src/Platform/SecurityBundle/Controller/System/InstancesController.php line 40

Open in your IDE?
  1. <?php
  3. namespace Platform\SecurityBundle\Controller\System;
  5. use Cms\CoreBundle\Model\Scenes\DashboardScenes\DocumentScene;
  6. use Cms\CoreBundle\Util\Controller;
  7. use Cms\CoreBundle\Util\DateTimeUtils;
  8. use Platform\SecurityBundle\Entity\Identity\Account;
  9. use Platform\SecurityBundle\Form\Type\SignInType;
  10. use Symfony\Component\Routing\Annotation\Route;
  11. use Symfony\Component\HttpFoundation\Cookie;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\Routing\RouterInterface;
  17. /**
  18.  * Class LoginController
  19.  * @package Platform\SecurityBundle\Controller\System
  20.  */
  21. final class InstancesController extends Controller
  22. {
  23.     const ROUTES__PROMPT 'campussuite.platform.security.system.instances.prompt';
  24.     const ROUTES__PRIVACY_POLICY 'campussuite.platform.security.system.instances.privacy_policy';
  25.     const ROUTES__TERMS_OF_SERVICE 'campussuite.platform.security.system.instances.terms_of_service';
  27.     const COOKIE 'campussuite_auto_login_email';
  28.     const CODE '1234';
  30.     /**
  31.      * @param Request $request
  32.      * @return Response|DocumentScene
  33.      * @throws \Exception
  34.      *
  35.      * @Route(
  36.      *     "",
  37.      *     name = InstancesController::ROUTES__PROMPT
  38.      * )
  39.      */
  40.     public function promptAction(Request $request)
  41.     {
  42.         $instances = [];
  44.         // url generation helpers
  45.         $router $this->getRouter();
  46.         $context $router->getContext();
  47.         $host $context->getHost();
  49.         // check if we are bypassing the email check screen
  50.         // check for email cookie first
  51.         // if not present, try to pull from query string
  52.         // TODO: do we need the cookie stuff?
  53.         $email $request->cookies->get(self::COOKIE);
  54.         if ( ! empty($email)) {
  55.             $code self::CODE;
  56.         } else {
  57.             $email $request->query->get('email');
  58.             $code $request->query->get('code');
  59.         }
  62.         // determine if we need to generate a form or not
  63.         if ( ! empty($email) && $code === self::CODE) {
  64.             $form null;
  65.         } else {
  66.             $form $this->createForm(
  67.                 SignInType::class,
  68.                 array(
  69.                     'email' => $email,
  70.                 ),
  71.                 []
  72.             );
  73.         }
  75.         // process to get the email
  76.         if ( ! empty($form) && $this->handleForm($form)) {
  77.             $email $form->get('email')->getData();
  78.         }
  80.         // if we have an email, show the accounts
  81.         // do only if no form of the form is ok
  82.         if ((empty($form) || ($form->isSubmitted() && $form->isValid())) && ! empty($email)) {
  84.             // encrypt the email for obfuscation
  85.             $encryptedEmail openssl_encrypt(
  86.                 $email,
  87.                 'aes128',
  88.                 $this->getParameter('kernel.secret')
  89.             );
  91.             // get the accounts that match us
  92.             /** @var Account[] $accounts */
  93.             $accounts $this->getEntityManager()->getRepository(Account::class)
  94.                 ->createQueryBuilder('accounts')
  95.                 ->andWhere('accounts.email = :email')
  96.                 ->setParameter('email'$email)
  97.                 ->leftJoin('accounts.tenant''tenants')
  98.                 ->addSelect('tenants')
  99.                 ->orderBy('tenants.name''ASC')
  100.                 ->getQuery()
  101.                 ->getResult();
  103.             // branch on the amount of results
  104.             switch (true) {
  106.                 // none are found
  107.                 case count($accounts) === 0:
  108.                     break;
  110.                 // more than one, need to select which one to use
  111.                 case count($accounts) > 1:
  112.                     foreach ($accounts as $account) {
  113.                         $context->setHost(sprintf(
  114.                             '%s.%s',
  115.                             $account->getTenant()->getSlug(),
  116.                             $this->getParameter('dashboard.hostname')
  117.                         ));
  118.                         $instances[] = array(
  119.                             'name' => $account->getTenant()->getName(),
  120.                             'url' => $this->generateUrl(
  121.                                 'platform.security.login.default.select',
  122.                                 array(
  123.                                     'autofill' => $encryptedEmail,
  124.                                 ),
  125.                                 RouterInterface::ABSOLUTE_URL
  126.                             ),
  127.                         );
  128.                     }
  129.                     break;
  131.                 // only one, go ahead and do redirect
  132.                 case count($accounts) === 1:
  133.                     $context->setHost(sprintf(
  134.                         '%s.%s',
  135.                         $accounts[0]->getTenant()->getSlug(),
  136.                         $this->getParameter('dashboard.hostname')
  137.                     ));
  138.                     $response = new RedirectResponse($this->generateUrl(
  139.                         'platform.security.login.default.select',
  140.                         array(
  141.                             'autofill' => $encryptedEmail,
  142.                         ),
  143.                         RouterInterface::ABSOLUTE_URL
  144.                     ));
  145.                     $response->headers->setCookie(new Cookie(
  146.                         self::COOKIE,
  147.                         $email,
  148.                         DateTimeUtils::afterNow('P1Y')
  149.                     ));
  150.                     return $response;
  151.             }
  153.         }
  155.         // be sure to return url context to original state
  156.         $context->setHost($host);
  158.         return $this->view(array(
  159.             'form' => ( ! empty($form)) ? $form->createView() : null,
  160.             'instances' => $instances,
  161.         ));
  162.     }
  164.     /**
  165.      * @return DocumentScene
  166.      *
  167.      * @Route(
  168.      *     "/privacy-policy",
  169.      *     name = InstancesController::ROUTES__PRIVACY_POLICY
  170.      * )
  171.      */
  172.     public function privacyAction()
  173.     {
  174.         return $this->view();
  175.     }
  177.     /**
  178.      * @return DocumentScene
  179.      *
  180.      * @Route(
  181.      *     "/terms-of-service",
  182.      *     name = InstancesController::ROUTES__TERMS_OF_SERVICE
  183.      * )
  184.      */
  185.     public function termsAction()
  186.     {
  187.         return $this->view();
  188.     }
  189. }