src/Controller/DefaultController.php line 51

Open in your IDE?
  1. <?php
  3. namespace MedBrief\MSR\Controller;
  5. use DateTime;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Exception;
  8. use MedBrief\MSR\Controller\BaseController as Controller;
  9. use MedBrief\MSR\Entity\Analytics\AnalyticsReport;
  10. use MedBrief\MSR\Entity\Invitation;
  11. use MedBrief\MSR\Entity\Project;
  12. use MedBrief\MSR\Entity\RoleInvitation;
  13. use MedBrief\MSR\Entity\User;
  14. use MedBrief\MSR\Form\ChangePasswordFormType;
  15. use MedBrief\MSR\Form\Filter\MatterFilterType;
  16. use MedBrief\MSR\Form\Order\MatterOrderType;
  17. use MedBrief\MSR\Repository\ProjectRepository;
  18. use MedBrief\MSR\Repository\RoleInvitationRepository;
  19. use MedBrief\MSR\Repository\SystemNotificationRepository;
  20. use MedBrief\MSR\Service\Analytics\AnalyticsService;
  21. use MedBrief\MSR\Service\Analytics\Model\AnalyticsEmbeddedReport;
  22. use MedBrief\MSR\Service\DeviceDetectorService;
  23. use MedBrief\MSR\Service\EntityHelper\ProjectHelper;
  24. use MedBrief\MSR\Service\EntityHelper\UserHelper;
  25. use MedBrief\MSR\Service\LicenceRenewal\RenewalHelperService;
  26. use MedBrief\MSR\Service\Role\RoleParserService;
  27. use MedBrief\MSR\Traits\PaginatorAwareTrait;
  28. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  29. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  30. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  31. use Symfony\Component\HttpFoundation\Cookie;
  32. use Symfony\Component\HttpFoundation\JsonResponse;
  33. use Symfony\Component\HttpFoundation\RedirectResponse;
  34. use Symfony\Component\HttpFoundation\Request;
  35. use Symfony\Component\HttpFoundation\Response;
  36. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  37. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  38. use Symfony\Component\Security\Guard\Token\PostAuthenticationGuardToken;
  39. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  41. class DefaultController extends Controller
  42. {
  43. use PaginatorAwareTrait;
  45. /**
  46. * When the user navigates to the MedBrief home page, if they are logged in, then we
  47. * log them out. We then redirect to login. This is per Steve England's
  48. * request that for security purposes, when the landing page is hit, we log
  49. * users out.
  50. */
  51. public function indexAction(): JsonResponse|RedirectResponse
  52. {
  53. // if the user is currently logged in
  54. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  55. // Forward to the dashboard. We used to log the user out but this caused more problems than it solved.
  56. return $this->redirectWithAjaxSupport($this->generateUrl('infology_medbrief_dashboard'));
  57. }
  59. // if we have a redirect page specified in the parameters
  60. $redirectUrl = $this->getParameter('root_page_redirect_url');
  61. if ($redirectUrl) {
  62. // redirect the user to it
  63. return $this->redirectWithAjaxSupport($redirectUrl);
  64. }
  65. // otherwise just sent them to login
  66. return $this->redirectWithAjaxSupport($this->generateUrl('login'));
  67. }
  69. /**
  70. * @param EntityManagerInterface $entityManager
  71. * @param AnalyticsService $analyticsService
  72. * @param UserHelper $userHelper
  73. * @param ProjectRepository $projectRepository
  74. * @param RoleInvitationRepository $roleInvitationRepository
  75. * @param SystemNotificationRepository $systemNotificationRepository
  76. * @param RoleParserService $roleParser
  77. * @param RenewalHelperService $renewalHelperService
  78. * @param Request $request
  79. * @param ProjectHelper $projectHelper
  80. *
  81. * @throws Exception
  82. *
  83. */
  84. public function dashboardAction(
  85. AnalyticsService $analyticsService,
  86. UserHelper $userHelper,
  87. ProjectRepository $projectRepository,
  88. RoleInvitationRepository $roleInvitationRepository,
  89. SystemNotificationRepository $systemNotificationRepository,
  90. RoleParserService $roleParser,
  91. RenewalHelperService $renewalHelperService,
  92. ProjectHelper $projectHelper,
  93. Request $request
  94. ): JsonResponse|RedirectResponse|Response {
  95. // Redirect to pending invitations page if User has pending role invitations.
  96. if ($this->userHasPendingInvitations()) {
  97. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  98. }
  100. /** @var User $user */
  101. $user = $this->getUser();
  102. $userHelper->setUser($user);
  104. // If the user has 2FA enabled and is rate limited, redirect them to the login page.
