src/Controller/SiteController.php line 20

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  6. use Symfony\Component\HttpFoundation\Request;
  7. use Symfony\Component\HttpFoundation\Response;
  8. use Symfony\Component\Routing\Annotation\Route;
  10. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  11. use Symfony\Contracts\HttpClient\HttpClientInterface;
  13. class SiteController extends AbstractController
  14. {
  16.     /**
  17.      * @Route("/", name="app_home", defaults={"_locale":"%locale%"}, methods={"GET"})
  18.      * @Route("/{_locale}/", requirements={"_locale":"%app_locales%"}, methods={"GET"})
  19.      */
  20.     public function index(): Response
  21.     {
  22.         // return $this->render('home/index.html.twig', [
  23.         //     'controller_name' => 'HomeController',
  24.         // ]);
  25.         return $this->redirectToRoute('app_login');
  26.     }
  28.     /**
  29.      * @Route("/login", name="app_login", defaults={"_locale":"%locale%"}, methods={"GET", "POST"})
  30.      * @Route("/{_locale}/login", requirements={"_locale":"%app_locales%"}, methods={"GET", "POST"})
  31.      */
  32.     public function loginSessionInterface $sessionHttpClientInterface $httpClientRequest $request): Response
  33.     {
  35.         $form_error "";
  36.         $last_name "";
  38.         $user $session->get('user-data');
  40.         if(!$user){
  41.             if ( ($request->request->get('username') !== null) || ($request->request->get('password') != "") ) {
  42.                 if ( ($request->request->get('username') === null) || ($request->request->get('username') == "")) {
  43.                     $form_error "Usuario obligatorio";
  44.                 } else {
  45.                     $last_name $request->request->get('username');
  46.                     if ( ($request->request->get('password') === null) || ($request->request->get('password') == "")) {
  47.                         $form_error "ContraseƱa obligatoria";
  48.                     } else {
  49.                         $response $httpClient->request(
  50.                             'POST',
  51.                             $this->getParameter('API_base_url') . '/oauth/v2/token',
  52.                             [
  53.                                 'body' => [
  54.                                     "client_id" => $this->getParameter('API_client_id'),
  55.                                     "client_secret" => $this->getParameter('API_client_secret'),
  56.                                     "info" => array("uuid" => $this->getParameter('API_token')),
  57.                                     "grant_type" => "password",
  58.                                     "username" => $request->request->get('username'),
  59.                                     "password" => $request->request->get('password'),
  60.                                     "lang" => "es"
  61.                                 ]
  62.                             ]
  63.                         );
  64.                         // dd($response->getContent(false));
  65.                         $decodedPayload = (array) json_decode($response->getContent(false));
  66.                         
  67.                         if ( array_key_exists("error"$decodedPayload)  || !isset($decodedPayload['access_token'])) {
  68.                             $session->set('user-session'null);
  69.                             $session->set('user-data'null);
  70.                             $form_error "Usuario incorrecto";
  71.                         } else {
  72.                             $session->set('user-session'$decodedPayload);
  73.                             
  74.                             $response $httpClient->request(
  75.                                 'GET',
  76.                                 $this->getParameter('API_base_url') . '/api/user/token/' $decodedPayload['access_token'],
  77.                                 [
  78.                                     'headers' => [
  79.                                         'Authorization' => 'Bearer ' $decodedPayload['access_token'],
  80.                                     ]
  81.                                 ]
  82.                             );
  83.                             $decodedPayload = (array) json_decode($response->getContent(false));
  84.                             if ( array_key_exists("error"$decodedPayload) ) {
  85.                                 $session->set('user-session'null);
  86.                                 $session->set('user-data'null);
  87.                                 $form_error "Usuario desactivado";
  88.                             }else{
  89.                                 $decodedPayload $response->toArray(); 
  90.                                 
  91.                                 
  92.                                 if( in_array("ROLE_ADMIN"$decodedPayload['roleNames']) || in_array("ROLE_GESTOR"$decodedPayload['roleNames']) ||  in_array("ROLE_NEWS"$decodedPayload['roleNames'])){
  93.                                     $session->set('user-data'$decodedPayload);
  94.                                     if(in_array("ROLE_ADMIN",$decodedPayload["roleNames"]) || in_array("ROLE_NEWS",$decodedPayload["roleNames"]) || in_array("ROLE_GESTOR",$decodedPayload["roleNames"])){
  95.                                         if(!in_array("ROLE_GESTOR",$decodedPayload["roleNames"])){
  96.                                             return $this->redirectToRoute('news');
  97.                                         }else{
  98.                                             return $this->redirectToRoute('matches');
  99.                                         }
  100.                                     }else{
  101.                                         return $this->redirectToRoute('app_logout');
  102.                                     }
  103.                                 }else{
  104.                                     $session->set('user-session'null);
  105.                                     $session->set('user-data'null);
  106.                                     $form_error "Usuario no autorizado";
  107.                                 }    
  108.                             }                         
  109.                         }
  110.                     }
  111.                 }    
  112.             }
  113.             
  114.             //dd($form_error);
  116.             return $this->render('security/login.html.twig', [
  117.                 'controller_name' => 'SiteController',
  118.                 'error' => $form_error,
  119.                 'last_username' => $last_name,
  120.                 'url_api' => $this->getParameter('API_base_url') . '/api/',
  121.             ]);
  122.         }else{
  123.             if(in_array("ROLE_ADMIN",$user["roleNames"]) || in_array("ROLE_NEWS",$user["roleNames"]) || in_array("ROLE_GESTOR",$user["roleNames"])){
  124.                 if(!in_array("ROLE_GESTOR",$user["roleNames"])){
  125.                     return $this->redirectToRoute('news');
  126.                 }else{
  127.                     return $this->redirectToRoute('matches');
  128.                 }
  129.             }else{
  130.                 return $this->redirectToRoute('app_logout');
  131.             }
  132.         }
  133.     }
  135.     /**
  136.      * @Route("/logout", name="app_logout", defaults={"_locale":"%locale%"}, methods={"GET", "POST"})
  137.      * @Route("/{_locale}/logout", requirements={"_locale":"%app_locales%"}, methods={"GET", "POST"})
  138.      */
  139.     public function logoutSessionInterface $sessionRequest $request): Response
  140.     {
  141.         $session->set('user-session'null);
  142.         $session->set('user-data'null);
  144.         return $this->redirectToRoute('app_login');
  145.     }
  146. }