vendor/uvdesk/api-bundle/API/Sessions.php line 17

Open in your IDE?
  1. <?php
  3. namespace Webkul\UVDesk\ApiBundle\API;
  5. use Doctrine\ORM\EntityManagerInterface;
  6. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Symfony\Component\HttpFoundation\Response;
  9. use Symfony\Component\HttpFoundation\JsonResponse;
  10. use Webkul\UVDesk\ApiBundle\Entity\ApiAccessCredential;
  11. use Webkul\UVDesk\CoreFrameworkBundle\Entity\User;
  12. use Webkul\UVDesk\CoreFrameworkBundle\Utils\TokenGenerator;
  13. use Webkul\UVDesk\CoreFrameworkBundle\Services\UVDeskService as Uvdesk;
  15. class Sessions extends AbstractController
  16. {
  17. public function loginSession(Request $request, EntityManagerInterface $entityManager, Uvdesk $uvdesk)
  18. {
  19. $user = $this->getUser();
  20. $userInstance = $user->getCurrentInstance();
  22. if (empty($user)) {
  23. return new JsonResponse([
  24. 'success' => false,
  25. 'message' => "Invalid or no user credentials were provided.",
  26. ], 403);
  27. }
  29. $accessCredential = new ApiAccessCredential();
  30. $accessCredential
  31. ->setUser($user)
  32. ->setName('API Session')
  33. ->setToken(strtoupper(TokenGenerator::generateToken(64)))
  34. ->setCreatedOn(new \DateTime('now'))
  35. ->setIsEnabled(true)
  36. ->setIsExpired(false)
  37. ;
  39. $entityManager->persist($accessCredential);
  40. $entityManager->flush();
  42. return new JsonResponse([
  43. 'success' => true,
  44. 'accessToken' => $accessCredential->getToken(),
  45. 'scopes' => $uvdesk->getAvailableUserAccessScopes($user, $userInstance),
  46. ]);
  47. }
  49. public function logoutSession(Request $request, EntityManagerInterface $entityManager)
  50. {
  51. $user = $this->getUser();
  53. $accessToken = null;
  54. $authorization = $request->headers->get('Authorization');
  56. if (!empty($authorization) && strpos(strtolower($authorization), 'basic') === 0) {
  57. $accessToken = substr($authorization, 6);
  58. } else if (!empty($authorization) && strpos(strtolower($authorization), 'bearer') === 0) {
  59. $accessToken = substr($authorization, 7);
  60. }
  62. if (empty($accessToken)) {
  63. return new JsonResponse([
  64. 'success' => false,
  65. 'message' => "Unsupported or invalid credentials provided.",
  66. ]);
  67. }
  69. $apiAccessCredential = $entityManager->getRepository(ApiAccessCredential::class)->findOneByToken($accessToken);
  71. if (empty($apiAccessCredential)) {
  72. return new JsonResponse([
  73. 'success' => false,
  74. 'message' => "Invalid credentials provided.",
  75. ]);
  76. }
  78. $apiAccessCredential
  79. ->setIsEnabled(false)
  80. ->setIsExpired(true)
  81. ;
  83. $entityManager->persist($apiAccessCredential);
  84. $entityManager->flush();
  86. return new JsonResponse([
  87. 'status' => true,
  88. 'message' => 'Session token has been expired successfully.'
  89. ]);
  90. }
  91. }