vendor/nen/kennisbank-platform/src/Nen/Form/UserType.php line 29

Open in your IDE?
  1. <?php
  3. namespace Nen\Bundle\KennisbankPlatformBundle\Form;
  5. use App\Entity\User;
  6. use Doctrine\ORM\EntityRepository;
  7. use App\Entity\Company;
  8. use Nen\Bundle\KennisbankPlatformBundle\Form\Constraint\StrongPasswordConstraint;
  9. use Nen\Bundle\KennisbankPlatformBundle\Form\DataTransformer\RolesDataTransformer;
  10. use Nen\Bundle\KennisbankPlatformBundle\Service\PlatformUserRolesProvider;
  11. use Nen\Bundle\KennisbankPlatformBundle\Service\UserRolesProvider;
  12. use Symfony\Bridge\Doctrine\Form\Type\EntityType;
  13. use Symfony\Component\Form\AbstractType;
  14. use Symfony\Component\Form\Extension\Core\Type\CheckboxType;
  15. use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
  16. use Symfony\Component\Form\Extension\Core\Type\CollectionType;
  17. use Symfony\Component\Form\Extension\Core\Type\PasswordType;
  18. use Symfony\Component\Form\Extension\Core\Type\RepeatedType;
  19. use Symfony\Component\Form\Extension\Core\Type\TextType;
  20. use Symfony\Component\Form\FormBuilderInterface;
  21. use Symfony\Component\OptionsResolver\OptionsResolver;
  22. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  23. use Symfony\Component\Security\Core\Authorization\AccessDecisionManager;
  24. use Symfony\Component\Security\Core\Authorization\AccessDecisionManagerInterface;
  25. use Symfony\Component\Security\Core\Security;
  26. use Symfony\Component\Validator\Constraints\NotBlank;
  27. use Symfony\Component\Validator\Constraints\NotCompromisedPassword;
  29. class UserType extends AbstractType
  30. {
  31.     private UserRolesProvider $userRolesProvider;
  33.     private Security $security;
  35.     private AccessDecisionManagerInterface $accessDecisionManager;
  37.     public function __construct(UserRolesProvider $userRolesProviderSecurity $securityAccessDecisionManagerInterface $accessDecisionManager)
  38.     {
  39.         $this->userRolesProvider $userRolesProvider;
  40.         $this->security $security;
  41.         $this->accessDecisionManager $accessDecisionManager;
  42.     }
  44.     /**
  45.      * @param FormBuilderInterface $builder
  46.      * @param array $options
  47.      */
  48.     public function buildForm(FormBuilderInterface $builder, array $options)
  49.     {
  50.         $builder
  51.             ->add(
  52.                 'sex',
  53.                 ChoiceType::class,
  54.                 [
  55.                     'label' => 'Aanhef',
  56.                     'choices' => User::getSexes(),
  57.                     'expanded' => true,
  58.                     'multiple' => false,
  59.                     'label_attr' => [
  60.                         'class' => 'radio-inline',
  61.                     ],
  62.                 ]
  63.             )
  64.             ->add(
  65.                 'initials',
  66.                 null,
  67.                 [
  68.                     'label' => 'Voorletters',
  69.                     'attr' => [
  70.                         'placeholder' => 'Voorletters',
  71.                     ],
  72.                 ]
  73.             )
  74.             ->add(
  75.                 'firstname',
  76.                 null,
  77.                 [
  78.                     'label' => 'Voornaam',
  79.                     'attr' => [
  80.                         'placeholder' => 'Voornaam',
  81.                     ],
  82.                 ]
  83.             )
  84.             ->add(
  85.                 'lastnamePrefix',
  86.                 null,
  87.                 [
  88.                     'label' => 'Tussenvoegsel',
  89.                     'required' => false,
  90.                     'attr' => [
  91.                         'placeholder' => 'Tussenvoegsel',
  92.                     ],
  93.                 ]
  94.             )
  95.             ->add(
  96.                 'lastname',
  97.                 null,
  98.                 [
  99.                     'label' => 'Achternaam',
  100.                     'attr' => [
  101.                         'placeholder' => 'Achternaam',
  102.                     ],
  103.                 ]
  104.             )
  105.             ->add(
  106.                 'username',
  107.                 null,
  108.                 [
  109.                     'label' => 'E-mailadres',
  110.                     'attr' => [
  111.                         'placeholder' => 'E-mailadres',
  112.                     ],
  113.                 ]
  114.             )
  115.             ->add(
  116.                 'job',
  117.                 null,
  118.                 [
  119.                     'label' => 'Functie',
  120.                     'attr' => [
  121.                         'placeholder' => 'Functie',
  122.                     ],
  123.                 ]
  124.             );
  126.         $type $options['type'];
  129.         if ($type == 'register') {
  130.             $builder->add(
  131.                 'hash',
  132.                 RepeatedType::class,
  133.                 [
  134.                     // instead of being set onto the object directly,
  135.                     // this is read and encoded in the controller
  136.                     'type' => PasswordType::class,
  137.                     'mapped' => false,
  138.                     'first_options' => [
  139.                         'label' => 'Wachtwoord',
  140.                         'constraints' => [
  141.                             new NotBlank(
  142.                                 [
  143.                                     'message' => 'Ontbrekende waarde.',
  144.                                 ]
  145.                             ),
  146.                             new StrongPasswordConstraint(),
  147.                             new NotCompromisedPassword([
  148.                                 'message' => 'Het ingevulde wachtwoord is niet veilig genoeg. Deze voldoet niet aan de onderstaande voorwaarden of staat op de lijst van onveilige veelvoorkomende wachtwoorden.',
  149.                             ]),
  150.                         ],
  151.                     ],
  152.                     'second_options' => [
  153.                         'label' => 'Wachtwoord nogmaals',
  154.                         'constraints' => [
  155.                             new NotBlank(
  156.                                 [
  157.                                     'message' => 'Ontbrekende waarde.',
  158.                                 ]
  159.                             ),
  160.                         ],
  161.                     ],
  162.                 ]
  163.             )
  164.                 ->add(
  165.                     'license_code',
  166.                     TextType::class,
  167.                     [
  168.                         'required' => true,
  169.                         'mapped' => false,
  170.                     ]
  171.                 );
  172.         }
  174.         if ($type !== 'profile') {
  175.             $roles $this->userRolesProvider->getSelectableRolesForForm();
  177.             // When the form is in edit or registration mode check the roles of the current
  178.             // user and disable roles that cannot be set. Edit or registration mode is when
  179.             // the company manager is editing the users of their company.
