoManager $seoManagerAuthenticationUtils $authenticationUtils): Response
  26.     {
  27.         $seoManager
  28.             ->setTitleAndDescription('security.login.seo.title''security.login.seo.description')
  29.             ->useLogo();
  31.         // get the login error if there is one
  32.         $error $authenticationUtils->getLastAuthenticationError();
  34.         // last username entered by the user
  35.         $lastUsername $authenticationUtils->getLastUsername();
  37.         return $this->render('Security/login.html.twig', [
  38.             'last_username' => $lastUsername,
  39.             'error' => $error,
  40.             EXTERNAL_LOGIN_ERROR => $request->query->get(EXTERNAL_LOGIN_ERROR),
  41.         ]);
  42.     }
  44.     public function logout(): void
  45.     {
  46.         throw new LogicException('This method can be blank - it will be intercepted by the logout key on your firewall.');
  47.     }
  49.     /**
  50.      * OAuth2 login with Facebook or Google
  51.      * Redirect to home if it succeeds
  52.      * Redirect to registration page if ti succeeds but user doesn't exist
  53.      * Redirect to login in case of fail
  54.      *
  55.      * @param Request $request
  56.      * @param CurlHttpClient $httpClient
  57.      * @param EventDispatcherInterface $eventDispatcher
  58.      * @param TokenStorageInterface $tokenStorage
  59.      * @return Response
  60.      */
  61.     public function externalLogin(
  62.         Request                  $request,
  63.         CurlHttpClient           $httpClient,
  64.         EventDispatcherInterface $eventDispatcher,
  65.         TokenStorageInterface    $tokenStorage
  66.     ): Response
  67.     {
  68.         $googleToken $request->query->get('id_token');
  69.         $facebookAccessToken $request->query->get('access_token');
  70.         $data $googleToken ?
  71.             $this->getGoogleData($googleToken$httpClient) :
  72.             $this->getFacebookData($facebookAccessToken$httpClient);
  74.         if ($data !== null && isset($data->email)) {
  75.             /** @var User $user */
  76.             $user $this->getDoctrine()
  77.                 ->getRepository(User::class)
  78.                 ->findOneBy(['email' => $data->email]);
  79.             if ($user) {
  80.                 $token = new UsernamePasswordToken($user$user->getPassword(), "public"$user->getRoles());
  81.                 $tokenStorage->setToken($token);
  82.                 $event = new InteractiveLoginEvent($request$token);
  83.                 /** @var EventDispatcher $eventDispatcher */
  84.                 $eventDispatcher->dispatch($event"security.interactive_login");
  85.                 return $this->redirectToRoute('whiplay_home');
  86.             }
  88.             $registrationData = ['email' => $data->email'external' => 'true'];
  89.             $firstNameKey 'first_name';
  90.             if (property_exists($data$firstNameKey)) {
  91.                 $registrationData[$firstNameKey] = $data->first_name;
  92.             }
  93.             if (property_exists($data'given_name')) {
  94.                 $registrationData[$firstNameKey] = $data->given_name;
  95.             }
  96.             $lastNameKey 'last_name';
  97.             if (property_exists($data$lastNameKey)) {
  98.                 $registrationData[$lastNameKey] = $data->last_name;
  99.             }
  100.             if (property_exists($data'family_name')) {
  101.                 $registrationData[$lastNameKey] = $data->family_name;
  102.             }
  103.             if (property_exists($data'name')) {
  104.                 $registrationData['user_name'] = $data->name;
  105.             }
  106.             return $this->redirectToRoute('app_register'$registrationData);
  107.         }
  109.         return $this->redirectToRoute('app_login', [EXTERNAL_LOGIN_ERROR => true]);
  110.     }
  112.     /**
  113.      * Fetch Google API with OAuth2 token to get user data
  114.      * returns null if it failed
  115.      *
  116.      * @param $token
  117.      * @param $httpClient
  118.      * @return mixed|null
  119.      */
  120.     private function getGoogleData($token$httpClient): ?stdClass
  121.     {
  122.         $data null;
  123.         try {
  124.             $url 'https://oauth2.googleapis.com/tokeninfo?id_token=' $token;
  125.             $response $httpClient->get($url);
  126.             $response json_decode($response);
  127.             if ($response instanceof stdClass && $response->email) {
  128.                 $data $response;
  129.             }
  130.         } catch (Exception $exception) {
  131.             $data null;
  132.         }
  133.         return $data;
  134.     }
  136.     /**
  137.      * Fetch Facebook API with OAuth2 token to get user data
  138.      * returns null if it failed
  139.      *
  140.      * @param $token
  141.      * @param $httpClient
  142.      * @return stdClass|null
  143.      */
  144.     private function getFacebookData($token$httpClient): ?stdClass
  145.     {
  146.         $data null;
  148.         try {
  149.             $clientId $this->getParameter('facebook_client_id');
  150.             $clientSecret $this->getParameter('facebook_client_secret');
  151.             $url 'https://graph.facebook.com/oauth/access_token?client_id=' $clientId '&client_secret=' $clientSecret '&grant_type=client_credentials';
  152.             $response $httpClient->get($url);
  153.             $response json_decode($response);
  155.             $appToken $response->access_token;
  156.             $url 'https://graph.facebook.com/debug_token?input_token=' $appToken '&access_token=' $token;
  157.             $response $httpClient->get($url);
  158.             $response json_decode($response);
  160.             if (isset($response->data) && $response->data->is_valid) {
  161.                 $url 'https://graph.facebook.com/me?fields=email,birthday,first_name,last_name&access_token=' $token;
  162.                 $response $httpClient->get($url);
  163.                 $response json_decode($response);
  164.                 if (isset($response->email)) {
  165.                     $data = new stdClass();
  166.                     $data->email $response->email;
  167.                     $data->pseudo $response->name ?? '';
  168.                     $data->firstName $response->given_name ?? '';
  169.                     $data->familyName $response->family_name ?? '';
  170.                 }
  171.             }
  172.         } catch (Exception $exception) {
  173.             $data null;
  174.         }
  176.         return $data;
  177.     }
  178. }