src/Controller/BaseController.php line 86

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\Alert;
  6. use App\Entity\Availabilities;
  7. use App\Entity\EnumValues;
  8. use App\Entity\FavoriteOffer;
  9. use App\Entity\Guarantor;
  10. use App\Entity\MD5HashCheck;
  11. use App\Entity\MailingSearch;
  12. use App\Entity\Offer;
  13. use App\Entity\OfferImage;
  14. use App\Entity\OfferTenantApplication;
  15. use App\Entity\Page;
  16. use App\Entity\User;
  17. use App\Entity\WorkStatus;
  18. use App\Form\ModalOfferType;
  19. use App\Form\OfferType;
  20. use App\Form\RegisterFormType;
  21. use App\Form\SearchFrontFormType;
  22. use App\Form\SignConventionType;
  23. use App\Form\UpdatePasswordType;
  24. use App\Repository\AgencyRepository;
  25. use App\Repository\EnumValuesRepository;
  26. use App\Repository\FavoriteOfferRepository;
  27. use App\Repository\MailingSearchRepository;
  28. use App\Repository\OfferRepository;
  29. use App\Repository\OfferTenantApplicationRepository;
  30. use App\Repository\UserRepository;
  31. use App\Security\LoginFormAuthenticator;
  32. use App\Service\CustomMailer;
  33. use App\Service\CustomPdfGenerator;
  34. use App\Service\FormLabelHydrater;
  35. use App\Service\PhoneNumberHelper;
  36. use App\Service\SearchParameterChecker;
  37. use App\Service\Securizer;
  38. use App\Service\SignConvention;
  39. use Doctrine\DBAL\DBALException;
  40. use Doctrine\ORM\EntityManagerInterface;
  41. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  42. use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
  43. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  44. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  45. use Symfony\Bundle\FrameworkBundle\Controller\createFormBuilder;
  46. use Symfony\Bundle\FrameworkBundle\Controller\denyAccessUnlessGranted;
  47. use Symfony\Bundle\FrameworkBundle\Controller\redirectToRoute;
  48. use Symfony\Component\EventDispatcher\EventDispatcher;
  49. use Symfony\Component\Filesystem\Filesystem;
  50. use Symfony\Component\Form\Extension\Core\Type\EmailType;
  51. use Symfony\Component\Form\Extension\Core\Type\TextType;
  52. use Symfony\Component\Form\FormError;
  53. use Symfony\Component\HttpFoundation\File\Exception\FileException;
  54. use Symfony\Component\HttpFoundation\JsonResponse;
  55. use Symfony\Component\HttpFoundation\Request;
  56. use Symfony\Component\HttpFoundation\Response;
  57. use Symfony\Component\HttpFoundation\Session\SessionInterface;
  58. use Symfony\Component\Routing\Annotation\Route;
  59. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  60. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  61. use Symfony\Component\Security\Guard\GuardAuthenticatorHandler;
  62. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  63. use Symfony\Component\Validator\Constraints\Email;
  64. use Symfony\Component\Validator\Constraints\NotBlank;
  65. use Symfony\Component\Validator\Constraints\Type;
  67. class BaseController extends AbstractController
  68. {
  69.     public $parkingType;
  70.     public $buildingType;
  71.     public $constructionType;
  72.     public $nbrRooms;
  74.     public function __construct(FormLabelHydrater $hydraterEnumValuesRepository $enumrepo)
  75.     {
  76.         $labels $hydrater->getOfferLabels();
  77.         $this->nbrRooms $enumrepo->findOneBy(['name' => 'nbrRooms'])->getData();
  78.         $this->buildingType array_flip($labels['buildingType']);
  79.         $this->parkingType array_flip($labels['parkingType']);
  80.         $this->constructionType array_flip($labels['constructionType']);
  81.     }
  83.     /**
  84.      * @Route("/", name="homepage")
  85.      */
  86.     public function index(OfferRepository $repoRequest $request)
  87.     {
  88.         $sums $repo->getNbrOffersByDepartments();
  89.         $latests $repo->getLatest();
  90.         $congratulations $request->get('congratulations')??null;
  91.         //$buildingType = $enumrepo->findOneBy(['name' => 'buildingType'])->getData();
  92.         //$constructionType = $enumrepo->findOneBy(['name' => 'constructionType'])->getData();
  94.         return $this->render('base/index.html.twig', [
  95.             'controller_name'    => 'BaseController',
  96.             'sums'                => $sums,
  97.             'latests'            => $latests,
  98.             'nbrRooms'            => $this->nbrRooms,
  99.             'buildingType'        => $this->buildingType,
  100.             'constructionType'    => $this->constructionType,
  101.             'total'                => array_sum($sums),
  102.             'show_free_estimate_modal' => true,
  103.             'congratulations'   => $congratulations??null,
  104.         ]);
  105.     }
  107.     /**
  108.      * @Route("/annonces/departement/{department}", name="list_offers_by_department")
  109.      */
  110.     public function listOffersByDepartment($department nullOfferRepository $repoEnumValuesRepository $enumrepo)
  111.     {
  112.         if ($department == null && !in_array($department, ['75''77''78''91''92''93''94''95']))
  113.         {
  114.             return $this->redirectToRoute('homepage');
  115.         }
  116.         $results $repo->searchFrontSide(['departments' => [$department]]);
  117.         $latest $repo->getLatest();
  118.         $sums $repo->getNbrOffersByDepartments();
  119.         $buildingType $enumrepo->findOneBy(['name' => 'buildingType'])->getData();
  120.         $nbrRoom $enumrepo->findOneBy(['name' => 'nbrRooms'])->getData();
  121.         $constructionType $enumrepo->findOneBy(['name' => 'constructionType'])->getData();
  124.         return $this->render('base/search_results.html.twig', [
  125.             'controller_name'    => 'BaseController',
  126.             'results'            => $results ?? [],
  127.             'latests'            => $latest,
  128.             'sums'                => $sums,
  129.             'buildingType'        => $this->buildingType,
  130.             'nbrRoom'            => $this->nbrRooms,
  131.             'departments'        => $department,
  132.             'constructionType'    => $this->constructionType,
  133.         ]);
  134.     }
  136.     /**
  137.      * @Route("/resultats-recherche", name="search_results")
  138.      */
  139.     public function searchResults(Request $requestEntityManagerInterface $managerOfferRepository $repoSessionInterface $sessionEnumValuesRepository $enumrepo)
  140.     {
  141.         if ($session->has('searchParameters'))
  142.         {
  143.             $parameters $session->get('searchParameters');
  144.             $session->remove('searchParameters');
  145.         }
  146.         $user $this->getUser();
  147.         $results $repo->searchFrontSide($parameters ?? nullFALSE$user $user->getId() : null);
  148.         $buildingType $enumrepo->findOneBy(['name' => 'buildingType'])->getData();
  149.         $nbrRoom $enumrepo->findOneBy(['name' => 'nbrRooms'])->getData();
  150.         $constructionType $enumrepo->findOneBy(['name' => 'constructionType'])->getData();
  152.         return $this->render('base/search_results.html.twig', [
  153.             'controller_name'        => 'BaseController',
  154.             'buildingType'            => $this->buildingType,
  155.             'buildingTypeParameter'    => $parameters['buildingType'] ?? null,
  156.             'departments'            => $parameters['departments'] ?? null,
  157.             'price'                    => $parameters['price'] ?? null,
  158.             'surface'                => $parameters['surface'] ?? null,
  159.             'nbrRooms'                => $parameters['nbrRooms'] ?? null,
  160.             'nbrRoom'                => $this->nbrRooms,
  161.             'constructionType'    => $this->constructionType,
  162.             'results'                => $results ?? [],
  163.         ]);
  164.     }
  166.     /**
  167.      * @Route("/annonce/{slug}", name="view_offer_profile")
  168.     
