src/wbx/UserBundle/Controller/SecurityController.php line 20

Open in your IDE?
  1. <?php
  3. namespace wbx\UserBundle\Controller;
  5. use Symfony\Component\HttpFoundation\Request;
  6. use Symfony\Component\HttpFoundation\Response;
  7. use Symfony\Component\Routing\Annotation\Route;
  8. use Symfony\Component\Security\Core\Exception\BadCredentialsException;
  9. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  10. use wbx\AppBundle\Entity\AdminConfiguration;
  11. use wbx\AppBundle\Entity\AdminConfigurationSecurite;
  12. use wbx\AppBundle\Entity\Repository\AdminConfigurationRepository;
  13. use wbx\AppBundle\Manager\AbstractUserManager;
  14. use wbx\AppBundle\Manager\AdminConfigurationManager;
  15. use wbx\AppBundle\Service\LogService;
  17. class SecurityController extends BaseController
  18. {
  19.     #[Route(path'/login'name'login')]
  20.     public function login(
  21.         Request $request,
  22.         AuthenticationUtils $authenticationUtils,
  23.         AdminConfigurationRepository $adminConfigurationRepository,
  24.         LogService $logService,
  25.         AbstractUserManager $abstractUserManager,
  26.         AdminConfigurationManager $adminConfiguration,
  27.     ): Response {
  28.         /** @var AdminConfiguration[] $varsConnexion */
  29.         $varsConnexion $adminConfigurationRepository->findBy(['key' => AdminConfiguration::KEYS['connexion']]);
  30.         $vars = [];
  31.         foreach ($varsConnexion as $value) {
  32.             $vars[$value->getKey()] = $value->getValue();
  33.         }
  35.         // get the login error if there is one
  36.         $error $authenticationUtils->getLastAuthenticationError();
  37.         // last username entered by the user
  38.         $lastUsername $authenticationUtils->getLastUsername();
  40.         $session $request->getSession();
  41.         if ($error instanceof BadCredentialsException) {
  42.             $limiter $session->get('auth_limiter', []);
  44.             if (!empty($limiter) && ($limiter['username'] == $lastUsername)) {
  45.                 ++$limiter['max_attempts'];
  46.             } else {
  47.                 $limiter = [
  48.                     'username' => $lastUsername,
  49.                     'max_attempts' => 1,
  50.                 ];
  51.             }
  53.             $session->set('auth_limiter'$limiter);
  54.             $maxAttempts $adminConfiguration->getValueFromKey('nombre_tentative');
  55.             $maxAttempts = !empty($maxAttempts) ? (int) $maxAttempts AdminConfigurationSecurite::DEFAULT_MAX_AUTH_ATTEMPS;
  56.             if ($limiter['max_attempts'] >= $maxAttempts) {
  57.                 $abstractUserManager->lockUser($lastUsername);
  59.                 $session->remove('auth_limiter');
  60.             }
  61.         }
  63.         // vérification si le user a les accès pour se connecter ou non : UserLoginListener
  64.         $sessionConnexion $this->get('session')->get('connexion');
  65.         $errorConnexion false;
  66.         if ($sessionConnexion !== null && $sessionConnexion == false) {
  67.             $errorConnexion true;
  68.         }
  70.         // ajout du log si $error
  71.         if ($error) {
  72.             $datas = [
  73.                 'email' => $lastUsername,
  74.                 'ip' => $this->getIP(),
  75.                 'connexion_type' => $_SERVER['SERVER_PROTOCOL'],
  76.                 'login' => $sessionConnexion,
  77.                 'refusal_type' => $error->getMessage(),
  78.             ];
  79.             $logService->addLog($datas);
  80.         } else {
  81.             $session->remove('auth_limiter');
  82.         }
  84.         return $this->render(
  85.             '@wbxUser/Security/login.html.twig',
  86.             [
  87.                 'last_username' => $lastUsername,
  88.                 'error' => $error,
  89.                 'modal' => $this->isModal($request),
  90.                 'vars' => $vars,
  91.                 'errorConnexion' => $errorConnexion,
  92.             ]
  93.         );
  94.     }
  96.     /**
  97.      *récupération de l'ip
  98.      *
  99.      * @return array|false|mixed|string
  100.      */
  101.     private function getIP()
  102.     {
  103.         if (isset($_SERVER)) {
  104.             if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {
  105.                 $realip $_SERVER['HTTP_X_FORWARDED_FOR'];
  106.             } elseif (isset($_SERVER['HTTP_CLIENT_IP'])) {
  107.                 $realip $_SERVER['HTTP_CLIENT_IP'];
  108.             } else {
  109.                 $realip $_SERVER['REMOTE_ADDR'];
  110.             }
  111.         } else {
  112.             if (getenv('HTTP_X_FORWARDED_FOR')) {
  113.                 $realip getenv('HTTP_X_FORWARDED_FOR');
  114.             } elseif (getenv('HTTP_CLIENT_IP')) {
  115.                 $realip getenv('HTTP_CLIENT_IP');
  116.             } else {
  117.                 $realip getenv('REMOTE_ADDR');
  118.             }
  119.         }
  121.         return $realip;
  122.     }
  123. }