app/Customize/Controller/ForgotController.php line 97

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of EC-CUBE
  5.  *
  6.  * Copyright(c) EC-CUBE CO.,LTD. All Rights Reserved.
  7.  *
  8.  * http://www.ec-cube.co.jp/
  9.  *
  10.  * For the full copyright and license information, please view the LICENSE
  11.  * file that was distributed with this source code.
  12.  */
  14. namespace Customize\Controller;
  16. use Eccube\Event\EccubeEvents;
  17. use Eccube\Event\EventArgs;
  18. use Eccube\Controller\AbstractController;
  19. use Eccube\Form\Type\Front\ForgotType;
  20. use Eccube\Form\Type\Front\PasswordResetType;
  21. use Customize\Repository\CustomerRepository;
  22. use Customize\Service\MailService;
  23. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  24. use Symfony\Component\HttpFoundation\Request;
  25. use Symfony\Component\HttpKernel\Exception as HttpException;
  26. use Symfony\Component\Routing\Annotation\Route;
  27. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  28. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  29. use Symfony\Component\Validator\Constraints as Assert;
  30. use Symfony\Component\Validator\Validator\ValidatorInterface;
  32. class ForgotController extends AbstractController
  33. {
  34.     /**
  35.      * @var ValidatorInterface
  36.      */
  37.     protected $validator;
  39.     /**
  40.      * @var MailService
  41.      */
  42.     protected $mailService;
  44.     /**
  45.      * @var CustomerRepository
  46.      */
  47.     protected $customerRepository;
  49.     /**
  50.      * @var EncoderFactoryInterface
  51.      */
  52.     protected $encoderFactory;
  54.     /**
  55.      * ForgotController constructor.
  56.      *
  57.      * @param ValidatorInterface $validator
  58.      * @param MailService $mailService
  59.      * @param CustomerRepository $customerRepository
  60.      * @param EncoderFactoryInterface $encoderFactory
  61.      */
  62.     public function __construct(
  63.         ValidatorInterface $validator,
  64.         MailService $mailService,
  65.         CustomerRepository $customerRepository,
  66.         EncoderFactoryInterface $encoderFactory
  67.     ) {
  68.         $this->validator $validator;
  69.         $this->mailService $mailService;
  70.         $this->customerRepository $customerRepository;
  71.         $this->encoderFactory $encoderFactory;
  72.     }
  74.     /**
  75.      * パスワードリマインダ.
  76.      *
  77.      * @Route("/forgot", name="forgot", methods={"GET", "POST"})
  78.      * @Template("Forgot/index.twig")
  79.      */
  80.     public function index(Request $request)
  81.     {
  82.         if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  83.             throw new HttpException\NotFoundHttpException();
  84.         }
  86.         $builder $this->formFactory
  87.             ->createNamedBuilder(''ForgotType::class);
  89.         $event = new EventArgs(
  90.             [
  91.                 'builder' => $builder,
  92.             ],
  93.             $request
  94.         );
  95.         $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_INDEX_INITIALIZE);
  97.         $form $builder->getForm();
  98.         $form->handleRequest($request);
  100.         if ($form->isSubmitted() && $form->isValid()) {
  101.             $Customer $this->customerRepository
  102.                 ->getRegularCustomerByEmail($form->get('login_email')->getData());
  104.             if (!is_null($Customer)) {
  105.                 // リセットキーの発行・有効期限の設定
  106.                 $Customer
  107.                     ->setResetKey($this->customerRepository->getUniqueResetKey())
  108.                     ->setResetExpire(new \DateTime('+' $this->eccubeConfig['eccube_customer_reset_expire'] . ' min'));
  110.                 // リセットキーを更新
  111.                 $this->entityManager->persist($Customer);
  112.                 $this->entityManager->flush();
  114.                 $event = new EventArgs(
  115.                     [
  116.                         'form' => $form,
  117.                         'Customer' => $Customer,
  118.                     ],
  119.                     $request
  120.                 );
  121.                 $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_INDEX_COMPLETE);
  123.                 // 完了URLの生成
  124.                 $reset_url $this->generateUrl('forgot_reset', ['reset_key' => $Customer->getResetKey()], UrlGeneratorInterface::ABSOLUTE_URL);
  126.                 // メール送信
  127.                 $this->mailService->sendPasswordResetNotificationMail($Customer$reset_url);
  129.                 // ログ出力
  130.                 log_info('send reset password mail to:' "{$Customer->getId()} {$Customer->getEmail()} {$request->getClientIp()}");
  131.             } else {
  132.                 log_warning(
  133.                     'Un active customer try send reset password email: ',
  134.                     ['Enter email' => $form->get('login_email')->getData()]
  135.                 );
  136.             }
  138.             return $this->redirectToRoute('forgot_complete');
  139.         }
  141.         return [
  142.             'form' => $form->createView(),
  143.         ];
  144.     }
  146.     /**
  147.      * 再設定URL送信完了画面.