  169.     public function viewOffer(Offer $offer = null)
  170.     {
  171.         if ($offer == null)
  172.         {
  173.             $this->addFlash('danger', 'Cette annonce n\'est plus disponible !');
  174.             return $this->redirectToRoute('homepage');
  175.         }
  176.         $user = $offer->getUser();
  177.         $values = $valuesRepo->findAllEnums();
  178.         // see App\Security\Voter\CheckMethodsAccessVoter
  179.         $this->denyAccessUnlessGranted('OWNER_OR_ADMIN', $user);
  181.         return $this->render('offer/view_offer.html.twig', [
  182.                 'offer'        => $offer,
  183.                 'values'    => $values,
  184.             ]
  185.         );
  186.     } */
  188.     /**
  189.      * @Route("/save-parameters", name="save_parameters")
  190.      */
  191.     public function saveParameters(Request $requestSessionInterface $sessionSearchParameterChecker $checker)
  192.     {
  193.         // get search parameters from homepage, check it, put it in session, and redirect to search page
  195.         if ($request->isXmlHttpRequest() && isset($request->request))
  196.         {
  197.             $search $request->request->get('searchParameters');
  198.             // lazy & ugly solution, doesn't mind
  199.             $login_route $request->request->get('login_route_plz') ?? false;
  200.             $path $login_route $this->generateUrl('login') : $this->generateUrl('search_results');
  201.             $parameters $checker->checkParameters($search);
  203.             // if search is empty, it's cool, we just send ok status to trigger the redirection
  204.             if (empty($parameters))
  205.             {
  206.                 $session->remove('searchParameters');
  207.                 return new JsonResponse(['status' => 'ok''path' => $path]);
  208.             }
  210.             $session->set('searchParameters'$parameters);
  212.             return new JsonResponse(['status' => 'ok''path' => $path]);
  213.         }
  214.         return new JsonResponse(['status' => 'ko''error' => 'Not xmlhttp']);
  215.     }
  217.     /**
  218.      * @Route("/save-offer-session", name="save_offer_session")
  219.      */
  220.     public function saveOfferSession(Request $requestSessionInterface $sessionSearchParameterChecker $checker)
  221.     {
  222.         // get search parameters from homepage, check it, put it in session, and redirect to search page
  224.         if ($request->isXmlHttpRequest() && isset($request->request))
  225.         {
  226.             $offerId $request->request->get('offerId');
  227.             // lazy & ugly solution, doesn't mind
  228.             $login_route $request->request->get('login_route_plz') ?? false;
  229.             $path $this->generateUrl('login');
  231.             $session->set('offerId'$offerId);
  233.             return new JsonResponse(['status' => 'ok''path' => $path'offerId' => $offerId]);
  234.         }
  235.         return new JsonResponse(['status' => 'ko''error' => 'Not xmlhttp']);
  236.     }
  238.     /**
  239.      * @Route("/set_favorite_offer", name="set_favorite_offer")
  240.      */
  241.     public function        setFavoriteOffer(Request $requestEntityManagerInterface $managerFavoriteOfferRepository $repo)
  242.     {
  243.         if ($request->isXmlHttpRequest() && isset($request->request))
  244.         {
  245.             // get data
  246.             $userId $request->get('userId');
  247.             $offerId $request->get('offerId');
  249.             $tenant $this->getDoctrine()->getRepository(User::class)->find($userId);
  251.             if ($tenant == null || $offerId == null)
  252.                 return new JsonResponse(['status' => 'ko''error' => 'Impossible de trouver cette offre ou cet utilisateur avec les informations spécifiées.']);
  253.             $favorite $repo->findOneBy(['offerId' => $offerId'userId' => $userId]);
  254.             if ($favorite == null)
  255.                 $manager->persist(new FavoriteOffer($offerId$userId));
  256.             else
  257.                 $manager->remove($favorite);
  258.             $manager->flush();
  259.             // return users, please let me die a week or two
  260.             return new JsonResponse(['status' => 'ok']);
  262.             // go and take urself something to eat in the kitchen. A fruit, ffs, stop the sugar
  263.         }
  264.         return new JsonResponse(['error' => 'Not xmlhttp']);
  265.     }
  267.     /**
  268.      * @Route("/get-search-results", name="get_search_results")
  269.      */
  270.     public function getSearchResults(Request $requestEntityManagerInterface $managerOfferRepository $repoSessionInterface $sessionSearchParameterChecker $checkerEnumValuesRepository $enumrepo)
  271.     {
  272.         $enumRepo $this->getDoctrine()->getRepository(EnumValues::class);
  273.         $buildingType $enumRepo->findOneBy(['name' => 'buildingType'])->getData();
  274.         $offerRepo $this->getDoctrine()->getRepository(Offer::class);
  276.         if ($request->isXmlHttpRequest() && isset($request->request))
  277.         {
  278.             $search $request->request->get('searchParameters');
  279.             $parameters $checker->checkParameters($search);
  280.             $nbrRoom $enumrepo->findOneBy(['name' => 'nbrRooms'])->getData();
  281.             $constructionType $enumrepo->findOneBy(['name' => 'constructionType'])->getData();
  282.             $user $this->getUser();
  284.             // if search is empty, it's cool, we just dump everything we got
  285.             if (empty($parameters))
  286.             {
  287.                 $results $offerRepo->searchFrontSide(nullFALSE$user $user->getId() : null);
  288.                 $html $this->renderView('partials/search/_search_results_container.html.twig', [
  289.                     'buildingType'            => $this->buildingType,
  290.                     'constructionType'        => $this->constructionType,
  291.                     'buildingTypeParameter'    => null,
  292.                     'departments'            => null,
  293.                     'price'                    => null,
  294.                     'surface'                => null,
  295.                     'nbrRooms'                => null,
  296.                     'results'                => $results,
  297.                     'nbrRoom'                => $this->nbrRooms,
  298.                 ]);
  299.                 return new JsonResponse(['status' => 'ok''html' => $html]);
  300.             }
  302.             $results $offerRepo->searchFrontSide($parametersFALSE$user $user->getId() : null);
  304.             $html $this->renderView('partials/search/_search_results_container.html.twig', [
  305.                 'buildingType'            => $this->buildingType,
  306.                 'constructionType'        => $this->constructionType,
  307.                 'buildingTypeParameter'    => $parameters['buildingType'] ?? null,
  308.                 'departments'            => $parameters['departments'] ?? null,
  309.                 'price'                    => $parameters['price'] ?? null,
  310.                 'surface'                => $parameters['surface'] ?? null,
  311.                 'nbrRooms'                => $parameters['nbrRooms'] ?? null,
  312.                 'results'                => $results ?? [],
  313.                 'nbrRoom'                => $this->nbrRooms,
  314.             ]);
  316.             return new JsonResponse(['status' => 'ok''html' => $html'dump' => $results'data' => $parameters]);
  317.         }
  318.         return new JsonResponse(['status' => 'ko''error' => 'Not xmlhttp']);
  319.     }
  321.     /**
  322.      * @Route("/inscription", name="register")
  323.      */
  324.     public function register(Request $requestEntityManagerInterface $managerUserPasswordEncoderInterface $encoderGuardAuthenticatorHandler $guardHandlerLoginFormAuthenticator $authenticatorCustomMailer $mailerSecurizer $securizerUserRepository $repo)
  325.     {
  326.         $user $this->getUser();
  327.         if ($user != null && $securizer->isGranted($user'ROLE_LANDLORD'))
  328.             return $this->redirectToRoute('landlord_profile', ['id' => $user->getId()]);
  329.         else if ($user != null && $securizer->isGranted($user'ROLE_TENANT'))
  330.             return $this->redirectToRoute('tenant_profile', ['id' => $user->getId()]);
  331.         else if ($user != null && $securizer->isGranted($user'ROLE_ADMIN'))
  332.             return $this->redirectToRoute('admin_home');
  333.         /*else if ($user != null && $user->isGranted('ROLE_TENANT'))
  334.             return $this->redirectToRoute('tenant_profile', ['id' => $user->getId()]);*/
  336.         $user = new User();
  337.         $formFactory $this->get('form.factory');
  338.         $form $this->createForm(RegisterFormType::class, $user);
  339.         $form->handleRequest($request);
  341.         if ($form->isSubmitted() && $form->isValid())
  342.         {
  343.             //$isTenant flag utilisé pour conditionner l'envoie de mail d'activation
  344.             $isTenant false;
  345.             $role $form->get('roles')->getData() ? array('ROLE_TENANT') : array('ROLE_LANDLORD');
  346.             $user->setRoles($role);
  347.             // if user is Tenant, he must give additional data
  348.             if ($form->get('roles')->getData())
  349.             {
  350.                 $user->setWorkStatus(new WorkStatus());
