src/AppBundle/Controller/LoginController.php line 142

Open in your IDE?
  1. <?php
  3. namespace AppBundle\Controller;
  5. use ApiBundle\Api\Exception\ErrorCode;
  6. use AppBundle\Common\ArrayToolkit;
  7. use AppBundle\Common\Exception\RuntimeException;
  8. use AppBundle\Component\OAuthClient\OAuthClientFactory;
  9. use Biz\Common\BizSms;
  10. use CorporateTrainingBundle\System;
  11. use Firebase\JWT\JWT;
  12. use Firebase\JWT\Key;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  15. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  16. use Symfony\Component\Security\Core\Security;
  18. class LoginController extends BaseController
  19. {
  20.     public function indexAction(Request $request)
  21.     {
  22.         $user $this->getCurrentUser();
  23.         if ($user->isLogin()) {
  24.             return $this->createMessageResponse('info''login.message.repeat_login'null3000$this->generateUrl('homepage'));
  25.         }
  27.         $error $this->checkLoginError($request);
  28.         if ($error) {
  29.             $request->getSession()->remove(Security::AUTHENTICATION_ERROR);
  30.         } else {
  31.             $url $this->checkInviteCodeLogin($request);
  32.             if (!empty($url)) {
  33.                 return $this->redirect($url);
  34.             }
  35.         }
  37.         $this->callRemoteService($request$user);
  38.         $_target_path $this->getTargetPath($request);
  39.         $liveLogin $this->checkLiveLogin($request$_target_path);
  41.         return $this->render(
  42.             'login/index.html.twig',
  43.             [
  44.                 'last_username' => $request->getSession()->get(Security::LAST_USERNAME),
  45.                 'error' => $error,
  46.                 '_target_path' => $_target_path,
  47.                 'liveLogin' => $liveLogin,
  48.             ]
  49.         );
  50.     }
  52.     protected function callRemoteService(Request $request$user)
  53.     {
  54.         if (in_array('ROLE_SUPER_ADMIN'$user['roles'])) {
  55.             $siteInfo $this->getSettingService()->get('site_info', []);
  56.             if (!empty($siteInfo) && false == $siteInfo['status']) {
  57.                 $siteInfo['applicationVersion'] = System::CT_VERSION;
  58.                 $siteInfo['domainName'] = $request->getHttpHost();
  59.                 if (empty($siteInfo['cloud_key'])) {
  60.                     $settings $this->getSettingService()->get('storage', []);
  61.                     if (!empty($settings['cloud_access_key'])) {
  62.                         $siteInfo['accessKey'] = $settings['cloud_access_key'];
  63.                         $this->postRequest('http://ct.edusoho.com/api/app_install'json_encode($siteInfo));
  64.                     }
  65.                 }
  66.             }
  67.         }
  68.     }
  70.     public function externalLoginAction(Request $request)
  71.     {
  72.         // 新增开关校验
  73.         $setting $this->getSettingService()->get('api');
  75.         if (empty($setting['external_switch'])) {
  76.             throw new BadRequestHttpException('API设置未开启'nullErrorCode::INVALID_ARGUMENT);
  77.         }
  79.         $token $request->get('token''');
  80.         if (!$token) {
  81.             throw new BadRequestHttpException('请求参数错误'nullErrorCode::INVALID_ARGUMENT);
  82.         }
  84.         $data JWT::decode($token, new Key($setting['api_app_secret_key'], 'HS256'));
  85.         if (empty($data) || empty($data->identifyValue) || empty($data->identifyType) || !in_array($data->identifyType, ['username''mobile''email'])) {
  86.             throw new BadRequestHttpException('请求参数错误'nullErrorCode::INVALID_ARGUMENT);
  87.         }
  89.         $user $this->getUserService()->getUserByLoginTypeAndField($data->identifyType$data->identifyValue);
  90.         if (empty($user)) {
  91.             return $this->createMessageResponse('error''external.login.message.error'null0);
  92.         }
  94.         $this->authenticateUser($user);
  96.         return $this->redirect($this->generateUrl('homepage'));
  97.     }
  99.     protected function checkLiveLogin(Request $request, &$_target_path)
  100.     {
