vendor/ssh/myjwtbundle/Controller/SecurityController.php line 30

Open in your IDE?
  1. <?php
  3. namespace SSH\MyJwtBundle\Controller;
  5. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController as Controller;
  6. use Symfony\Component\Routing\Annotation\Route;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Nelmio\ApiDocBundle\Annotation\Operation;
  9. use Nelmio\ApiDocBundle\Annotation\Model;
  10. use OpenApi\Annotations as OA;
  11. use SSH\MyJwtBundle\Entity\TokenApiUser;
  12. use SSH\MyJwtBundle\Entity\ApiUser;
  13. use Symfony\Component\HttpFoundation\JsonResponse;
  14. use SSH\MyJwtBundle\Manager\ExceptionManager;
  15. use SSH\MyJwtBundle\Security\TokenAuthenticator;
  16. use SSH\MyJwtBundle\Annotations\Mapping;
  18. class SecurityController extends Controller
  19. {
  21.     /**
  22.      *
  23.      * @Route("/", name="home", methods={"GET"})
  24.      * @Route("/api", name="api_home", methods={"GET"})
  25.      * @Route("/api/doc/", name="api_doc_home", methods={"GET"})
  26.      *
  27.      *
  28.      * @param Request $request
  29.      */
  30.     public function homeAction(Request $request)
  31.     {
  32.         return $this->redirectToRoute('nelmio_api_doc.swagger_ui', ['area' => 'default']);
  33.     }
  35.     /**
  36.      * Page authenticate
  37.      *
  38.      * @Route("/tokenauthenticate", name="jwt_token_authenticate", methods={"POST"})
  39.      * @Operation(
  40.      *     tags={"Authentication"},
  41.      *     summary="Autentification to WS",
  42.      *     @OA\Parameter(
  43.      *         name="token",
  44.      *         in="query",
  45.      *         @OA\Schema(type="string"),
  46.      *         description="ws token",
  47.      *         required=true
  48.      *     ),
  49.      *     @OA\Response(
  50.      *         response="200",
  51.      *         description="Returned when successful"
  52.      *     ),
  53.      *     @OA\Response(
  54.      *         response="403",
  55.      *         description="Returned when the ws-user is not authorized"
  56.      *     ),
  57.      *     @OA\Response(
  58.      *         response="404",
  59.      *         description="Returned when the user is not found"
  60.      *     )
  61.      * )
  62.      *
  63.      */
  64.     public function tokenAuthenticate(Request $requestExceptionManager $exceptionManagerTokenAuthenticator $tokenManager)
  65.     {
  66.         $user $this->getDoctrine()
  67.                 ->getRepository(TokenApiUser::class)
  68.                 ->checkUserByToken($request->get('token'));
  70.         if ($user) {
  71.             return $tokenManager->createToken($request$user);
  72.         }
  74.         $exceptionManager->throwOtherException('FORBIDDEN_ACCESS', [], 401);
  75.     }
  77.     /**
  78.      * Page authenticate
  79.      *
  80.      * @Route("/authenticate", name="jwt_loginpassword_authenticate", methods={"POST"})
  81.      * @Mapping(object="SSH\MyJwtBundle\Request\Authentication", as="Authentication")
  82.      * @Operation(
  83.      *     tags={"Authentication"},
  84.      *     summary="Autentification to WS",
  85.      *     @OA\Parameter(
  86.      *         name="token",
  87.      *         in="query",
  88.      *         @OA\Schema(type="string"),
  89.      *         description="ws token",
  90.      *         required=true
  91.      *     ),
  92.      *     @OA\Response(
  93.      *         response="200",
  94.      *         description="Returned when successful"
  95.      *     ),
  96.      *     @OA\Response(
  97.      *         response="403",
  98.      *         description="Returned when the ws-user is not authorized"
  99.      *     ),
  100.      *     @OA\Response(
  101.      *         response="404",
  102.      *         description="Returned when the user is not found"
  103.      *     )
  104.      * )
  105.      *
  106.      */
  107.     public function authenticateAction(Request $requestExceptionManager $exceptionManagerTokenAuthenticator $tokenManager)
  108.     {
  109.         $auth = (array) $request->get('Authentication');
  111.         $user $this->getDoctrine()
  112.                 ->getRepository(ApiUser::class)
  113.                 ->findOneBy(['username' => strtolower($auth['username']),
  114. //            'roles' => 'ROLE_' . $auth['intention'],
  115.                     'password' => $auth['password']
  116.         ]);
  118.         if (!$user || ($user && !in_array('ROLE_' $auth['intention'], $user->getRoles()))) {
  119.             $exceptionManager->throwAccessDeniedException('FORBIDDEN_ACCESS');
  120.         }
  122.         $claims = [
  123.             'code' => $user->getCode(),
  124.             'roles' => $user->getRoles()
  125.         ];
  127.         $data $tokenManager->createToken($request$claims$user->getExpireIn());
  128.         $data['user'] = ['code' => $user->getCode(), 'roles' => $user->getRoles()];
  129.         return $data;
  130.     }
  131. }