src/AppBundle/Controller/RegisterController.php line 137

Open in your IDE?
  1. <?php
  3. namespace AppBundle\Controller;
  5. use AppBundle\Common\Exception\AbstractException;
  6. use AppBundle\Common\SimpleValidator;
  7. use AppBundle\Common\SmsToolkit;
  8. use Biz\Common\CommonException;
  9. use Biz\Distributor\Util\DistributorCookieToolkit;
  10. use Biz\System\Service\LogService;
  11. use Biz\System\Service\SettingService;
  12. use Biz\User\Service\AuthService;
  13. use Biz\User\Service\MessageService;
  14. use Biz\User\Service\NotificationService;
  15. use Biz\User\Service\UserFieldService;
  16. use Biz\User\UserException;
  17. use Gregwar\Captcha\CaptchaBuilder;
  18. use Symfony\Component\HttpFoundation\Request;
  19. use Symfony\Component\HttpFoundation\Response;
  21. class RegisterController extends BaseController
  22. {
  23.     public function indexAction(Request $request)
  24.     {
  25.         $user $this->getCurrentUser();
  27.         if ($user->isLogin()) {
  28.             return $this->createMessageResponse('info''你已经登录了'null3000$this->getTargetPath($request));
  29.         }
  31.         $registerEnable $this->getAuthService()->isRegisterEnabled();
  33.         if (!$registerEnable) {
  34.             return $this->createMessageResponse('info''注册已关闭,请联系管理员'null3000$this->getTargetPath($request));
  35.         }
  37.         if ('POST' === $request->getMethod()) {
  38.             try {
  39.                 $registration $request->request->all();
  40.                 unset($registration['type']);
  42.                 if (isset($registration['emailOrMobile']) && SimpleValidator::mobile($registration['emailOrMobile'])) {
  43.                     $registration['verifiedMobile'] = $registration['emailOrMobile'];
  44.                 }
  46.                 $isUserTermsOpened 'opened' === $this->getSettingService()->node('auth.user_terms') ? true false;
  47.                 $isPrivacyPolicyOpened 'opened' === $this->getSettingService()->node('auth.privacy_policy') ? true false;
  49.                 if (($isUserTermsOpened || $isPrivacyPolicyOpened) && 'on' != $registration['agree_policy']) {
  50.                     return $this->createMessageResponse('info''请先勾选相关条款或政策');
  51.                 }
  53.                 $registration['mobile'] = isset($registration['verifiedMobile']) ? $registration['verifiedMobile'] : '';
  54.                 $registration['createdIp'] = $request->getClientIp();
  55.                 $authSettings $this->getSettingService()->get('auth', []);
  57.                 //拖动校验
  58.                 $this->dragCaptchaValidator($registration$authSettings);
  60.                 //手机校验码
  61.                 if ($this->smsCodeValidator($authSettings$registration)) {
  62.                     $request->request->add(array_merge($request->request->all(), ['mobile' => $registration['mobile']]));
  64.                     list($result$sessionField$requestField) = SmsToolkit::smsCheck($request$scenario 'sms_registration');
  66.                     if ($result) {
  67.                         $registration['verifiedMobile'] = $sessionField['to'];
  68.                     } else {
  69.                         return $this->createMessageResponse('info''手机号码和短信验证码不匹配,请重新注册');
  70.                     }
  71.                 }
  73.                 //获取POST参数验证码
  74.                 if (!isset($registration['invitedCode']) || empty($registration['invitedCode'])) {
  75.                     //获取GET地址的邀请码
  76.                     $registration['invitedCode'] = trim($request->get('inviteCode'''));
  77.                 }
  78.                 $registration['createdIp'] = $request->getClientIp();
  79.                 $registration['registeredWay'] = 'web';
  80.                 if ($this->isPluginInstalled('Drp')) {
  81.                     $registration DistributorCookieToolkit::setCookieTokenToFields($request$registrationDistributorCookieToolkit::USER);
  82.                 }
  84.                 $user $this->getAuthService()->register($registration);
  86.                 if (($authSettings
  87.                         && isset($authSettings['email_enabled'])
  88.                         && 'closed' === $authSettings['email_enabled'])
  89.                     || !$this->isEmptyVeryfyMobile($user)
  90.                 ) {
  91.                     $this->authenticateUser($user);
  92.                 }
