/
RenderResetPasswordPageAction.php
94 lines (80 loc) · 3.23 KB
/
RenderResetPasswordPageAction.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
<?php
/*
* This file is part of the Sylius package.
*
* (c) Sylius Sp. z o.o.
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
declare(strict_types=1);
namespace Sylius\Bundle\AdminBundle\Action\Account;
use Sylius\Bundle\AdminBundle\Form\Type\ResetPasswordType;
use Sylius\Bundle\CoreBundle\Provider\FlashBagProvider;
use Sylius\Component\Core\Model\AdminUserInterface;
use Sylius\Component\User\Repository\UserRepositoryInterface;
use Symfony\Component\Form\FormFactoryInterface;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\RequestStack;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\HttpFoundation\Session\Flash\FlashBagInterface;
use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
use Symfony\Component\Routing\RouterInterface;
use Twig\Environment;
final class RenderResetPasswordPageAction
{
public function __construct(
private UserRepositoryInterface $userRepository,
private FormFactoryInterface $formFactory,
private FlashBagInterface|RequestStack $requestStackOrFlashBag,
private RouterInterface $router,
private Environment $twig,
private string $tokenTtl,
) {
if ($this->requestStackOrFlashBag instanceof FlashBagInterface) {
trigger_deprecation(
'sylius/admin-bundle',
'1.12',
'Passing an instance of %s as constructor argument for %s is deprecated and will be removed in Sylius 2.0. Pass an instance of %s instead.',
FlashBagInterface::class,
self::class,
RequestStack::class,
);
}
}
public function __invoke(Request $request, string $token): Response
{
/** @var AdminUserInterface|null $admin */
$admin = $this->userRepository->findOneBy(['passwordResetToken' => $token]);
if (null === $admin) {
throw new NotFoundHttpException('Token not found');
}
$lifetime = new \DateInterval($this->tokenTtl);
if (!$admin->isPasswordRequestNonExpired($lifetime)) {
return $this->handleExpiredPasswordRequest($request);
}
$form = $this->formFactory->create(ResetPasswordType::class);
return new Response(
$this->twig->render('@SyliusAdmin/Security/resetPassword.html.twig', [
'form' => $form->createView(),
]),
);
}
private function handleExpiredPasswordRequest(Request $request): RedirectResponse
{
FlashBagProvider
::getFlashBag($this->requestStackOrFlashBag)
->add('error', 'sylius.admin.password_reset.token_expired')
;
$attributes = $request->attributes->get('_sylius', []);
$redirect = $attributes['redirect'] ?? 'sylius_admin_login';
if (is_array($redirect)) {
return new RedirectResponse($this->router->generate(
$redirect['route'] ?? 'sylius_admin_login',
$redirect['params'] ?? [],
));
}
return new RedirectResponse($this->router->generate($redirect));
}
}