  351.                 $user->setGuarantor(new Guarantor());
  352.                 //Activation du compte du locataire
  353.                 $user->setActivated(true);
  354.                 $isTenant true;
  355.             }
  356.             $hash $encoder->encodePassword($user$user->getPassword());
  357.             $user->setPassword($hash);
  358.             $manager->persist($user);
  359.             $manager->flush();
  361.             //sending activation mail
  362.             $email $user->getEmail();
  363.             $id $user->getId();
  364.             $d = new \DateTime();
  365.             $hash md5($email.$d->format('Y-m-d\TH:i:s.u'));
  366.             $newActChk = new MD5HashCheck($id$hash);
  367.             $manager->persist($newActChk);
  369.             while ($repo->findOneBy(['token' => $hash]) != null)
  370.             {
  371.                 $d = new \DateTime();
  372.                 $hash md5($email.$d->format('Y-m-d\TH:i:s.u'));
  373.             }
  374.             $user->setToken($hash);
  375.             $manager->persist($user);
  376.             $manager->persist(new Availabilities($user->getId(), []));
  377.             $manager->flush();
  378.             // sending mail only for landlord
  379.             $messageFlash="Compte créé avec succès ! ";
  380.             if (!$isTenant){
  381.                 $mailer->sendActivationLink($hash$id$email);
  382.                 $messageFlash .= "Un email d'activation vous a été envoyé sur $email !";
  383.             }
  385.             $this->addFlash('success'$messageFlash);
  387.             // auto login after register success
  388.             return $guardHandler->authenticateUserAndHandleSuccess($user$request$authenticator'main');
  389.         }
  390.         return $this->render('register.html.twig', [
  391.             'controller_name'    => 'BaseController',
  392.             'form'                => $form->createView(),
  393.         ]);
  394.     }
  396.     /**
  397.      * @Route("/changement-de-mot-de-passe/id={id}", name="update_password")
  398.      */
  399.     public function updatePassword(User $user nullRequest $requestEntityManagerInterface $managerUserPasswordEncoderInterface $encoderSecurizer $securizer)
  400.     {
  401.         if ($user == null)
  402.             return $this->redirectToRoute('homepage');
  404.         // see App\Security\Voter\CheckMethodsAccessVoter
  405.         $this->denyAccessUnlessGranted('OWNER_OR_ADMIN'$user);
  407.         $logged $this->getUser();
  408.         // if we're trying to modify an admin password that is NOT our account and we are NOT super_admin, we fuck off
  409.         if ($securizer->isGranted($user'ROLE_ADMIN') && $securizer->isGranted($logged'ROLE_ADMIN_MASTER') && $user->getId() != $logged->getId())
  410.         {
  411.             $this->addFlash('danger''Vous n\'avez pas l\'autorité nécessaire pour cette opération !');
  412.             return $this->redirectToRoute('admin_homepage');
  413.         }
  415.         $form $this->createForm(UpdatePasswordType::class, null);
  416.         $form->handleRequest($request); 
  417.         $redirectPath null;
  418.         $success true;
  420.         if ($form->isSubmitted() && $form->isValid())
  421.         {
  422.             // if the old password is not valid, we create an error on this field and f*** off
  423.             if (!$encoder->isPasswordValid($user$form['oldPassword']->getData()))
  424.             {
  425.                 $form['oldPassword']->addError(new FormError('Mot de passe incorrect.'));
  426.                 $success false;
  427.             }
  428.             $password $form['newPassword']->getData();
  430.             if (strcmp($password$form['oldPassword']->getData()) == 0)
  431.             {
  432.                 $form['newPassword']->addError(new FormError('Le nouveau mot de passe ne peut pas être identique à l\'ancien.'));
  433.                 $success false;
  434.             }
  435.             // password must contain lowercase, uppercase and number
  436.             if (!preg_match('@[A-Z]@'$password) || !preg_match('@[a-z]@'$password) || !preg_match('@[0-9]@'$password) || strlen($password) < 10)
  437.             {
  438.                 $form['newPassword']->addError(new FormError('Le mot de passe doit avoir au minimum 10 caractères et contenir au moins une minuscule, une majuscule et un chiffre.'));
  439.                 $success false;
  440.             }
  442.             if ($success)
  443.             {
  444.                 $newPassword $encoder->encodePassword($user$password);
  445.                 $user->setPassword($newPassword);
  446.                 $manager->persist($user);
  447.                 $manager->flush();
  448.             }
  450.             $this->addFlash('success''Votre mot de passe a été modifié.');
  451.             if ($securizer->isGranted($user'ROLE_LANDLORD'))
  452.                 $redirectPath 'landlord_profile';
  453.             else if ($securizer->isGranted($user'ROLE_TENANT'))
  454.                 $redirectPath 'tenant_profile';
  455.             else if ($securizer->isGranted($user'ROLE_ADMIN'))
  456.                 $redirectPath 'admin_homepage';
  457.         }
  459.         if ($success == true && $redirectPath != null)
  460.             return $this->redirectToRoute($redirectPath, ['id' => $user->getId()]);
  462.         return $this->render('update_password.html.twig', [
  463.             'form'                => $form->createView(),
  464.             'userId'            => $user->getId(),
  465.             'user'                => $user,
  466.         ]);
  467.     }
  469.     /**
  470.      * @Route("/changement-de-mot-de-passe/key={hash}", name="reset_password")
  471.      * @ParamConverter("key", options={"mapping"={"hash"="hash"}})
  472.      */
  473.     public function resetPassword(MD5HashCheck $key nullRequest $requestEntityManagerInterface $managerUserPasswordEncoderInterface $encoderUserRepository $repo)
  474.     {
  475.         $date = new \Datetime();
  476.         // key must exists, be 7 days old MAX and user must exists
  477.         if ($key == null || date_diff($key->getCreationDate(), $date)->format('d') > || ($user $repo->findOneBy(['id' => $key->getUserId()])) == null)
  478.         {
  479.             $this->addFlash('danger''Cet lien n\'est plus valide (plus de sept jours).');
  480.             return $this->$this->redirectToRoute('homepage');
  481.         }
  483.         // todo create a form with repetedtype, check it, hash it, update user, done
  484.         $form $this->createForm(UpdatePasswordType::class, null, ['reset' => true]);
  485.         $form->handleRequest($request);
  486.         $redirectPath null;
  489.         if ($form->isSubmitted() && $form->isValid())
  490.         {
  491.             $password $form['newPassword']->getData();
  493.             // password must contain lowercase, uppercase and number
  494.             //if (!preg_match('@[A-Z]@', $password) || !preg_match('@[a-z]@', $password) || !preg_match('@[0-9]@', $password) || strlen($password) < 10)
  495.             if (strlen($password) < 10)
  496.             {
  497.                 $form['newPassword']->addError(new FormError('Le mot de passe doit avoir au minimum 10 caractères.'));
  498.                 return $this->render('reset_password.html.twig', ['form' => $form->createView()]);
  499.             }
  501.             $newPassword $encoder->encodePassword($user$password);
  502.             $user->setPassword($newPassword);
  503.             $manager->persist($user);
  504.             $manager->flush();
  506.             $this->addFlash('success''Votre mot de passe a été modifié.');
  507.             $redirectPath 'login';
  508.         }
  510.         if ($redirectPath != null)
  511.             return $this->redirectToRoute($redirectPath);
  513.         return $this->render('reset_password.html.twig', [
  514.             'form'                => $form->createView()
  515.         ]);
  516.     }
  518.     /**
  519.      * @Route("/demande-changement-mot-de-passe", name="reset_password_request")
  520.      */
  521.     public function sendResetPasswordMail(Request $requestUserRepository $repoEntityManagerInterface $managerCustomMailer $mailer)
  522.     {
  523.         $form $this->createFormBuilder()
  524.             ->add('email'EmailType::class, [
  525.                 'label'                => 'Renseignez votre adresse email',
  526.                 'constraints'            => [
  527.                     new NotBlank([
  528.                         'message'        => "Veuillez renseigner votre email."
  529.                     ]),
  530.                     new Email([
  531.                         'mode'            => 'html5',
  532.                         'message'        => "L'email {{ value }} n'est pas un email valide.",
  533.                     ]),
  534.                 ],
  535.                 'required'            => true,
  536.                 'attr'                => array('placeholder' => 'Adresse email*'),
  537.             ])
  538.             ->getForm();
  539.         $success false;
  540.         $form->handleRequest($request);
  542.         if ($form->isSubmitted() && $form->isValid())
  543.         {
  544.             $email $form['email']->getData();
  545.             // wether or not the email was in our database, we send a happy message to fool our enemies.