  94.                 $goto $this->generateUrl('register_submited', [
  95.                     'id' => $user['id'],
  96.                     'hash' => $this->makeHash($user),
  97.                     'goto' => $this->getTargetPath($request),
  98.                 ]);
  100.                 if ($this->getAuthService()->hasPartnerAuth()) {
  101.                     $currentUser $this->getCurrentUser();
  103.                     if (!$currentUser->isLogin()) {
  104.                         $this->authenticateUser($user);
  105.                     }
  107.                     $goto $this->generateUrl('partner_login', ['goto' => $goto]);
  108.                 }
  110.                 $response $this->redirect($this->generateUrl('register_success', ['goto' => $goto]));
  111.                 $response DistributorCookieToolkit::clearCookieToken(
  112.                     $request,
  113.                     $response,
  114.                     ['checkedType' => DistributorCookieToolkit::USER]
  115.                 );
  117.                 return $response;
  118.             } catch (AbstractException $se) {
  119.                 $this->setFlashMessage('danger'$this->trans($se->getMessage()));
  120.             } catch (\Exception $e) {
  121.                 return $this->createMessageResponse('error'$this->trans($e->getMessage()));
  122.             }
  123.         }
  125.         // invitedCode这里为 被邀请码
  126.         $invitedCode $this->setInviteCode($request);
  127.         $inviteUser = empty($invitedCode) ? [] : $this->getUserService()->getUserByInviteCode($invitedCode);
  129.         if ($this->getWebExtension()->isWechatLoginBind()) {
  130.             return $this->redirect($this->generateUrl('login_bind', ['type' => 'weixinmob''_target_path' => $this->getTargetPath($request)]));
  131.         }
  133.         return $this->render('register/index.html.twig', [
  134.             'isRegisterEnabled' => $registerEnable,
  135.             'registerSort' => [],
  136.             'inviteUser' => $inviteUser,
  137.             '_target_path' => $this->getTargetPath($request),
  138.         ]);
  139.     }
  141.     private function setInviteCode($request)
  142.     {
  143.         // invitedCode这里为 被邀请码
  144.         $invitedCode $request->query->get('inviteCode''');
  145.         $inviteSetting $this->getSettingService()->get('invite');
  146.         if (empty($inviteSetting['invite_code_setting'])) {
  147.             $invitedCode '';
  148.         }
  149.         $this->get('session')->set('invitedCode'$invitedCode);
  151.         return $invitedCode;
  152.     }
  154.     public function successAction(Request $request)
  155.     {
  156.         $goto $request->query->get('goto');
  158.         if (empty($goto)) {
  159.             $goto $this->generateUrl('homepage');
  160.         }
  162.         return $this->createMessageResponse('info''正在跳转页面,请稍等......''注册成功'1$goto);
  163.     }
  165.     protected function isMobileRegister($registration)
  166.     {
  167.         if (isset($registration['emailOrMobile']) && !empty($registration['emailOrMobile'])) {
  168.             if (SimpleValidator::mobile($registration['emailOrMobile'])) {
  169.                 return true;
  170.             }
  171.         } elseif (isset($registration['mobile']) && !empty($registration['mobile'])) {
  172.             if (SimpleValidator::mobile($registration['mobile'])) {
  173.                 return true;
  174.             }
  175.         }
  177.         return false;
  178.     }
  180.     protected function isEmptyVeryfyMobile($user)
  181.     {
  182.         if (isset($user['verifiedMobile']) && !empty($user['verifiedMobile'])) {
  183.             return false;
  184.         }
  186.         return true;
  187.     }
  189.     public function userTermsAction(Request $request)
  190.     {
  191.         $setting $this->getSettingService()->get('auth', []);
  193.         return $this->render('register/user-terms.html.twig', [
  194.             'userTerms' => $setting['user_terms_body'],
  195.         ]);
  196.     }
  198.     public function privacyPolicyAction(Request $request)
  199.     {
  200.         $setting $this->getSettingService()->get('auth', []);
  202.         $privacyPolicyBody = empty($setting['privacy_policy_body']) ? '' $setting['privacy_policy_body'];
  204.         return $this->render('register/privacy-policy.html.twig', [