  101.         $liveLogin preg_match('/\/live\/(.*?)\/(.*)/'$_target_path$match);
  103.         if ($liveLogin && in_array($match[2], ['login''entry''show''replay'])) {
  104.             $_target_path $this->generateUrl('live_activity_play', ['activityId' => $match[1]]);
  105.         }
  107.         return $liveLogin $match[1] : 0;
  108.     }
  110.     public function ajaxAction(Request $request)
  111.     {
  112.         $clients OAuthClientFactory::clients();
  114.         return $this->render('login/ajax.html.twig', [
  115.             '_target_path' => $this->getTargetPath($request),
  116.             'clients' => $clients,
  117.         ]);
  118.     }
  120.     public function checkEmailAction(Request $request)
  121.     {
  122.         $email $request->query->get('value');
  123.         $user $this->getUserService()->getUserByEmail($email);
  125.         if ($user) {
  126.             $response = ['success' => true'message' => '该Email地址可以登录'];
  127.         } else {
  128.             $response = ['success' => false'message' => '该Email地址尚未注册'];
  129.         }
  131.         return $this->createJsonResponse($response);
  132.     }
  134.     public function oauth2LoginsBlockAction($targetPath$displayName true$isMayday 0)
  135.     {
  136.         $clients OAuthClientFactory::clients();
  138.         return $this->render('login/oauth2-logins-block.html.twig', [
  139.             'clients' => $clients,
  140.             'targetPath' => $targetPath,
  141.             'displayName' => $displayName,
  142.             'isMayday' => $isMayday,
  143.         ]);
  144.     }
  146.     public function smsAction(Request $request)
  147.     {
  148.         $user $this->getCurrentUser();
  149.         if ($user->isLogin()) {
  150.             return $this->createMessageResponse('info''你已经登录了'null3000$this->getTargetPath($request));
  151.         }
  153.         if ($request->isMethod('POST')) {
  154.             if (!$this->checkSmsCode($request)) {
  155.                 throw new RuntimeException('短信验证码错误!');
  156.             }
  157.             // 按手机号获取用户,没有就注册
  158.             $user $this->getUserService()->getUserByVerifiedMobile($request->request->get('login_mobile'));
  160.             if (empty($user)) {
  161.                 throw new RuntimeException('该手机账号不存在');
  162.             }
  164.             if ($user['locked']) {
  165.                 throw new RuntimeException('该用户已被封禁!');
  166.             }
  168.             $this->authenticateUser($user);
  170.             return $this->createJsonResponse(['goto' => $this->getTargetPath($request)]);
  171.         }
  173.         return $this->render('login/sms.html.twig', [
  174.             '_target_path' => $this->getTargetPath($request),
  175.         ]);
  176.     }
  178.     public function checkMobileAction(Request $request)
  179.     {
  180.         $mobile $request->request->get('mobile''');
  181.         $result = !empty($mobile) && !empty($this->getUserService()->getUserByVerifiedMobile($mobile));
  183.         return $this->createJsonResponse($result);
  184.     }
  186.     public function checkSmsCodeAction(Request $request)
  187.     {
  188.         return $this->createJsonResponse($this->checkSmsCode($request));
  189.     }
  191.     public function captchaCheckAction(Request $request)
  192.     {
  193.         $captchaFilledByUser strtolower($request->request->get('value'));
  195.         if ($request->getSession()->get('captcha_code') == $captchaFilledByUser) {
  196.             $response true;
  197.         } else {
  198.             $request->getSession()->set('captcha_code'mt_rand(0999999999));
  199.             $response false;
  200.         }
  202.         return $this->createJsonResponse($response);
  203.     }
  205.     protected function checkInviteCodeLogin(Request $request)
  206.     {
  207.         if ($this->getWebExtension()->isMicroMessenger() && $this->setting('login_bind.enabled'0) && $this->setting('login_bind.weixinmob_enabled'0)) {
  208.             $inviteCode $request->query->get('inviteCode''');
  210.             return $this->generateUrl('login_bind', ['type' => 'weixinmob''_target_path' => $this->getTargetPath($request), 'inviteCode' => $inviteCode]);