  546.             $success true;
  547.             $this->addFlash('success''Un email de réinitialisation vous a été envoyé sur '.$email.' !');
  549.             // password must contain lowercase, uppercase and number
  550.             if (($user $repo->findOneBy(['email' => $email])) != null)
  551.             {
  552.                 $d = new \DateTime();
  553.                 $hash md5($email.$d->format('Y-m-d\TH:i:s.u'));
  554.                 $newActChk = new MD5HashCheck($user->getId(), $hash);
  555.                 $manager->persist($newActChk);
  556.                 $manager->flush();
  558.                 // sending mail
  559.                 //$mail = new CustomMailer($mailer, $this->get('twig'));
  560.                 $mailer->sendResetPasswordLink($hash$email);
  561.             }
  562.         }
  564.         if ($success)
  565.             return $this->redirectToRoute('login');
  567.         return $this->render('email_form.html.twig', [
  568.             'form'                => $form->createView(),
  569.         ]);
  570.     }
  572.     /**
  573.      * @Route("/demande_activation/id={id}", name="activation_request")
  574.      */
  575.     public function sendActivationMail(User $user nullEntityManagerInterface $managerCustomMailer $mailerSecurizer $securizer)
  576.     {
  577.         if ($user == null)
  578.             return $this->redirectToRoute('homepage');
  580.         // see App\Security\Voter\CheckMethodsAccessVoter
  581.         $this->denyAccessUnlessGranted('OWNER_OR_ADMIN'$user);
  583.         $id $user->getId();
  584.         $email $user->getEmail();
  585.         $d = new \DateTime();
  586.         $hash md5($email.$d->format('Y-m-d\TH:i:s.u'));
  588.         $newActChk = new MD5HashCheck($id$hash);
  589.         $manager->persist($newActChk);
  590.         $manager->flush();
  592.         // sending mail
  593.         $mailer->sendActivationLink($hash$id$email);
  594.         $this->addFlash('success''Un email d\'activation vous a été envoyé sur '.$email.' !');
  595.         if ($securizer->isGranted($user'ROLE_LANDLORD'))
  596.             return $this->redirectToRoute('landlord_profile', ['id' => $user->getId()]);
  597.         return $this->redirectToRoute('tenant_profile', ['id' => $user->getId()]);
  598.     }
  600.     /**
  601.      * @Route("/activation/key={hash}", name="activate_user")
  602.      * @ParamConverter("activationKey", options={"mapping"={"hash"="hash"}})
  603.      */
  604.     public function activateUser(MD5HashCheck $activationKey nullEntityManagerInterface $manager)
  605.     {
  606.         if ($activationKey == null)
  607.         {
  608.             $this->addFlash('danger''Cette clef n\'est pas valide.');
  609.             return $this->$this->redirectToRoute('homepage');
  610.         }
  611.         $user $this->getDoctrine()->getRepository(User::class)->findOneById($activationKey->getUserId());
  613.         if ($user != null && $user->getActivated() != true)
  614.         {
  615.             $user->setActivated(true);
  616.             $manager->persist($user);
  617.             $manager->flush();
  618.             $this->addFlash('success''Votre profil a été activé !');
  619.         }
  620.         return $this->redirectToRoute('login');
  621.     }
  623.     /**
  624.      * @Route("/annonce/{slug}", name="view_offer_profile")
  625.      */
  626.     public function viewOfferProfile(Offer $offer nullEntityManagerInterface $managerUserRepository $urepoOfferRepository $orepoSessionInterface $sessionEnumValuesRepository $erepoFavoriteOfferRepository $fAgencyRepository $arepo)
  627.     {
  628.         if ($offer == null || $offer->getIsPublished() == false)
  629.         {
  630.             $this->addFlash('danger''Cette annonce n\'est plus disponible !');
  631.             return $this->redirectToRoute('homepage');
  632.         }
  633.         if ($session->has('offerId'))
  634.             $session->remove('offerId');
  635.         $nearest $orepo->getNearest($offer->getDepartment(), $offer->getId());
  636.         $agency $arepo->find($offer->getAgency());
  637.         $contractType $erepo->findOneBy(['name' => 'contractType'])->getData();
  638.         $buildingType $erepo->findOneBy(['name' => 'buildingType'])->getData();
  639.         $nbrRooms $erepo->findOneBy(['name' => 'nbrRooms'])->getData();
  640.         $energyRating $erepo->findOneBy(['name' => 'energyRating'])->getData();
  641.         $parkingType $erepo->findOneBy(['name' => 'parkingType'])->getData();
  642.         $kitchenType $erepo->findOneBy(['name' => 'kitchenType'])->getData();
  643.         $constructionType $erepo->findOneBy(['name' => 'constructionType'])->getData();
  644.         $logged $this->getUser();
  645.         $saved $logged $f->findOneBy(['userId' => $logged->getId(), 'offerId' => $offer->getId()]) ? true false false;
  648.         return $this->render('base/view_offer_profile.html.twig', [
  649.                 'offer'                => $offer,
  650.                 'nearest'            => $nearest,
  651.                 'contractType'        => $contractType,
  652.                 'buildingType'        => $this->buildingType,
  653.                 'nbrRooms'            => $this->nbrRooms,
  654.                 'energyRating'        => $energyRating,
  655.                 'parkingType'        => $this->parkingType,
  656.                 'kitchenType'        => $kitchenType,
  657.                 'constructionType'    => $this->constructionType,
  658.                 'saved'                => $saved,
  659.                 'agency'            => $agency,
  660.             ]
  661.         );
  662.     }
  664.     /**
  665.      * @Route("/visite/{md5slug}/{landlordId}", name="view_offer_profile_visit")
  666.      * @ParamConverter("landlord", options={"mapping"={"landlordId"="id"}})
  667.      */
  668.     public function viewOfferProfileVisit(Offer $offer nullUser $landlord nullEntityManagerInterface $managerUserRepository $urepoOfferRepository $orepoEnumValuesRepository $erepoAgencyRepository $arepo)
  669.     {
  670.         if ($offer == null || $offer->getIsPublished() == false)
  671.         {
  672.             $this->addFlash('danger''Cette annonce n\'est plus disponible !');
  673.             return $this->redirectToRoute('homepage');
  674.         }
  675.         if ($landlord != null && $landlord->getId() !== $offer->getUser()->getId())
  676.         {
  677.             $landlord null;
  678.         }
  679.         $agency $arepo->find($offer->getAgency());
  680.         $nearest $orepo->getNearest($offer->getDepartment(), $offer->getId());
  681.         $contractType $erepo->findOneBy(['name' => 'contractType'])->getData();
  682.         $buildingType $erepo->findOneBy(['name' => 'buildingType'])->getData();
  683.         $nbrRooms $erepo->findOneBy(['name' => 'nbrRooms'])->getData();
  684.         $energyRating $erepo->findOneBy(['name' => 'energyRating'])->getData();
  685.         $parkingType $erepo->findOneBy(['name' => 'parkingType'])->getData();
  686.         $kitchenType $erepo->findOneBy(['name' => 'kitchenType'])->getData();
  687.         $constructionType $erepo->findOneBy(['name' => 'constructionType'])->getData();
  689.         return $this->render('base/view_offer_profile_visit.html.twig', [
  690.                 'agency'            => $agency,
  691.                 'offer'                => $offer,
  692.                 'nearest'            => $nearest,
  693.                 'contractType'        => $contractType,
  694.                 'buildingType'        => $this->buildingType,
  695.                 'nbrRooms'            => $this->nbrRooms,
  696.                 'energyRating'        => $energyRating,
  697.                 'parkingType'        => $this->parkingType,
  698.                 'kitchenType'        => $kitchenType,
  699.                 'constructionType'    => $this->constructionType,
  700.                 'landlord'            => $landlord,
  701.             ]
  702.         );
  703.     }
  705.     /**
  706.      * @Route("/page/{pageSlug}", name="page_display")
  707.      * @ParamConverter("page", options={"mapping"={"pageSlug"="slug"}})
  708.      */
  709.     public function pageDisplay(Page $page null)
  710.     {
  711.         if ($page == null)
  712.             throw $this->createNotFoundException('Cette page n\'existe pas.');
  713.         if ($page->getStatus() != && !$this->isGranted('ROLE_ADMIN'))
  714.             return $this->redirectToRoute('homepage');
  716.         return $this->render($page->getTemplate().'.html.twig', [
  717.             'page'                => $page,
  718.             'metadescription'    => $page->getMetadescription(),
  719.             'title'                => $page->getTitle(),
  720.         ]);