  205.             'privacyPolicy' => $privacyPolicyBody,
  206.         ]);
  207.     }
  209.     public function emailSendAction(Request $request$id$hash)
  210.     {
  211.         $user $this->checkHash($id$hash);
  213.         if (empty($user)) {
  214.             return $this->createJsonResponse(false);
  215.         }
  217.         $token $this->getUserService()->makeToken('email-verify'$user['id'], strtotime('+1 day'));
  218.         $this->sendVerifyEmail($token$user);
  220.         return $this->createJsonResponse(true);
  221.     }
  223.     public function submitedAction(Request $request$id$hash)
  224.     {
  225.         $user $this->checkHash($id$hash);
  227.         if (empty($user)) {
  228.             $this->createNewException(UserException::NOTFOUND_USER());
  229.         }
  231.         $auth $this->getSettingService()->get('auth');
  233.         if (!empty($user['verifiedMobile'])) {
  234.             return $this->redirect(htmlspecialchars($this->getTargetPath($request)));
  235.         }
  237.         if ($auth && 'mobile' !== $auth['register_mode']
  238.             && array_key_exists('email_enabled'$auth)
  239.             && ('opened' === $auth['email_enabled'])
  240.         ) {
  241.             return $this->render('register/email-verify.html.twig', [
  242.                 'user' => $user,
  243.                 'hash' => $hash,
  244.                 'emailLoginUrl' => $this->getEmailLoginUrl($user['email']),
  245.                 '_target_path' => htmlspecialchars($this->getTargetPath($request)),
  246.             ]);
  247.         }
  248.         $this->authenticateUser($user);
  250.         return $this->redirect(htmlspecialchars($this->getTargetPath($request)));
  251.     }
  253.     public function emailVerifyAction(Request $request$token)
  254.     {
  255.         $token $this->getUserService()->getToken('email-verify'$token);
  257.         if (empty($token)) {
  258.             $currentUser $this->getCurrentUser();
  260.             if (empty($currentUser) || == $currentUser['id']) {
  261.                 return $this->render('register/email-verify-error.html.twig');
  262.             }
  264.             return $this->redirect($this->generateUrl('settings'));
  265.         }
  267.         $user $this->getUserService()->getUser($token['userId']);
  269.         if (empty($user)) {
  270.             return $this->createNotFoundException();
  271.         }
  273.         $this->authenticateUser($user);
  274.         $this->getUserService()->setEmailVerified($user['id']);
  276.         if ('POST' === strtoupper($request->getMethod())) {
  277.             $this->getUserService()->deleteToken('email-verify'$token['token']);
  279.             return $this->createJsonResponse(true);
  280.         }
  282.         return $this->render('register/email-verify-success.html.twig', [
  283.             'token' => $token,
  284.         ]);
  285.     }
  287.     public function resetEmailAction(Request $request$id$hash)
  288.     {
  289.         $user $this->checkHash($id$hash);
  291.         if ($request->isMethod('post')) {
  292.             $password $request->request->get('password');
  293.             $email $request->request->get('email');
  295.             if ($user['email'] !== $email) {
  296.                 $this->createNewException(UserException::NOT_MATCH_BIND_EMAIL());
  297.             }
  299.             $user $this->getUserService()->getUserByEmail($email);
  301.             if (!$this->getUserService()->verifyPassword($user['id'], $password)) {
  302.                 $this->setFlashMessage('danger''site.incorrect.password');
  303.             } else {
  304.                 $token $this->getUserService()->makeToken('email-reset'$user['id'], strtotime('+10 minutes'), [
  305.                     'password' => $password,
  306.                 ]);
  308.                 return $this->render('register/reset-email-step2.html.twig', [
  309.                     'token' => $token,
  310.                 ]);
  311.             }
  312.         }
  314.         if (empty($user)) {
  315.             $this->createNewException(UserException::NOTFOUND_USER());
  316.         }
  318.         return $this->render('register/reset-email-step1.html.twig', [
  319.             'id' => $id,
  320.             'hash' => $hash,
  321.             'user' => $user,
  322.         ]);
  323.     }