  211.         }
  213.         if ($this->getCTWebExtension()->isDingTalk() && $this->setting('login_bind.enabled'0) && $this->setting('login_bind.dingtalkmob_enabled'0)) {
  214.             $inviteCode $request->query->get('inviteCode''');
  216.             return $this->generateUrl('login_bind', ['type' => 'dingtalkmob''_target_path' => $this->getTargetPath($request), 'inviteCode' => $inviteCode]);
  217.         }
  219.         if ($this->getCTWebExtension()->isWorkWechat() && $this->setting('login_bind.enabled'0) && $this->setting('login_bind.workwechatmob_enabled'0)) {
  220.             $inviteCode $request->query->get('inviteCode''');
  222.             return $this->generateUrl('login_bind', ['type' => 'workwechatmob''_target_path' => $this->getTargetPath($request), 'inviteCode' => $inviteCode]);
  223.         }
  225.         if ($this->getCTWebExtension()->isFeiShu() && $this->setting('login_bind.enabled'0) && $this->setting('login_bind.feishumob_enabled'0)) {
  226.             $inviteCode $request->query->get('inviteCode''');
  228.             return $this->generateUrl('login_bind', ['type' => 'feishumob''_target_path' => $this->getTargetPath($request), 'inviteCode' => $inviteCode]);
  229.         }
  231.         return 0;
  232.     }
  234.     protected function getCTWebExtension()
  235.     {
  236.         return $this->container->get('corporatetrainingbundle.twig.web_extension');
  237.     }
  239.     protected function checkLoginError(Request $request)
  240.     {
  241.         if ($request->attributes->has(Security::AUTHENTICATION_ERROR)) {
  242.             return $request->attributes->get(Security::AUTHENTICATION_ERROR);
  243.         }
  245.         return $request->getSession()->get(Security::AUTHENTICATION_ERROR);
  246.     }
  248.     protected function checkSmsCode(Request $request)
  249.     {
  250.         $fields $request->request->all();
  252.         if (!ArrayToolkit::requireds($fields, ['login_mobile''sms_token''login_sms_code'])) {
  253.             return false;
  254.         }
  256.         // 检查短信验证码
  257.         $status $this->getBizSms()->check(BizSms::SMS_LOGIN$fields['login_mobile'], $fields['sms_token'], $fields['login_sms_code']);
  258.         if (BizSms::STATUS_SUCCESS !== $status) {
  259.             return false;
  260.         }
  262.         return true;
  263.     }
  265.     protected function getTargetPath(Request $request)
  266.     {
  267.         if ($request->query->get('goto')) {
  268.             $targetPath $request->query->get('goto');
  269.         } elseif ($request->getSession()->has('_target_path')) {
  270.             $targetPath $request->getSession()->get('_target_path');
  271.         } else {
  272.             $targetPath $request->headers->get('Referer''');
  273.         }
  275.         if ($targetPath == $this->generateUrl('login', [], UrlGeneratorInterface::ABSOLUTE_URL)) {
  276.             return $this->generateUrl('homepage');
  277.         }
  279.         $url explode('?'$targetPath);
  281.         if ($url[0] == $this->generateUrl('partner_logout', [], UrlGeneratorInterface::ABSOLUTE_URL)) {
  282.             return $this->generateUrl('homepage');
  283.         }
  285.         if ($url[0] == $this->generateUrl('password_reset_update', [], UrlGeneratorInterface::ABSOLUTE_URL)) {
  286.             $targetPath $this->generateUrl('homepage', [], UrlGeneratorInterface::ABSOLUTE_URL);
  287.         }
  289.         if (=== strpos($targetPath'/app.php')) {
  290.             $targetPath str_replace('/app.php'''$targetPath);
  291.         }
  293.         return $targetPath;
  294.     }
  296.     protected function getWebExtension()
  297.     {
  298.         return $this->container->get('web.twig.extension');
  299.     }
  301.     /**
  302.      * @return BizSms
  303.      */
  304.     protected function getBizSms()
  305.     {
  306.         $biz $this->getBiz();
  308.         return $biz['biz_sms'];
  309.     }
  311.     protected function getSettingService()
  312.     {
  313.         return $this->container->get('biz')->service('System:SettingService');
  314.     }
  315. }