  180.             if ($type === 'edit' || $type === 'registration' || $type === 'administration') {
  181.                 if (!$this->security->isGranted(PlatformUserRolesProvider::ROLE_CUSTOMER_SERVICE)) {
  182.                     $roles array_filter($roles, static function ($role) {
  183.                         return !in_array($role, [
  184.                             PlatformUserRolesProvider::ROLE_ADMINISTRATOR,
  185.                             PlatformUserRolesProvider::ROLE_CUSTOMER_SERVICE
  186.                         ], true);
  187.                     });
  188.                 }
  190.                 if (!$this->security->isGranted(PlatformUserRolesProvider::ROLE_ADMINISTRATOR)) {
  191.                     $roles array_filter($roles, static function ($role) {
  192.                         return !in_array($role, [
  193.                             PlatformUserRolesProvider::ROLE_ADMINISTRATOR,
  194.                             PlatformUserRolesProvider::ROLE_CUSTOMER_SERVICE
  195.                         ], true);
  196.                     });
  197.                 }
  198.             }
  200.             $userToken $builder->getData() !== null ? new UsernamePasswordToken($builder->getData(), 'none''main'$builder->getData()->getRoles()) : null;
  202.             $builder->add(
  203.                 'roles',
  204.                 ChoiceType::class,
  205.                 [
  206.                     'label' => 'Rollen',
  207.                     'choices' => $roles,
  208.                     'disabled' => $userToken !== null && $this->accessDecisionManager->decide($userToken, [PlatformUserRolesProvider::ROLE_CUSTOMER_SERVICE]),
  209.                     'expanded' => false,
  210.                     'multiple' => true,
  211.                 ]
  212.             );
  214.             $builder->get('roles')->addModelTransformer(new RolesDataTransformer());
  217. //            $builder->add(
  218. //                'role',
  219. //                ChoiceType::class,
  220. //                [
  221. //                    'label' => 'Rol',
  222. //                    'choices' => User::getUserRoles(),
  223. //                    'expanded' => false,
  224. //                    'multiple' => false,
  225. //                    'label_attr' => [
  226. //                        'class' => 'radio-inline',
  227. //                    ],
  228. //                ]
  229. //            )
  230. //                ->add(
  231. //                    'manager',
  232. //                    CheckboxType::class,
  233. //                    [
  234. //                        'label' => 'Bedrijfsbeheerder',
  235. //                        'required' => false,
  236. //                    ]
  237. //                );
  238.         }
  240.         if (in_array($type, ['registration''upgrade'])) {
  241.             $builder->add('company'CompanyType::class, ['license' => $options['license'], 'type' => $type]);
  242.         }
  244.         if ($type == 'administration') {
  245.             $builder->add(
  246.                 'company',
  247.                 EntityType::class,
  248.                 [
  249.                     // looks for choices from this entity
  250.                     'class' => Company::class,
  251.                     'label' => 'Organisatie',
  252.                     'placeholder' => 'Kies een organisatie',
  254.                     'query_builder' => function (EntityRepository $repository) {
  255.                         return $repository
  256.                             ->createQueryBuilder('c')
  257.                             ->orderBy('c.name''ASC');
  258.                     },
  260.                     // uses the User.username property as the visible option string
  261.                     'choice_label' => 'name',
  263.                 ]
  264.             )
  265.                 ->add(
  266.                     'ips',
  267.                     CollectionType::class,
  268.                     [
  269.                         'entry_type' => IpType::class,
  270.                         'allow_add' => true,
  271.                         'prototype' => true,
  272.                         'by_reference' => false,
  273.                         'label' => 'IP adressen',
  274.                     ]
  275.                 );
  276.         }
  277.     }
  280.     /**
  281.      * @param OptionsResolver $resolver
  282.      */
  283.     public function configureOptions(OptionsResolver $resolver)
  284.     {
  285.         $resolver->setDefaults(
  286.             [
  287.                 'data_class' => User::class,
  288.                 'license' => null,
  289.                 'type' => 'registration',
  290.             ]
  291.         );
  292.     }
  293. }