  105. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('rateLimited')) {
  106. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times. Please try again in fifteen minutes.');
  107. return $this->redirectToRoute('logout');
  108. }
  110. // If the user has 2FA enabled and their IP Address has been blacklisted, redirect them to the login page.
  111. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('ipBlacklisted')) {
  112. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times from this IP Address. Please try again in fifteen minutes.');
  113. return $this->redirectToRoute('logout');
  114. }
  116. $analyticsEmbeddedReport = $analyticsService->generateAnalyticsEmbeddedReport($user, AnalyticsReport::REPORT_TYPE_DASHBOARD);
  118. // We use this to determine if we should display the 'Explore Analytics' button.
  119. $analyticsEmbeddedReportMain = $analyticsService->generateAnalyticsEmbeddedReport($user, AnalyticsReport::REPORT_TYPE_MAIN);
  121. $recentlyViewedProjects = $this->getRecentlyViewedProjects($projectRepository, $userHelper, $projectHelper, false)['projects'];
  122. $favouriteProjects = $this->getFavouriteProjects($projectHelper, false)['projects'];
  123. $recentlyAcceptedProjects = $this->getRecentlyAcceptedProjects($roleInvitationRepository, $roleParser, $projectHelper, false)['projects'];
  125. $recentlyViewedProjectCount = count($recentlyViewedProjects);
  126. $favouritesCount = count($favouriteProjects);
  127. $recentlyAcceptedCount = count($recentlyAcceptedProjects);
  128. $renewalsCount = $projectRepository->countRenewalsDueWithin30DaysForUser($userHelper);
  130. // Create a combined array of all unique Projects fetched in this controller action.
  131. $uniqueProjects = array_unique(array_merge(
  132. $recentlyViewedProjects,
  133. $favouriteProjects,
  134. $recentlyAcceptedProjects,
  135. ));
  137. $grossTotalProjectsCount = count($uniqueProjects);
  139. // All Projects that have a renewal date
  140. $eligibleProjects = $this->getEligibleRenewalProjects($uniqueProjects, $renewalHelperService);
  142. // Get the latest active system notification
  143. $systemNotification = $systemNotificationRepository->findLatestSystemNotification();
  145. /**
  146. * Create a form we will use to allow the user to Filter this list
  147. */
  148. $filterForm = $this->createForm(MatterFilterType::class, null, [
  149. 'userHelper' => $userHelper,
  150. 'em' => $this->getDoctrine()->getManager(),
  151. ]);
  153. // Create and user a form to order this list
  154. $orderForm = $this->createForm(MatterOrderType::class);
  156. $isExpert = $user->isExpertOnly() || $user->isExpertViewerOnly();
  158. // Order A applies to all user roles, excluding the two expert user roles
  159. // Order B applies to the two expert user roles only
  160. $tabOrder = $isExpert ? 'order-b' : 'order-a';
  162. return $this->renderTurbo('Default/dashboard.html.twig', [
  163. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  164. 'filterForm' => $filterForm->createView(),
  165. 'orderForm' => $orderForm->createView(),
  166. 'systemNotification' => $systemNotification,
  167. 'analyticsEmbeddedReport' => $analyticsEmbeddedReport,
  168. 'analyticsEmbeddedReportMain' => $analyticsEmbeddedReportMain,
  169. 'recentlyViewedCount' => $recentlyViewedProjectCount,
  170. 'recentlyAcceptedCount' => $recentlyAcceptedCount,
  171. 'favouritesCount' => $favouritesCount,
  172. 'renewalsCount' => $renewalsCount,
  173. 'grossTotalProjectsCount' => $grossTotalProjectsCount,
  174. 'tabOrder' => $tabOrder,
  175. 'isExpert' => $isExpert,
  177. ]);
  178. }
  180. /**
  181. * List Matters most recently viewed
  182. *
  183. * @Template("Default/Partials/viewedTab.html.twig")
  184. *
  185. * @param RoleInvitationRepository $roleInvitationRepository
  186. * @param RoleParserService $roleParser
  187. * @param UserHelper $userHelper
  188. * @param ProjectRepository $projectRepository
  189. * @param RenewalHelperService $renewalHelperService
  190. * @param ProjectHelper $projectHelper
  191. *
  192. * @throws Exception
  193. *
  194. */
  195. public function dashboardViewedAjaxAction(
  196. UserHelper $userHelper,
  197. ProjectRepository $projectRepository,
  198. RenewalHelperService $renewalHelperService,
  199. ProjectHelper $projectHelper,
  200. ): JsonResponse|RedirectResponse|array {
  201. // Redirect to pending invitations page if User has pending role invitations.
