before(function() use ($app) { $app['firewall']->requireAuthentication(); }); /** * Get a new account * * name : get_account * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/', $this->call('displayAccount')) ->bind('account'); /** * Update account route * * description : update your account informations * * method : POST * * parameters : * 'form_gender' * 'form_lastname' * 'form_firstname' * 'form_job' * 'form_lastname' * 'form_company' * 'form_function' * 'form_activity' * 'form_phone' * 'form_fax' * 'form_address' * 'form_zip_code' * 'form_geoname_id' * 'form_dest_ftp' * 'form_default_data_ftp' * 'form_prefix_ftp_folder' * 'form_notice' * 'form_bases' * 'form_mail_notifications' * 'form_request_notifications' * 'form_demand' * 'form_notifications' * 'form_active_ftp' * 'form_address_ftp' * 'form_login_ftp' * 'form_password_ftp' * 'form_pass_if_ftp' * 'form_retry_ftp' * * * return : HTML Response */ $controllers->post('/', $this->call('updateAccount')) ->bind('submit_update_account'); /** * Get reset email * * name : account_reset_email * * description : Display reset email form * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/reset-email/', $this->call('displayResetEmailForm')) ->bind('account_reset_email'); /** * Give account access * * name : account_access * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/access/', $this->call('accountAccess')) ->bind('account_access'); /** * Give authorized applications that can access user informations * * name : reset_email * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->post('/reset-email/', $this->call('resetEmail')) ->bind('reset_email'); /** * Display the form to renew a password * * name : reset_password * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/reset-password/', $this->call('resetPassword')) ->bind('reset_password'); /** * Do set a new password * * name : reset_password * * method : POST * * parameters : none * * return : HTML Response */ $controllers->post('/reset-password/', $this->call('renewPassword')) ->bind('do_reset_password'); /** * Give account open sessions * * name : account_sessions * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/security/sessions/', $this->call('accountSessionsAccess')) ->bind('account_sessions'); /** * Give authorized applications that can access user informations * * name : account_auth_apps * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/security/applications/', $this->call('accountAuthorizedApps')) ->bind('account_auth_apps'); /** * Grant access to an authorized app * * name : grant_app_access * * description : Display form to create a new account * * method : GET * * parameters : none * * return : HTML Response */ $controllers->get('/security/application/{application_id}/grant/', $this->call('grantAccess')) ->assert('application_id', '\d+') ->bind('grant_app_access'); return $controllers; } /** * Reset Password * * @param Application $app * @param Request $request * @return Response */ public function resetPassword(Application $app, Request $request) { if (null !== $passwordMsg = $request->query->get('pass-error')) { switch ($passwordMsg) { case 'pass-match': $passwordMsg = _('forms::les mots de passe ne correspondent pas'); break; case 'pass-short': $passwordMsg = _('forms::la valeur donnee est trop courte'); break; case 'pass-invalid': $passwordMsg = _('forms::la valeur donnee contient des caracteres invalides'); break; } } return $app['twig']->render('account/reset-password.html.twig', array( 'passwordMsg' => $passwordMsg )); } /** * Reset Email * * @param Application $app * @param Request $request * @return RedirectResponse */ public function resetEmail(Application $app, Request $request) { if (null !== $token = $request->request->get('token')) { try { $datas = \random::helloToken($app, $token); $user = \User_Adapter::getInstance((int) $datas['usr_id'], $app); $user->set_email($datas['datas']); \random::removeToken($app, $token); return $app->redirect('/account/reset-email/?update=ok'); } catch (\Exception $e) { return $app->redirect('/account/reset-email/?update=ko'); } } if (null === ($password = $request->request->get('form_password')) || null === ($email = $request->request->get('form_email')) || null === ($emailConfirm = $request->request->get('form_email_confirm'))) { $app->abort(400, _('Could not perform request, please contact an administrator.')); } try { $auth = new \Session_Authentication_Native($app, $app['phraseanet.user']->get_login(), $password); $auth->challenge_password(); } catch (\Exception $e) { return $app->redirect('/account/reset-email/?notice=bad-password'); } if (!