  721.     }
  723.     function checkArray($array)
  724.     {
  725.         foreach($array as $value)
  726.         {
  727.             if(!is_int($value))
  728.                 return false;
  729.         }
  730.         return true;
  731.     }
  733.     /**
  734.      * @Route("/create-mailing", name="create_mailing")
  735.      */
  736.     public function createMailing(Request $requestEntityManagerInterface $managerUserRepository $uMailingSearchRepository $mSessionInterface $sessionSearchParameterChecker $checkerSecurizer $securizer)
  737.     {
  738.         if ($request->isXmlHttpRequest() && isset($request->request))
  739.         {
  740.             // get data
  741.             // check data
  743.             $search $request->request->get('searchParameters');
  744.             $parameters $checker->checkParameters($search);
  745.             $session->set('searchParameters'$parameters);
  747.             $user $this->getUser();
  748.             if ($user == null || !$securizer->isGranted($user'ROLE_TENANT'))
  749.             {
  750.                 return new JsonResponse(['status' => 'ko''error' => 'login']);
  751.             }
  753.             $mailing = new MailingSearch();
  755.             $contractType    $parameters['contractType'];
  756.             $surface        $parameters['surface'];
  757.             $price            $parameters['price'];
  758.             $buildingType    $parameters['buildingType'] ?? null;
  759.             $nbrRooms        array_filter($parameters['nbrRooms'] ?? []);
  760.             $departments    $parameters['departments'] ?? null;
  762.             if (!empty($contractType) && is_int($contractType)) {
  763.                 $mailing->setContractType($contractType);
  764.             }
  766.             if (!empty($price) && is_int($price)) {
  767.                 $mailing->setPrice($price);
  768.             }
  770.             if (!empty($surface) && is_int($surface)) {
  771.                 $mailing->setSurface($surface);
  772.             }
  774.             if (!empty($departments) && $this->checkArray($departments)) {
  775.                 $mailing->setDepartments($departments);
  776.             }
  778.             if (!empty($nbrRooms) && $this->checkArray($nbrRooms)) {
  779.                 $mailing->setNbrRooms($nbrRooms);
  780.             }
  782.             if (!empty($buildingType) && $this->checkArray($buildingType)) {
  783.                 $mailing->setBuildingType($buildingType);
  784.             }
  786.             try {
  787.                 $user->addMailing($mailing);
  788.                 $manager->persist($user);
  789.                 $manager->flush();
  790.             } catch (DBALException $e) {
  791.                 return new JsonResponse(['status' => 'ko''error' => 'duplicate']);
  792.             }
  793.             return new JsonResponse(['status' => 'ok']);
  794.         }
  795.         return new JsonResponse(['status' => 'ko''error' => 'Not xmlhttp']);
  796.     }
  798.     /**
  799.      * @Route("/ajax-sign-conv/{id}", name="ajax_sign_conv")
  800.      */
  801.     public function ajaxSignConvention(Offer $offerSignConvention $signConventionServiceRequest $request)
  802.     {
  803.         if ($offer == null){
  804.             $this->addFlash('danger'"Cette annonce n'est plus disponible");
  805.             return $this->redirectToRoute('homepage');
  806.         }
  807.         $retour $signConventionService->signConvention($offer$request);
  808.         if (count($retour['erreur_bloquante']) > 0){
  809.             return $this->json(['status' => 'missingInfo2''errors' => $retour['erreur_bloquante']]);
  810.         }
  812.         if(isset($retour['errors']) && count($retour['errors'])>0){
  813.             foreach ($retour['errors'] as $error){
  814.                 $this->addFlash($error['type'], $error['message']);
  815.             }
  816.         }
  818.         if($retour['status'] == 'success'){
  819.             $this->addFlash('success''Merci beaucoup 👍, vous venez de valider la convention de votre annonce avec succès 🎉 Nous allons des à présent, proposer votre bien à nos candidats et nous reviendrons vers vous pour l’organisation des visites');
  820.             $redirectUrl $this->generateUrl('homepage', ['congratulations' => true]);
  821.             return $this->json(['status' => 'success''redirectUrl' => $redirectUrl]);
  822.         }else{
  823.             return $this->json(['status' => 'error''redirectUrl'=>$this->generateUrl('homepage')]);
  824.         }
  825.     }
  827.     private function getMask(array $strings):array
  828.     {
  829.         //mask de l'adresse email
  830.         list($nom$domaineComplet) = explode('@'$strings['email']);
  831.         $nomVisible substr($nom02);
  832.         $nomMasque str_repeat('*'max(1strlen($nom) - 2));
  833.         $lastDotPos strrpos($domaineComplet'.');
  834.         if ($lastDotPos === false) {
  835.             // Pas d'extension : on masque tout
  836.             $domaineMasque str_repeat('*'strlen($domaineComplet));
  837.             $extension '';
  838.         } else {
  839.             $extension substr($domaineComplet$lastDotPos); // ex: ".fr"
  840.             $domaineMasque str_repeat('*'$lastDotPos);     // masque tout avant le ".fr"
  841.         }
  842.         $retour['email']=$nomVisible $nomMasque '@' $domaineMasque $extension;
  844.         //Mask du numéro de téléphone
  845.         $longueur strlen($strings['phone']);
  846.         $subLength = ($strings['phone'][0]==='+')?4:2;
  847.         $debut substr($strings['phone'], 0$subLength);
  848.         $fin substr($strings['phone'], -2);
  849.         $masque str_repeat('*'$longueur - (2+$subLength));
  850.         $retour['phone']=$debut $masque $fin;
  852.         return $retour;
  853.     }
  854.     /**
  855.      * @Route("/confirm/{action}/{hash}", name="confir_user", requirements={"action":"sign|del", "key": "[A-Za-z0-9]+"})
  856.      */
  857.     public function confirmUser($action$hashEntityManagerInterface $emRequest $requestSessionInterface $session):Response
  858.     {
  859.         $tentative $session->get('tentative'0);
  860.         if($tentative >=3){
  861.             $params = ['action'=>$action'hash'=>$hash'ERROR'=>1];
  862.             return  $this->render('base/confirm_user.html.twig'$params);
  863.         }
  864.         if($hash == null){
  865.             $this->addFlash('danger'"⛔ Lien erroné, absence de hash !");
  866.             return $this->redirectToRoute('homepage');
  867.         }
  869.         //Vérification si le lien provient du mail ou de SMS
  870.         $origineLien substr($hash, -1);
  871.         $hash substr($hash0, -1);
  873.         $hashCheck $em->getRepository(MD5HashCheck::class)->findOneBy(['hash' => $hash]);
  874.         if($hashCheck == null){
  875.             $this->addFlash('danger'"⛔ Cette hash n'existe pas");
  876.             return $this->redirectToRoute('homepage');
  877.         }
  879.         $offerId $hashCheck->getUserId();
  880.         if($offerId == null){
  881.             $this->addFlash('danger'"⛔ Cette annonce n'est plus disponible");
  882.             return $this->redirectToRoute('homepage');
  883.         }
  885.         $user $em->getRepository(Offer::class)->findOneBy(['id' => $offerId])->getUser();
  886.         $userMail $user->getEmail();
  887.         $userPhone $user->getPhone();
  889.         $masques $this->getMask(['email' => $userMail'phone' => $userPhone]);
  891.         $params =['offerId'=> $offerId'action'=>$action'hash'=>$hash'ERROR'=>'''origineLien'=>$origineLien];
  892.         if($origineLien == 'M'){
  893.             //Le lien provient d'un mail
  894.             $params ['masqueMail'] = $masques['email'];
  895.         }elseif ($origineLien == 'S'){
  896.             //Le lien provient d'un SMS
  897.             $params['masquePhone'] = $masques['phone'];
  898.         }
  899.         return $this->render('base/confirm_user.html.twig'array_merge($params, ['ERROR'=>$request->query->get('ERROR''')]));
  900.     }
  902.     /**
  903.      * @Route("/verif-user", name="verif_user")
  904.      */
  905.     public function verifUser(Request $requestEntityManagerInterface $emSessionInterface  $sessionPhoneNumberHelper $helper):Response
  906.     {
  907.         if($request->isMethod('POST')){
  908.             //récupération de la valeur saisie par l'utilisateur
  909.             $hash $request->request->get('hash'false);
  910.             $offerId $request->request->get('offerId'false);
  911.             $action $request->request->get('action'false);
  912.             $origineLien $request->request->get('origineLien'false);
  913.             //récupération de la valeur saisie par l'utilisateur