  202. if ($this->userHasPendingInvitations()) {
  203. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  204. }
  206. $userHelper->setUser($this->getUser());
  208. $recentlyViewed = $this->getRecentlyViewedProjects($projectRepository, $userHelper, $projectHelper);
  209. $recentlyViewedProjects = $recentlyViewed['projects'];
  210. $userType = $recentlyViewed['userType'];
  212. // Return if no qualifying Projects
  213. if ($recentlyViewedProjects === []) {
  214. return [
  215. 'blurb' => 'You do not have any recently viewed matters.',
  216. ];
  217. }
  219. // All Projects that have a renewal date
  220. $eligibleProjects = $this->getEligibleRenewalProjects($recentlyViewedProjects, $renewalHelperService);
  222. return [
  223. 'projects' => $recentlyViewedProjects,
  224. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  225. 'blurb' => 'Most recently viewed matters (up to 20).',
  226. 'userType' => $userType,
  227. ];
  229. }
  231. /**
  232. * List the User's favourite Matters
  233. *
  234. * @Template("Default/Partials/favouritesTab.html.twig")
  235. *
  236. * @param Request $request
  237. * @param RenewalHelperService $renewalHelperService
  238. * @param ProjectHelper $projectHelper
  239. *
  240. * @throws Exception
  241. */
  242. public function dashboardFavouritesAjaxAction(Request $request, RenewalHelperService $renewalHelperService, ProjectHelper $projectHelper): JsonResponse|RedirectResponse|array
  243. {
  244. // Redirect to pending invitations page if User has pending role invitations.
  245. if ($this->userHasPendingInvitations()) {
  246. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  247. }
  249. $favouriteProjectsArray = $this->getFavouriteProjects($projectHelper);
  250. $favouriteProjects = $favouriteProjectsArray['projects'];
  251. $userType = $favouriteProjectsArray['userType'];
  253. // Return if no qualifying Projects
  254. if ($favouriteProjects === []) {
  255. return [
  256. 'blurb' => 'You do not have any matters added as a favourite.',
  257. ];
  258. }
  260. // All favourite Projects that have a renewal date
  261. $eligibleProjects = $this->getEligibleRenewalProjects($favouriteProjects, $renewalHelperService);
  262. $projectCount = count($favouriteProjects);
  263. $blurbText = $projectCount === 1 ? '1 Matter added as a favourite.' : sprintf('%d %s', $projectCount, 'Matters added as a favourite.');
  265. // Paginate with a specific page and limit
  266. $pagination = $this->paginator->paginate(
  267. $favouriteProjects, // the array to paginate
  268. $request->query->getInt('page', 1), // current page number, default is 1
  269. 10 // items per page
  270. );
  272. return [
  273. 'pagination' => $pagination,
  274. 'totalProjectCount' => $projectCount,
  275. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  276. 'blurb' => $blurbText,
  277. 'userType' => $userType,
  278. ];
  279. }
  281. /**
  282. * List Matters accepted in the past 30 days
  283. *
  284. * @Template("Default/Partials/invitationsTab.html.twig")
  285. *
  286. * @param Request $request
  287. * @param RoleInvitationRepository $roleInvitationRepository
  288. * @param RoleParserService $roleParser
  289. * @param RenewalHelperService $renewalHelperService
  290. * @param ProjectHelper $projectHelper
  291. *
  292. * @throws Exception
  293. */
  294. public function dashboardInvitationsAjaxAction(
  295. Request $request,
  296. RoleInvitationRepository $roleInvitationRepository,
  297. RoleParserService $roleParser,
  298. RenewalHelperService $renewalHelperService,
  299. ProjectHelper $projectHelper
  300. ): JsonResponse|RedirectResponse|array {
  301. // Redirect to pending invitations page if User has pending role invitations.