\PHPMailer::ValidateAddress($email)) { return $app->redirect('/account/reset-email/?notice=mail-invalid'); } if ($email !== $emailConfirm) { return $app->redirect('/account/reset-email/?notice=mail-match'); } if (!\mail::reset_email($app, $email, $app['phraseanet.user']->get_id()) === true) { return $app->redirect('/account/reset-email/?notice=mail-server'); } return $app->redirect('/account/reset-email/?update=mail-send'); } /** * Display reset email form * * @param Application $app * @param Request $request * @return Response */ public function displayResetEmailForm(Application $app, Request $request) { if (null !== $noticeMsg = $request->query->get('notice')) { switch ($noticeMsg) { case 'mail-server': $noticeMsg = _('phraseanet::erreur: echec du serveur de mail'); break; case 'mail-match': $noticeMsg = _('forms::les emails ne correspondent pas'); break; case 'mail-invalid': $noticeMsg = _('forms::l\'email semble invalide'); break; case 'bad-password': $noticeMsg = _('admin::compte-utilisateur:ftp: Le mot de passe est errone'); break; } } if (null !== $updateMsg = $request->query->get('update')) { switch ($updateMsg) { case 'ok': $updateMsg = _('admin::compte-utilisateur: L\'email a correctement ete mis a jour'); break; case 'ko': $updateMsg = _('admin::compte-utilisateur: erreur lors de la mise a jour'); break; case 'mail-send': $updateMsg = _('admin::compte-utilisateur un email de confirmation vient de vous etre envoye. Veuillez suivre les instructions contenue pour continuer'); break; } } return $app['twig']->render('account/reset-email.html.twig', array( 'noticeMsg' => $noticeMsg, 'updateMsg' => $updateMsg, )); } /** * Submit the new password * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return RedirectResponse */ public function renewPassword(Application $app, Request $request) { if ((null !== $password = $request->request->get('form_password')) && (null !== $passwordConfirm = $request->request->get('form_password_confirm'))) { if ($password !== $passwordConfirm) { return $app->redirect('/account/reset-password/?pass-error=pass-match'); } elseif (strlen(trim($password)) < 5) { return $app->redirect('/account/reset-password/?pass-error=pass-short'); } elseif (trim($password) != str_replace(array("\r\n", "\n", "\r", "\t", " "), "_", $password)) { return $app->redirect('/account/reset-password/?pass-error=pass-invalid'); } try { $auth = new \Session_Authentication_Native($app, $app['phraseanet.user']->get_login(), $request->request->get('form_old_password', '')); $auth->challenge_password(); $app['phraseanet.user']->set_password($passwordConfirm); return $app->redirect('/account/?notice=pass-ok'); } catch (\Exception $e) { return $app->redirect('/account/?notice=pass-ko'); } } } /** * Display authorized applications that can access user informations * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return JsonResponse */ public function grantAccess(Application $app, Request $request, $application_id) { if (!$request->isXmlHttpRequest() || !array_key_exists($request->getMimeType('json'), array_flip($request->getAcceptableContentTypes()))) { $app->abort(400, _('Bad request format, only JSON is allowed')); } $error = false; try { $account = \API_OAuth2_Account::load_with_user( $app , new \API_OAuth2_Application($app, $application_id) , $app['phraseanet.user'] ); $account->set_revoked((bool) $request->query->get('revoke'), false); } catch (\Exception_NotFound $e) { $error = true; } return $app->json(array('success' => !$error)); } /** * Display account base access * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return Response */ public function accountAccess(Application $app, Request $request) { require_once $app['phraseanet.registry']->get('GV_RootPath') . 'lib/classes/deprecated/inscript.api.php'; return $app['twig']->render('account/access.html.twig', array( 'inscriptions' => giveMeBases($app, $app['phraseanet.user']->get_id()) )); } /** * Display authorized applications that can access user informations * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return Response */ public function accountAuthorizedApps(Application $app, Request $request) { return $app['twig']->render('account/authorized_apps.html.twig', array( "applications" => \API_OAuth2_Application::load_app_by_user($app, $app['phraseanet.user']), )); } /** * Display account session accesss * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return Response */ public function accountSessionsAccess(Application $app, Request $request) { $dql = 'SELECT s FROM Entities\Session s WHERE s.usr_id = :usr_id ORDER BY s.created DESC'; $query = $app['EM']->createQuery($dql); $query->setParameters(array('usr_id' => $app['session']->get('usr_id'))); $sessions = $query->getResult(); return $app['twig']->render('account/sessions.html.twig', array('sessions' => $sessions)); } /** * Display account form * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return Response */ public function displayAccount(Application $app, Request $request) { switch ($notice = $request->query->get('notice', '')) { case 'pass-ok': $notice = _('login::notification: Mise a jour du mot de passe avec succes'); break; case 'pass-ko': $notice = _('Password update failed'); break; case 'account-update-ok': $notice = _('login::notification: Changements enregistres'); break; case 'account-update-bad': $notice = _('forms::erreurs lors de l\'enregistrement des modifications'); break; case 'demand-ok': $notice = _('login::notification: Vos demandes ont ete prises en compte'); break; } return $app['twig']->render('account/account.html.twig', array( 'user' => $app['phraseanet.user'], 'notice' => $notice, 'evt_mngr' => $app['events-manager'], 'notifications' => $app['events-manager']->list_notifications_available($app['phraseanet.user']->get_id()), )); } /** * Update account informations * * @param Application $app A Silex application where the controller is mounted on * @param Request $request The current request * @return Response */ public function updateAccount(Application $app, Request $request) { $notice = 'account-update-bad'; $demands = (array) $request->request->get('demand', array()); if (0 !== count($demands)) { $register = new \appbox_register($app['phraseanet.appbox']); foreach ($demands as $baseId) { try { $register->add_request($app['phraseanet.user'], \collection::get_from_base_id($app, $baseId)); $notice = 'demand-ok'; } catch (\Exception $e) { } } } $accountFields = array( 'form_gender', 'form_firstname', 'form_lastname', 'form_address', 'form_zip', 'form_phone', 'form_fax', 'form_function', 'form_company', 'form_activity', 'form_geonameid', 'form_addrFTP', 'form_loginFTP', 'form_pwdFTP', 'form_destFTP', 'form_prefixFTPfolder' ); if (0 === count(array_diff($accountFields, array_keys($request->request->all())))) { $defaultDatas = 0; if ($datas = (array) $request->request->get("form_defaultdataFTP", array())) { if (in_array('document', $datas)) { $defaultDatas += 4; } if (in_array('preview', $datas)) { $defaultDatas += 2; } if (in_array('caption', $datas)) { $defaultDatas += 1; } } try { $app['phraseanet.appbox']->get_connection()->beginTransaction(); $app['phraseanet.user']->set_gender($request->request->get("form_gender")) ->set_firstname($request->request->get("form_firstname")) ->set_lastname($request->request->get("form_lastname")) ->set_address($request->request->get("form_address")) ->set_zip($request->request->get("form_zip")) ->set_tel($request->request->get("form_phone")) ->set_fax($request->request->get("form_fax")) ->set_job($request->request->get("form_activity")) ->set_company($request->request->get("form_company")) ->set_position($request->request->get("form_function")) ->set_geonameid($request->request->get("form_geonameid")) ->set_mail_notifications((bool) $request->request->get("mail_notifications")) ->set_activeftp($request->request->get("form_activeFTP")) ->set_ftp_address($request->request->get("form_addrFTP")) ->set_ftp_login($request->request->get("form_loginFTP")) ->set_ftp_password($request->request->get("form_pwdFTP")) ->set_ftp_passif($request->request->get("form_passifFTP")) ->set_ftp_dir($request->request->get("form_destFTP")) ->set_ftp_dir_prefix($request->request->get("form_prefixFTPfolder")) ->set_defaultftpdatas($defaultDatas); $app['phraseanet.appbox']->get_connection()->commit(); $notice = 'account-update-ok'; } catch (Exception $e) { $app['phraseanet.appbox']->get_connection()->rollBack(); } } $requestedNotifications = (array) $request->request->get('notifications', array()); foreach ($app['events-manager']->list_notifications_available($app['phraseanet.user']->get_id()) as $notifications) { foreach ($notifications as $notification) { $notifId = $notification['id']; $notifName = sprintf('notification_%d', $notifId); if (isset($requestedNotifications[$notifId])) { $app['phraseanet.user']->setPrefs($notifName, '1'); } else { $app['phraseanet.user']->setPrefs($notifName, '0'); } } } return $app->redirect(sprintf('/account/?notice=%s', $notice), 201); } /** * Prefix the method to call with the controller class name * * @param string $method The method to call * @return string */ private function call($method) { return sprintf('%s::%s', __CLASS__, $method); } }