  325.     public function resetEmailVerifyAction(Request $request)
  326.     {
  327.         $newEmail $request->request->get('email');
  329.         if (empty($newEmail)) {
  330.             $this->createNewException(CommonException::ERROR_PARAMETER_MISSING());
  331.         }
  333.         $token $request->request->get('token');
  334.         $token $this->getUserService()->getToken('email-reset'$token);
  335.         if (empty($token)) {
  336.             return $this->createNotFoundException('token已失效');
  337.         }
  339.         $user $this->getUserService()->getUser($token['userId']);
  341.         if (empty($user)) {
  342.             $this->createNewException(UserException::NOTFOUND_USER());
  343.         }
  345.         $authSettings $this->getSettingService()->get('auth', []);
  346.         $dragCaptchaToken $request->request->get('dragCaptchaToken');
  348.         //拖动校验
  349.         $this->dragCaptchaValidator(['dragCaptchaToken' => $dragCaptchaToken], $authSettings);
  351.         $this->getAuthService()->changeEmail($user['id'], $token['data']['password'], $newEmail);
  352.         $user $this->getUserService()->getUser($user['id']);
  354.         return $this->redirect($this->generateUrl('register_submited', [
  355.             'id' => $user['id'],
  356.             'hash' => $this->makeHash($user),
  357.             'goto' => $this->generateUrl('homepage'),
  358.         ]));
  359.     }
  361.     public function resetEmailCheckAction(Request $request)
  362.     {
  363.         $email $request->query->get('value');
  364.         $email str_replace('!''.'$email);
  365.         $user $this->getUserService()->getUserByEmail($email);
  367.         if (empty($user)) {
  368.             $response = ['success' => false'message' => '该Email不存在'];
  369.         } else {
  370.             $response = ['success' => true'message' => ''];
  371.         }
  373.         return $this->createJsonResponse($response);
  374.     }
  376.     protected function makeHash($user)
  377.     {
  378.         $string $user['id'].$user['email'].$this->container->getParameter('secret');
  380.         return md5($string);
  381.     }
  383.     protected function checkHash($userId$hash)
  384.     {
  385.         $user $this->getUserService()->getUser($userId);
  387.         if (empty($user)) {
  388.             return false;
  389.         }
  391.         if ($this->makeHash($user) !== $hash) {
  392.             return false;
  393.         }
  395.         return $user;
  396.     }
  398.     public function emailCheckAction(Request $request)
  399.     {
  400.         $email $request->query->get('value');
  401.         $email str_replace('!''.'$email);
  402.         list($result$message) = $this->getAuthService()->checkEmail($email);
  404.         return $this->validateResult($result$message);
  405.     }
  407.     public function mobileCheckAction(Request $request)
  408.     {
  409.         $mobile $request->query->get('value');
  410.         list($result$message) = $this->getAuthService()->checkMobile($mobile);
  412.         return $this->validateResult($result$message);
  413.     }
  415.     public function emailOrMobileCheckAction(Request $request)
  416.     {
  417.         $emailOrMobile $request->query->get('value');
  418.         $emailOrMobile str_replace('!''.'$emailOrMobile);
  419.         list($result$message) = $this->getAuthService()->checkEmailOrMobile($emailOrMobile);
  421.         return $this->validateResult($result$message);
  422.     }
  424.     protected function validateResult($result$message)
  425.     {
  426.         $response true;
  427.         if ('success' !== $result) {
  428.             $response $message;
  429.         }
  431.         return $this->createJsonResponse($response);
  432.     }
  434.     public function nicknameCheckAction(Request $request)
  435.     {
  436.         $nickname $request->query->get('value');
  437.         $randomName $request->query->get('randomName');
  438.         list($result$message) = $this->getAuthService()->checkUsername($nickname$randomName);
  440.         return $this->validateResult($result$message);
  441.     }
  443.     public function invitecodeCheckAction(Request $request)
  444.     {
  445.         $inviteCode $request->query->get('value');
  446.         $user $this->getUserService()->getUserByInviteCode($inviteCode);
  448.         if (empty($user)) {