  914.             $email $request->request->get('email'false);
  915.             $tel $helper->normalizePhoneToE164($request->request->get('tel'false));
  917.             if(!$hash || !$offerId || !$action || !$origineLien || (!$email && !$tel)){
  918.                 $this->addFlash('danger''⛔ Accès refusé');
  919.                 return $this->redirectToRoute('homepage');
  920.             }
  922.             $user $em->getRepository(Offer::class)->findOneBy(['id' => $offerId])->getUser();
  923.             $userMail $user->getEmail();
  924.             $userPhone $helper->normalizePhoneToE164($user->getPhone());
  925.             $verifError false;
  926.             if($email && $email !== $userMail){
  927.                 $this->addFlash('danger'"⛔ L'adresse email saisie ne correspond pas à l'adresse email attendue !");
  928.                 $verifError true;
  929.             }elseif ($tel && $tel !== $userPhone){
  930.                 $this->addFlash('danger''⛔ Le numéro saisi ne correspond pas au numéro de téléphone attendu');
  931.                 $verifError true;
  932.             }
  934.             $tentative $session->get('tentative'0);
  935.             if ($verifError){
  936.                 $tentative++;
  937.                 $session->set('tentative'$tentative);
  938.                 $params = ['action'=>$action'hash'=>$hash.$origineLien];
  939.                 return  $this->redirectToRoute('confir_user'$params);
  940.             }
  942.             switch ($action) {
  943.                 case 'del':
  944.                     return $this->redirectToRoute('del_conv', ['hash' => $hash]);
  945.                     break;
  946.                 case 'sign':
  947.                     return $this->redirectToRoute('sign_offer', ['hash'=>$hash]);
  948.                     break;
  949.                 default:
  950.                     $this->addFlash('danger''⛔ Accès refusé');
  951.                     return $this->redirectToRoute('homepage');
  952.             }
  953.         }
  954.         $this->addFlash('danger''⛔ Accès refusé');
  955.         return $this->redirectToRoute('homepage');
  956.     }
  957.     /**
  958.      * @Route("/del_conv/key={hash}", name="del_conv")
  959.      */
  960.     public function delConvention($hashEntityManagerInterface $emOfferTenantApplicationRepository $offerTenantApplicationRepo)
  961.     {
  962.         if ($hash == null)
  963.         {
  964.             $this->addFlash('danger''Pas de hash.');
  965.             return $this->redirectToRoute('homepage');
  966.         }
  968.         $hashCheck $em->getRepository(MD5HashCheck::class)->findOneBy(['hash' => $hash]);
  969.         if ($hashCheck == null){
  970.             $this->addFlash('danger''Pas de hash.');
  971.             return $this->redirectToRoute('homepage');
  972.         }
  974.         $offer $em->getRepository(Offer::class)->find($hashCheck->getUserId());
  975.         if ($offer == null || $offer->getIsSigned()){
  976.             $this->addFlash('danger'"Cette offre n'est plus disponible ou elle est déjà signée");
  977.             return $this->redirectToRoute('homepage');
  978.         }
  980.         $offer->setIsPublished(0);
  981.         $offer->setStatus(3);
  982.         $offerTenantApplicationRepo->disableAllOfferApplications($offer->getId());
  983.         $em->persist($offer);
  984.         $em->flush();
  986.         $this->addFlash('success'"🗑️ L'offre a bien été supprimée");
  987.         return $this->redirectToRoute('homepage');
  988.     }
  989.     /**
  990.      * @Route("/sign_conv/key={hash}", name="sign_offer")
  991.      */
  992.     public function signConvention($hashRequest $requestEnumValuesRepository $valuesRepoFormLabelHydrater $hydraterSessionInterface $session)
  993.     {
  994.         // I had a perfectly working nice method, but no, I had to change it because the client is king.
  995.         if ($hash == null)
  996.         {
  997.             $this->addFlash('danger''Pas de hash.');
  998.             return $this->redirectToRoute('homepage');
  999.         }
  1000.         $offerId $this->getDoctrine()->getRepository(MD5HashCheck::class)->findOneBy(['hash' => $hash]);
  1001.         if ($offerId == null)
  1002.         {
  1004.             $this->addFlash('danger''Pas de id.');
  1005.             return $this->redirectToRoute('homepage');
  1006.         }
  1007.         $offer $this->getDoctrine()->getRepository(Offer::class)->find($offerId->getUserId());
  1008.         // if offer is already signed, what the hell are you doing here?
  1009.         if ($offer == null )
  1010.         {
  1011.             $this->addFlash('danger'"⛔ L'accès a cette offre n'est plus disponible, pour plus d'information contacter l'agence");
  1012.             return $this->redirectToRoute('homepage');
  1013.         }
  1015.         if($offer->getIsSigned() == true){
  1016.             $this->addFlash('danger'"⛔ L'accès a cette offre n'est plus disponible. L'offre a déjà été validé. Pour plus d'information contacter l'agence");
  1017.             return $this->redirectToRoute('homepage');
  1018.         }
  1019.         //Si l'offre est supprimée status = 3
  1020.         if($offer->getStatus() == 3){
  1021.             $this->addFlash('danger'"⛔ L'accès a cette offre n'est plus disponible. L'offre a déjà été supprimée. Pour plus d'information contacter l'agence");
  1022.             return $this->redirectToRoute('homepage');
  1023.         }
  1025.         if($offer->getIsPublished() == true){
  1026.             $this->addFlash('danger'"⛔ L'accès a cette offre n'est plus disponible. L'offre a déjà été publiée. Pour plus d'information contacter l'agence");
  1027.             return $this->redirectToRoute('homepage');
  1028.         }
  1030.         $user $offer->getUser();
  1031.         if ($user == null)
  1032.         {
  1034.                 $this->addFlash('danger''Impossible de trouver un propriétaire.');
  1035.             return $this->redirectToRoute('homepage');
  1036.         }
  1038.         $values $valuesRepo->findAllEnums();
  1039.         $labels $hydrater->getOfferLabels('flip');
  1041.         $form $this->createForm(SignConventionType::class, $offer);
  1042.         $form->handleRequest($request);
  1044.         $session->set('magic_access_offer_id'$offer->getId());
  1046.         return $this->render('offer/sign_offer.html.twig', [
  1047.                 'form'            => $form->createView(),
  1048.                 'formOffer'        => $this->createForm(ModalOfferType::class, $offer)->createView(),
  1049.                 'offer'            => $offer,
  1050.                 'user'            => $user,
  1051.                 'values'        => $values,
  1052.                 'labelHydrater' => $hydrater->getOfferLabels('flip'),
  1053.                 'offerDetailsLabels' => $hydrater->getOfferDetailsLabels(),
  1054.                 'nbrRooms'        => $labels['nbrRooms'],
  1055.                 'heatingType'    => $labels['heatingType'],
  1056.                 'allowUpdate'   => true,
  1057.                 'ajaxSignConventionRoute' => $this->generateUrl('ajax_sign_conv', ['id'=>$offer->getId(),'hash'=> $hash]),
  1058.             ]
  1059.         );
  1060.     }
  1062.     /**
  1063.      * @Route("/ajax-edit-landlord-contact", name="ajax_edit_landlord_contact", methods={"POST"})
  1064.      */
  1065.     public function ajaxEditLandlordContact(Request $requestOfferRepository $repoEntityManagerInterface $em)
  1066.     {
  1067.         //cas d'accès par lien magique avec le hash
  1068.         $session $request->getSession();
  1069.         $offer_id $session->get('magic_access_offer_id');
  1070.         if(!$offer_id) {
  1071.             //cas d'accès par authentification
  1072.             $offer_id $request->request->get('offer_id');
  1073.         }
  1075.         $landLordContactInfo $request->request->get('formOffer');
  1076.         $offer $repo->findOneBy(['id' => $offer_id]);
  1077.         $form $this->createForm(OfferType::class, $offer);
  1079.         // On soumet uniquement les données envoyées sans supprimer les autres champs
  1080.         $form->submit($landLordContactInfofalse);
  1082.         if ($form->isSubmitted() && $form->isValid()) {
  1083.             $em->flush();
  1084.             return new JsonResponse(['status' => 'success']);
  1085.         }
  1087.         $errors = [];
  1088.         foreach ($form->getErrors(truefalse) as $error) {
  1089.             $errors[] = $error->getMessage();
  1090.         }
  1091.         return new JsonResponse(['status' => 'error''message' => 'Form not valid''errors' => $errors], 400);
  1092.     }
  1094.     /**
  1095.      * @Route("/partial-offer-contact/{id}", name="partial_offer_contact")