  302. if ($this->userHasPendingInvitations()) {
  303. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  304. }
  306. $recentlyAcceptedArray = $this->getRecentlyAcceptedProjects($roleInvitationRepository, $roleParser, $projectHelper);
  307. $recentlyAccepted = $recentlyAcceptedArray['projects'];
  308. $userType = $recentlyAcceptedArray['userType'];
  310. // Return if no qualifying Projects
  311. if ($recentlyAccepted === []) {
  312. return [
  313. 'blurb' => 'You have not accepted any invitations in the last 30 days.',
  314. ];
  315. }
  317. // All recently accepted Projects that have a renewal date
  318. $eligibleProjects = $this->getEligibleRenewalProjects($recentlyAccepted, $renewalHelperService);
  319. $projectCount = count($recentlyAccepted);
  320. $blurbText = $projectCount === 1 ? '1 Invitation accepted in the last 30 days.' : sprintf('%d %s', $projectCount, 'Invitations accepted in the last 30 days.');
  322. // Paginate with a specific page and limit
  323. $pagination = $this->paginator->paginate(
  324. $recentlyAccepted, // the array to paginate
  325. $request->query->getInt('page', 1), // current page number, default is 1
  326. 10 // items per page
  327. );
  329. return [
  330. 'pagination' => $pagination,
  331. 'totalProjectCount' => $projectCount,
  332. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  333. 'blurb' => $blurbText,
  334. 'userType' => $userType,
  335. ];
  336. }
  338. /**
  339. * List Matters due for renewal
  340. *
  341. * @Template("Default/Partials/renewalsTab.html.twig")
  342. *
  343. * @param Request $request
  344. * @param ProjectRepository $projectRepository
  345. * @param UserHelper $userHelper
  346. * @param ProjectHelper $projectHelper
  347. *
  348. * @return array
  349. */
  350. public function dashboardRenewalsAjaxAction(Request $request, ProjectRepository $projectRepository, UserHelper $userHelper, ProjectHelper $projectHelper): RedirectResponse|array
  351. {
  352. // Redirect to pending invitations page if User has pending role invitations.
  353. if ($this->userHasPendingInvitations()) {
  354. return $this->redirect($this->pendingInvitationsUrlWithFlash());
  355. }
  357. $userHelper->setUser($this->getUser());
  359. // All Projects that are due for renewal within the next 30 days
  360. $renewalProjects = $projectRepository->findRenewalsDueWithin30DaysForUser($userHelper);
  361. $projectCount = count($renewalProjects);
  362. $blurbText = $projectCount === 1 ? '1 Matter due for renewal within the next 30 days.' : sprintf('%d %s', $projectCount, 'Matters due for renewal within the next 30 days.');
  364. // Return if no qualifying Projects
  365. if (empty($renewalProjects)) {
  366. return [
  367. 'blurb' => 'There are no matters due for renewal in the next 30 days.',
  368. ];
  369. }
  371. // Paginate with a specific page and limit
  372. $pagination = $this->paginator->paginate(
  373. $renewalProjects, // the array to paginate
  374. $request->query->getInt('page', 1), // current page number, default is 1
  375. 10 // items per page
  376. );
  378. // Determine user type for displaying unread message counts (firm/expert)
  379. // This also sets the unread message counts on each Project entity
  380. $userType = $projectHelper->setUnreadMessageCountAndGetUserType(iterator_to_array($pagination), $this->getUser());
  382. return [
  383. 'pagination' => $pagination,
  384. 'totalProjectCount' => $projectCount,
  385. 'eligibleProjectsToDisplayRenewalDate' => $renewalProjects,
  386. 'blurb' => $blurbText,
  387. 'userType' => $userType,
  388. ];
  389. }
  391. /**
  392. * @Template("Default/analytics.html.twig")
  393. *
  394. * @Security("is_granted('IS_AUTHENTICATED_REMEMBERED')")
  395. *
  396. * @param AnalyticsService $analyticsService
  397. */
  398. public function analyticsAction(AnalyticsService $analyticsService): RedirectResponse|array
  399. {
  400. $analyticsEmbeddedReport = $analyticsService->generateAnalyticsEmbeddedReport($this->getUser(), AnalyticsReport::REPORT_TYPE_MAIN);
  401. if (!$analyticsEmbeddedReport instanceof AnalyticsEmbeddedReport) {
  402. $this->addFlash('warning', 'No Analytics Report for this case');
  403. return $this->redirectToRoute('infology_medbrief_dashboard');
  404. }
  405. return [
  406. 'analyticsEmbeddedReport' => $analyticsEmbeddedReport,
  407. ];
  408. }
  410. /**
  411. * This action is the click through from the email that is sent to a user asking
  412. * them to finalise their registration in order to enable their account
  413. *
  414. * @Template("Default/enableAccount.html.twig")
  415. *
  416. * @param Request $request
  417. * @param TokenStorageInterface $tokenStorage
  418. * @param EventDispatcherInterface $eventDispatcher
  419. * @param EntityManagerInterface $entityManager
  420. * @param UserPasswordEncoderInterface $userPasswordEncoder
  421. * @param UserHelper $userHelper