  449.             return $this->validateResult('false''邀请码不正确');
  450.         }
  452.         return $this->validateResult('success''');
  453.     }
  455.     public function captchaModalAction()
  456.     {
  457.         return $this->render('register/captcha-modal.html.twig', []);
  458.     }
  460.     public function captchaCheckAction(Request $request)
  461.     {
  462.         $captchaFilledByUser strtolower($request->query->get('value'));
  464.         if ($request->getSession()->get('captcha_code') == $captchaFilledByUser) {
  465.             $response = ['success' => true'message' => '验证码正确'];
  466.         } else {
  467.             $request->getSession()->set('captcha_code'mt_rand(0999999999));
  468.             $response = ['success' => false'message' => '验证码错误'];
  469.         }
  471.         return $this->createJsonResponse($response);
  472.     }
  474.     public function getEmailLoginUrl($email)
  475.     {
  476.         $host substr($emailstrpos($email'@') + 1);
  478.         if ('hotmail.com' === $host) {
  479.             return 'http://www.'.$host;
  480.         }
  482.         if ('gmail.com' === $host) {
  483.             return 'http://mail.google.com';
  484.         }
  486.         return 'http://mail.'.$host;
  487.     }
  489.     public function analysisAction(Request $request)
  490.     {
  491.         return $this->render('register/analysis.html.twig', []);
  492.     }
  494.     public function agreementAction()
  495.     {
  496.         return $this->render('register/agreement.html.twig');
  497.     }
  499.     public function captchaAction(Request $request)
  500.     {
  501.         $imgBuilder = new CaptchaBuilder();
  502.         $imgBuilder->build($width 150$height 32$font null);
  503.         $request->getSession()->set('captcha_code'strtolower($imgBuilder->getPhrase()));
  505.         ob_start();
  506.         $imgBuilder->output();
  507.         $str ob_get_clean();
  508.         $imgBuilder null;
  510.         $headers = [
  511.             'Content-type' => 'image/jpeg',
  512.             'Content-Disposition' => 'inline; filename="'.'reg_captcha.jpg'.'"', ];
  514.         return new Response($str200$headers);
  515.     }
  517.     protected function sendRegisterMessage($user)
  518.     {
  519.         $senderUser = [];
  520.         $auth $this->getSettingService()->get('auth', []);
  522.         if (empty($auth['welcome_enabled'])) {
  523.             return false;
  524.         }
  526.         if ('opened' !== $auth['welcome_enabled']) {
  527.             return false;
  528.         }
  530.         if (empty($auth['welcome_sender'])) {
  531.             return false;
  532.         }
  534.         $senderUser $this->getUserService()->getUserByNickname($auth['welcome_sender']);
  536.         if (empty($senderUser)) {
  537.             return false;
  538.         }
  540.         $welcomeBody $this->getWelcomeBody($user);
  542.         if (empty($welcomeBody)) {
  543.             return true;
  544.         }
  546.         if (strlen($welcomeBody) >= 1000) {
  547.             $welcomeBody $this->getWebExtension()->plainTextFilter($welcomeBody1000);
  548.         }
  550.         $this->getMessageService()->sendMessage($senderUser['id'], $user['id'], $welcomeBody);
  551.         $conversation $this->getMessageService()->getConversationByFromIdAndToId($user['id'], $senderUser['id']);
  552.         $this->getMessageService()->deleteConversation($conversation['id']);
  553.     }
  555.     protected function getWelcomeBody($user)
  556.     {
  557.         $site $this->getSettingService()->get('site', []);
  558.         $valuesToBeReplace = ['{{nickname}}''{{sitename}}''{{siteurl}}'];
  559.         $valuesToReplace = [$user['nickname'], $site['name'], $site['url']];
  560.         $welcomeBody $this->setting('auth.welcome_body''注册欢迎的内容');
  562.         return str_replace($valuesToBeReplace$valuesToReplace$welcomeBody);
  563.     }
  565.     protected function sendVerifyEmail($token$user)
  566.     {
  567.         try {
  568.             $site $this->getSettingService()->get('site', []);
  569.             $verifyurl $this->getHttpHost().'/register/email/verify/'.$token;
  570.             $mailOptions = [
  571.                 'to' => $user['email'],
  572.                 'template' => 'email_registration',
  573.                 'params' => [
  574.                     'sitename' => $site['name'],