  148.      *
  149.      * @Route("/forgot/complete", name="forgot_complete", methods={"GET"})
  150.      * @Template("Forgot/complete.twig")
  151.      */
  152.     public function complete(Request $request)
  153.     {
  154.         if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  155.             throw new HttpException\NotFoundHttpException();
  156.         }
  158.         return [];
  159.     }
  161.     /**
  162.      * パスワード再発行実行画面.
  163.      *
  164.      * @Route("/forgot/reset/{reset_key}", name="forgot_reset", methods={"GET", "POST"})
  165.      * @Template("Forgot/reset.twig")
  166.      */
  167.     public function reset(Request $request$reset_key)
  168.     {
  169.         $errors $this->validator->validate(
  170.             $reset_key,
  171.             [
  172.                 new Assert\NotBlank(),
  173.                 new Assert\Regex(
  174.                     [
  175.                         'pattern' => '/^[a-zA-Z0-9]+$/',
  176.                     ]
  177.                 ),
  178.             ]
  179.         );
  181.         if (count($errors) > 0) {
  182.             // リセットキーに異常がある場合
  183.             throw new HttpException\NotFoundHttpException();
  184.         }
  186.         $Customer $this->customerRepository
  187.             ->getRegularCustomerByResetKey($reset_key);
  189.         if (null === $Customer) {
  190.             // リセットキーから会員データが取得できない場合
  191.             throw new HttpException\NotFoundHttpException();
  192.         }
  194.         $builder $this->formFactory
  195.             ->createNamedBuilder(''PasswordResetType::class);
  197.         $form $builder->getForm();
  198.         $form->handleRequest($request);
  199.         $error null;
  201.         if ($form->isSubmitted() && $form->isValid()) {
  202.             // リセットキー・入力メールアドレスで会員情報検索
  203.             $Customer $this->customerRepository
  204.                 ->getRegularCustomerByResetKey($reset_key$form->get('login_email')->getData());
  205.             if ($Customer) {
  206.                 // パスワードの発行・更新
  207.                 $encoder $this->encoderFactory->getEncoder($Customer);
  208.                 $pass $form->get('password')->getData();
  209.                 $Customer->setPassword($pass);
  211.                 // 発行したパスワードの暗号化
  212.                 if ($Customer->getSalt() === null) {
  213.                     $Customer->setSalt($this->encoderFactory->getEncoder($Customer)->createSalt());
  214.                 }
  215.                 $encPass $encoder->encodePassword($pass$Customer->getSalt());
  217.                 // パスワードを更新
  218.                 $Customer->setPassword($encPass);
  219.                 // リセットキーをクリア
  220.                 $Customer->setResetKey(null);
  222.                 // パスワードを更新
  223.                 $this->entityManager->persist($Customer);
  224.                 $this->entityManager->flush();
  226.                 $event = new EventArgs(
  227.                     [
  228.                         'Customer' => $Customer,
  229.                     ],
  230.                     $request
  231.                 );
  232.                 $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_FORGOT_RESET_COMPLETE);
  234.                 // 完了メッセージを設定
  235.                 $this->addFlash('password_reset_complete'trans('front.forgot.reset_complete'));
  237.                 // ログインページへリダイレクト
  238.                 return $this->redirectToRoute('mypage_login');
  239.             } else {
  240.                 // リセットキー・メールアドレスから会員データが取得できない場合
  241.                 $error trans('front.forgot.reset_not_found');
  242.             }
  243.         }
  245.         return [
  246.             'error' => $error,
  247.             'form' => $form->createView(),
  248.         ];
  249.     }
  250. }