  1096.      */
  1097.     public function getPartialOfferContact(Offer $offer): Response
  1098.     {
  1099.         return $this->render('partials/offer/_landlordContact.html.twig', [
  1100.             'offer' => $offer,
  1101.             'user' => $offer->getUser()
  1102.         ]);
  1103.     }
  1105.     /**
  1106.      * @Route("/ajax-edit-offer-description", name="ajax_edit_offer_description", methods={"POST"})
  1107.      */
  1108.     public function ajaxEditOfferDescription(Request $requestOfferRepository $repoEntityManagerInterface $em)
  1109.     {
  1110.         $offer_id $request->request->get('offer_id');
  1111.         $offerDescription $request->request->get('formOffer');
  1112.         $offer $repo->findOneBy(['id' => $offer_id]);
  1113.         $form $this->createForm(OfferType::class, $offer);
  1114.         $form->submit($offerDescriptionfalse);
  1116.         if ($form->isSubmitted() && $form->isValid()) {
  1117.             $em->flush();
  1118.             return new JsonResponse(['status' => 'success']);
  1119.         }
  1121.         $errors = [];
  1122.         foreach ($form->getErrors(truefalse) as $error) {
  1123.             $errors[] = $error->getMessage();
  1124.         }
  1125.         return new JsonResponse(['status' => 'error''message' => 'Form not valid''errors' => $errors], 400);
  1126.     }
  1128.     /**
  1129.      * @Route("/partial-offer-description/{id}", name="partial_offer_description")
  1130.      */
  1131.     public function getPartialOfferDescription(Offer $offerFormLabelHydrater $formLabelHydrater): Response
  1132.     {
  1133.         return $this->render('partials/offer/_description.html.twig', [
  1134.             'offer' => $offer,
  1135.             'labelHydrater' => $formLabelHydrater->getOfferLabels('flip'),
  1136.             'offerDetailsLabels' => $formLabelHydrater->getOfferDetailsLabels(),
  1137.         ]);
  1138.     }
  1140.     /**
  1141.      * @Route("/ajax-edit-offer-address", name="ajax_edit_offer_address", methods={"POST"})
  1142.      */
  1143.     public function ajaxEditOfferAddress(Request $requestOfferRepository $repoEntityManagerInterface $em): JsonResponse
  1144.     {
  1145.         $offer_id $request->request->get('offer_id');
  1146.         $offerAddress $request->request->get('formOffer');
  1147.         $offer $repo->findOneBy(['id' => $offer_id]);
  1148.         $form $this->createForm(OfferType::class, $offer);
  1149.         $form->submit($offerAddressfalse);
  1151.         if ($form->isSubmitted() && $form->isValid()) {
  1152.             $em->flush();
  1153.             return new JsonResponse(['status' => 'success']);
  1154.         }
  1156.         $errors = [];
  1157.         foreach ($form->getErrors(truefalse) as $error) {
  1158.             $errors[] = $error->getMessage();
  1159.         }
  1160.         return new JsonResponse(['status' => 'error''message' => 'Form not valid''errors' => $errors], 400);
  1161.     }
  1163.     /**
  1164.      * @Route("/partial-offer-address/{id}", name="partial_offer_address")
  1165.      */
  1166.     public function getPartialOfferAddress(Offer $offer): Response
  1167.     {
  1168.         return $this->render('partials/offer/_address.html.twig', [
  1169.             'offer' => $offer
  1170.         ]);
  1171.     }
  1173.     /**
  1174.      * @Route("/ajax-edit-offer-price", name="ajax_edit_offer_price", methods={"POST"})
  1175.      */
  1176.     public function ajaxEditOfferPrice(Request $requestOfferRepository $repoEntityManagerInterface $em): JsonResponse
  1177.     {
  1178.         $offer_id $request->request->get('offer_id');
  1179.         $offerPrice $request->request->get('formOffer');
  1180.         $offer $repo->findOneBy(['id' => $offer_id]);
  1181.         $form $this->createForm(OfferType::class, $offer);
  1182.         $form->submit($offerPricefalse);
  1184.         if ($form->isSubmitted() && $form->isValid()) {
  1185.             $em->flush();
  1186.             return new JsonResponse(['status' => 'success']);
  1187.         }
  1189.         $errors = [];
  1190.         foreach ($form->getErrors(truefalse) as $error) {
  1191.             $errors[] = $error->getMessage();
  1192.         }
  1193.         return new JsonResponse(['status' => 'error''message' => 'Form not valid''errors' => $errors], 400);
  1194.     }
  1196.     /**
  1197.      * @Route("/partial-offer-price/{id}", name="partial_offer_price")
  1198.      */
  1199.     public function getPartialOfferPrice(Offer $offer): Response
  1200.     {
  1201.         return $this->render('partials/offer/_price.html.twig', [
  1202.             'offer' => $offer
  1203.         ]);
  1204.     }
  1205.     /**
  1206.      * @Route("/ajax-reset-consumption-emission/{id}", name="ajax_reset_consumption_emission")
  1207.      */
  1208.     public function ajaxResetConsumptionEmission(Offer $offerEntityManagerInterface $emRequest $request):JsonResponse
  1209.     {
  1210.         $resetValue $request->request->get('reset');
  1211.         $offerDetails $offer->getDetails();
  1212.         $offerDetails->setEnergyConsumption($resetValue);
  1213.         $offerDetails->setGhgEmission($resetValue);
  1214.         $em->flush();
  1215.         return new JsonResponse(['status' => 'success']);
  1216.     }
  1218.     /**
  1219.      * @Route("/ajax-update-energy-consumption/{id}", name="ajax_update_energy_consumption")
  1220.      */
  1221.     public function ajaxUpdateEnergyConsumption(Offer $offerRequest $requestEntityManagerInterface $em) : JsonResponse
  1222.     {
  1223.         $offerDetails $offer->getDetails();
  1224.         $offerDetails->setEnergyConsumption($request->request->get('consumption'));
  1225.         $em->flush();
  1226.         return new JsonResponse(['status' => 'success']);
  1227.     }
  1229.     /**
  1230.      * @Route("/ajax-update-emission/{id}", name="ajax_update_emission")
  1231.      */
  1232.     public function ajaxUpdateEmission(Offer $offerRequest $requestEntityManagerInterface $em) : JsonResponse
  1233.     {
  1234.         $offerDetails $offer->getDetails();
  1235.         $offerDetails->setGhgEmission($request->request->get('emission'));
  1236.         $em->flush();
  1237.         return new JsonResponse(['status' => 'success']);
  1238.     }
  1240.     /**
  1241.      * @Route("/offer-image/remove/{id}", name="offer_remove_image", methods={"POST"})
  1242.      */
  1243.     public function ajaxRemoveOfferImage(OfferImage $offerImageFilesystem $filesystemEntityManagerInterface $em):JsonResponse
  1244.     {
  1246.         if (!$offerImage) {
  1247.             return new JsonResponse(['status' => 'error''message' => 'Image not found'], 404);
  1248.         }
  1250.         $filePath $this->getParameter('kernel.project_dir').'/public'.$offerImage->getFullPath();
  1251.         if ($filesystem->exists($filePath)) {
  1252.             $filesystem->remove($filePath);
  1253.         }
  1255.         $em->remove($offerImage);
  1256.         $em->flush();
  1257.         return new JsonResponse(['status' => 'success']);
  1258.     }
  1260.     /**
  1261.      * @Route("/partial-offer-images/{id}", name="partial_offer_images")
  1262.      */
  1263.     public function getPartialOfferPhotos(Offer $offer)
  1264.     {
  1265.         return $this->render('partials/offer/_offerPhotos.html.twig', ['offer'=>$offer'allowUpdate'   => true,]);
  1266.     }
  1268.     /**
  1269.      * @Route("/offer/{id}/upload-image", name="offer_upload_image", methods={"POST"})
  1270.      */
  1271.     public function uploadImage(Request $requestOffer $offerEntityManagerInterface $em)
  1272.     {
  1273.         $uploadedFiles $request->files->get('files');
  1274.         if (!$uploadedFiles) {
  1275.             return new JsonResponse(['status' => 'error''message' =>"Aucun fichier n'a été téléchargé."], 500);
  1276.         }else {
  1277.             //Modification pour avoir le path d'upload sous forme de /offer-images/yyyy/mm/file.extension
  1278.             //préparation du path
  1279.             $publicDirectory $this->getParameter('kernel.project_dir').'/public';
  1280.             $offerImagesDirectory $this->getParameter('offer_images_directory').date('/Y/m');
  1281.             $uploadDirectory $publicDirectory.$offerImagesDirectory;
  1282.             if(!is_dir($uploadDirectory)) {
  1283.                 mkdir($uploadDirectory0777true);
  1284.             }
  1285.             foreach ($uploadedFiles as $file)
  1286.             {
  1287.                 if ($file->isValid()) {
  1288.                     $newFilename uniqid();
  1289.                     $fileExtension $file->guessExtension();
  1290.                     try {
  1291.                         $file->move(
  1292.                             $uploadDirectory,