  575.                     'siteurl' => $site['url'],
  576.                     'verifyurl' => $verifyurl,
  577.                     'nickname' => $user['nickname'],
  578.                 ],
  579.             ];
  580.             $mailFactory $this->getBiz()->offsetGet('mail_factory');
  581.             $mail $mailFactory($mailOptions);
  582.             $mail->send();
  583.         } catch (\Exception $e) {
  584.             $this->getLogService()->error('user''register''注册激活邮件发送失败:'.$e->getMessage());
  585.         }
  586.     }
  588.     protected function getWebExtension()
  589.     {
  590.         return $this->container->get('web.twig.extension');
  591.     }
  593.     protected function dragCaptchaValidator($registration$authSettings)
  594.     {
  595.         if (array_key_exists('captcha_enabled'$authSettings) && (== $authSettings['captcha_enabled']) && empty($registration['mobile'])) {
  596.             $biz $this->getBiz();
  597.             $bizDragCaptcha $biz['biz_drag_captcha'];
  599.             $dragcaptchaToken = empty($registration['dragCaptchaToken']) ? '' $registration['dragCaptchaToken'];
  600.             $bizDragCaptcha->check($dragcaptchaToken);
  601.         }
  602.     }
  604.     //validate captcha
  605.     protected function captchaEnabledValidator($authSettings$registrationRequest $request)
  606.     {
  607.         if (array_key_exists('captcha_enabled'$authSettings) && (== $authSettings['captcha_enabled']) && !isset($registration['mobile'])) {
  608.             $captchaCodePostedByUser strtolower($registration['captcha_code']);
  609.             $captchaCode $request->getSession()->get('captcha_code');
  611.             if (!isset($captchaCodePostedByUser) || strlen($captchaCodePostedByUser) < 5) {
  612.                 $this->createNewException(CommonException::FORBIDDEN_DRAG_CAPTCHA_ERROR());
  613.             }
  615.             if (!isset($captchaCode) || strlen($captchaCode) < 5) {
  616.                 $this->createNewException(CommonException::FORBIDDEN_DRAG_CAPTCHA_ERROR());
  617.             }
  619.             if ($captchaCode != $captchaCodePostedByUser) {
  620.                 $request->getSession()->set('captcha_code'mt_rand(0999999999));
  621.                 $this->createNewException(CommonException::FORBIDDEN_DRAG_CAPTCHA_ERROR());
  622.             }
  624.             $request->getSession()->set('captcha_code'mt_rand(0999999999));
  625.         }
  626.     }
  628.     protected function smsCodeValidator($authSettings$registration)
  629.     {
  630.         if (
  631.             in_array($authSettings['register_mode'], ['mobile''email_or_mobile'])
  632.             && isset($registration['mobile']) && !empty($registration['mobile'])
  633.             && '1' == $this->setting('cloud_sms.sms_enabled')
  634.         ) {
  635.             return true;
  636.         }
  637.     }
  639.     /**
  640.      * @return UserFieldService
  641.      */
  642.     protected function getUserFieldService()
  643.     {
  644.         return $this->getBiz()->service('User:UserFieldService');
  645.     }
  647.     /**
  648.      * @return SettingService
  649.      */
  650.     protected function getSettingService()
  651.     {
  652.         return $this->getBiz()->service('System:SettingService');
  653.     }
  655.     /**
  656.      * @return MessageService
  657.      */
  658.     protected function getMessageService()
  659.     {
  660.         return $this->getBiz()->service('User:MessageService');
  661.     }
  663.     /**
  664.      * @return NotificationService
  665.      */
  666.     protected function getNotificationService()
  667.     {
  668.         return $this->getBiz()->service('User:NotificationService');
  669.     }
  671.     /**
  672.      * @return AuthService
  673.      */
  674.     protected function getAuthService()
  675.     {
  676.         return $this->getBiz()->service('User:AuthService');
  677.     }
  679.     /**
  680.      * @return LogService
  681.      */
  682.     protected function getLogService()
  683.     {
  684.         return $this->getBiz()->service('System:LogService');
  685.     }
  687.     /**
  688.      * @return DistributorService
  689.      */
  690.     protected function getDistributorService()
  691.     {
  692.         return $this->getBiz()->service('Distributor:DistributorService');
  693.     }
  694. }