  1293.                             $newFilename '.' $fileExtension
  1294.                         );
  1295.                         // Créer une nouvelle instance de l'entité OfferImage
  1296.                         $offerImage = new OfferImage();
  1297.                         $offerImage->setFilename($offerImagesDirectory.'/'.$newFilename'.' $fileExtension);
  1298.                         $offerImage->setOffer($offer);
  1300.                         // Enregistre l'entité en base de données
  1301.                         $em->persist($offerImage);
  1302.                         $em->flush();
  1304.                     } catch (FileException $e) {
  1305.                         return new JsonResponse(['status' => 'error''message' => $e->getMessage()], 500);
  1306.                     }
  1307.                 }else {
  1308.                     return new JsonResponse(['status' => 'error''message' => 'Invalid file'], 400);
  1309.                 }
  1310.             }
  1311.         }
  1312.         return new JsonResponse(['status' => 'success']);
  1313.     }
  1315.     /**
  1316.      * @Route("/proprietaire/questionnaire/key={token};app={appId}", name="landlord_quizz")
  1317.      * @ParamConverter("app", options={"mapping"={"appId"="id"}})
  1318.      */
  1319.     public function        landlordQuizz(User $landlord nullOfferTenantApplication $app nullSecurizer $securizerUserRepository $uRepoAgencyRepository $aRepoOfferRepository $oRepoRequest $requestCustomMailer $mailer)
  1320.     {
  1321.         if ($app == null || $landlord == null)
  1322.         {
  1323.             $this->addFlash('danger''Un problème a été rencontré avec cette application, le questionnaire est par conséquent inaccessible.');
  1324.             return $this->redirectToRoute('homepage');
  1325.         }
  1327.         // Create user for login event
  1328.         $token = new UsernamePasswordToken($landlord$landlord->getPassword(), "main"$landlord->getRoles());
  1329.         $this->get("security.token_storage")->setToken($token);
  1331.         // Fire the login event
  1332.         $event = new InteractiveLoginEvent($request$token);
  1333.         $dispatcher = new EventDispatcher();
  1334.         $dispatcher->dispatch($event"security.interactive_login");
  1336.         if ($landlord->getId() != $app->getLandlordId())
  1337.         {
  1338.             $this->addFlash('danger''Vous n\'avez pas le droit d\'accéder à ce questionnaire.');
  1339.             return $this->redirectToRoute('homepage');
  1340.         }
  1342.         $tenant        $uRepo->find($app->getTenantId());
  1343.         $offer        $oRepo->find($app->getOfferId());
  1345.         // check that we have the landlord, the tenant and the offer entities
  1346.         if ($tenant == null || $offer == null)
  1347.         {
  1348.             $this->addFlash('danger''Un problème a été rencontré avec cette application, le questionnaire est par conséquent inaccessible.');
  1349.             return $this->redirectToRoute('homepage');
  1350.         }
  1352.         $form $this->createFormBuilder([])
  1353.             ->add('name'TextType::class, [
  1354.                 'label'                => 'Nom du futur locataire',
  1355.                 'constraints'            => [
  1356.                     new Type('string'),
  1357.                     new NotBlank([
  1358.                         'message'        => "Veuillez renseigner le nom."
  1359.                     ]),
  1360.                 ],
  1361.                 'required'            => true,
  1362.             ])
  1363.             ->getForm();
  1365.         $form->handleRequest($request);
  1367.         if ($form->isSubmitted() && $form->isValid()) {
  1368.             // data is an array with "name", "email", and "message" keys
  1369.             $data $form->getData();
  1370.             $name $data['name'];
  1371.             $agencyMail $aRepo->find($offer->getAgency())->getEmail();
  1372.             $mailer->sendVisitSuccessful($landlord$offer$name$agencyMail);
  1373.             return $this->redirectToRoute('landlord_profile', ['id' => $landlord->getId()]);
  1374.         }
  1376.         return $this->render('landlord/landlord_quizz.html.twig', [
  1377.             'landlordId'    => $landlord->getId(),
  1378.             'tenantId'        => $tenant->getId(),
  1379.             'offerId'        => $offer->getId(),
  1380.             'appId'            => $app->getId(),
  1381.             'form'            => $form->createView(),
  1382.         ]);
  1383.     }
  1385.     /**
  1386.      * @Route("/locataire/questionnaire/key={token};app={appId}", name="tenant_quizz")
  1387.      * @ParamConverter("app", options={"mapping"={"appId"="id"}})
  1388.      */
  1389.     public function        tenantQuizz(User $tenant nullOfferTenantApplication $app nullSecurizer $securizerUserRepository $uRepoAgencyRepository $aRepoOfferRepository $oRepoRequest $requestCustomMailer $mailer)
  1390.     {
  1391.         if ($app == null || $tenant == null)
  1392.         {
  1393.             $this->addFlash('danger''Un problème a été rencontré avec cette application, le questionnaire est par conséquent inaccessible.');
  1394.             return $this->redirectToRoute('homepage');
  1395.         }
  1397.         // Create user for login event
  1398.         $token = new UsernamePasswordToken($tenant$tenant->getPassword(), "main"$tenant->getRoles());
  1399.         $this->get("security.token_storage")->setToken($token);
  1401.         // Fire the login event
  1402.         $event = new InteractiveLoginEvent($request$token);
  1403.         $dispatcher = new EventDispatcher();
  1404.         $dispatcher->dispatch($event"security.interactive_login");
  1406.         if ($tenant->getId() != $app->getTenantId())
  1407.         {
  1408.             $this->addFlash('danger''Vous n\'avez pas le droit d\'accéder à ce questionnaire.');
  1409.             return $this->redirectToRoute('homepage');
  1410.         }
  1412.         $landlord    $uRepo->find($app->getLandlordId());
  1413.         $offer        $oRepo->find($app->getOfferId());
  1415.         // check that we have the landlord, the tenant and the offer entities
  1416.         if ($landlord == null || $offer == null)
  1417.         {
  1418.             $this->addFlash('danger''Un problème a été rencontré avec cette application, le questionnaire est par conséquent inaccessible.');
  1419.             return $this->redirectToRoute('homepage');
  1420.         }
  1422.         $form $this->createFormBuilder([])
  1423.             ->add('name'TextType::class, [
  1424.                 'label'                => 'Nom du futur locataire',
  1425.                 'constraints'            => [
  1426.                     new Type('string'),
  1427.                     new NotBlank([
  1428.                         'message'        => "Veuillez renseigner le nom."
  1429.                     ]),
  1430.                 ],
  1431.                 'required'            => true,
  1432.             ])
  1433.             ->getForm();
  1435.         $form->handleRequest($request);
  1437.         if ($form->isSubmitted() && $form->isValid()) {
  1438.             // data is an array with "name", "email", and "message" keys
  1439.             $data $form->getData();
  1440.             $name $data['name'];
  1441.             $agencyMail $aRepo->find($offer->getAgency())->getEmail();
  1442.             $mailer->sendVisitSuccessful($landlord$offer$name$agencyMail);
  1443.             return $this->redirectToRoute('tenant_profile', ['id' => $tenant->getId()]);
  1444.         }
  1446.         return $this->render('landlord/landlord_quizz.html.twig', [
  1447.             'landlordId'    => $landlord->getId(),
  1448.             'tenantId'        => $tenant->getId(),
  1449.             'offerId'        => $offer->getId(),
  1450.             'appId'            => $app->getId(),
  1451.             'form'            => $form->createView(),
  1452.         ]);
  1453.     }
  1455.     /**
  1456.      * @Route("/mentions-legales", name="mentions_legales")
  1457.      */
  1458.     public function mentionsLegales(): Response
  1459.     {
  1460.         return $this->render('pages/mentions-legales.html.twig');
  1461.     }
  1462.     /**
  1463.      * @Route("/honoraires", name="honoraires")
  1464.      */
  1465.     public function honoraires(): Response
  1466.     {
  1467.         return $this->render('pages/honoraires.html.twig');
  1468.     }
  1469.     /**
  1470.      * @Route("/service-descriptif", name="service_descriptif")
  1471.      */
  1472.     public function serviceDescriptif(): Response
  1473.     {
  1474.         return $this->render('pages/service-descriptif.html.twig');
  1475.     }
  1476. }