  422. *
  423. * @throws Exception
  424. */
  425. public function enableAccountAction(
  426. Request $request,
  427. TokenStorageInterface $tokenStorage,
  428. EventDispatcherInterface $eventDispatcher,
  429. EntityManagerInterface $entityManager,
  430. UserPasswordEncoderInterface $userPasswordEncoder,
  431. UserHelper $userHelper
  432. ): RedirectResponse|array {
  433. // if the user is logged in
  434. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  435. // log them out
  436. $tokenStorage->setToken();
  437. $request->getSession()->invalidate();
  439. // redirect them back here
  440. return $this->redirect($request->getRequestUri());
  441. }
  443. // grab the invitation code from the URL
  444. $invitationCode = $request->query->get('i');
  446. // if none was provided, we have a problem
  447. if (empty($invitationCode)) {
  448. throw $this->createNotFoundException('Invitation could not be found.');
  449. }
  451. // try to find a matching invitation
  452. $invitation = $this->getDoctrine()->getRepository(Invitation::class)->findOneByCode($invitationCode);
  454. // if we cant find one, we have a problem
  455. if (!$invitation) {
  456. throw $this->createNotFoundException('Unable to find Invitation.');
  457. }
  459. // try to find a user who matches this invitation
  460. $matchingUser = $entityManager->getRepository(User::class)
  461. ->findOneByEmail($invitation->getEmail())
  462. ;
  464. if (!$matchingUser) {
  465. throw $this->createNotFoundException('Unable to find User.');
  466. }
  468. // if the user is already enabled, then we assume this invitation has been processed already
  469. if ($matchingUser->isEnabled()) {
  470. return $this->redirectToRoute('infology_medbrief_invitation_already_processed');
  471. }
  473. // if we get here then we have found a user who is not yet enabled and may now complete their registration
  474. $form = $this->createForm(ChangePasswordFormType::class, $matchingUser, [
  475. 'action' => $this->generateUrl('infology_medbrief_user_complete_registration', ['id' => $matchingUser->getId()]),
  476. ]);
  478. $form->handleRequest($request);
  480. if ($form->isSubmitted() && $form->isValid()) {
  482. // Accept the Medbrief policies
  483. $userHelper->acceptDeclineMedbriefPolicies($matchingUser);
  485. $encodedPassword = $userPasswordEncoder->encodePassword(
  486. $matchingUser,
  487. $form->get('plainPassword')->getData()
  488. );
  490. // Set the password
  491. $matchingUser->setPassword($encodedPassword);
  493. // set the user enabled now
  494. $matchingUser->setEnabled(true);
  495. $entityManager->flush();
  497. // log the user in
  498. $token = new PostAuthenticationGuardToken($matchingUser, 'main', $matchingUser->getRoles());
  499. $tokenStorage->setToken($token); //now the user is logged in
  501. //now dispatch the login event
  502. $eventDispatcher->dispatch(
  503. new InteractiveLoginEvent($request, $token),
  504. 'security.interactive_login'
  505. );
  507. // Determine if th user requires 2FA to be enabled (if they don't already) and store it in the session
  508. // to prevent navigating to any part of the site, except the 2FA enable page, or logout page.
  509. // @see MedBrief\MSR\EventSubscriber\Enforce2FASubscriber
  510. /** @var User $user */
  511. $user = $this->getUser();
  512. $userHelper->setUser($user);
  514. if ($userHelper->twoFactoryAuthEnabledUser() && !$user->hasMultiMfaEnabled()) {
  515. $request->getSession()->set('enforce-two-factor-authentication-detail', [
  516. '2faRequired' => true,
  517. 'targetPath' => null,
  518. ]);
  520. return $this->redirectToRoute('mfa_enable_force');
  521. }
  523. // If the user has 2FA enabled and is rate limited, redirect them to the login page.
  524. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('rateLimited')) {
  525. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times. Please try again in five minutes.');
  526. return $this->redirectToRoute('logout');
  527. }
  529. // If the user has 2FA enabled and their IP Address has been blacklisted, redirect them to the login page.
  530. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('ipBlacklisted')) {
  531. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times from this IP address. Please try again in fifteen minutes.');
  532. return $this->redirectToRoute('logout');
  533. }
  535. return $this->redirectToRoute('infology_medbrief_dashboard');
  536. }
  538. return [
  539. 'user' => $matchingUser,
  540. 'form' => $form->createView(),
  541. ];
  542. }
  544. /**
  545. * Is the user logged in?
  546. *
  547. *
  548. *
  549. * @param Request $request
  550. *
  551. * @return JsonResponse 1/0
  552. */
  553. public function isUserLoggedInAction(Request $request)
  554. {
  555. // if the user is currently logged in
  556. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  557. return new JsonResponse(['status' => 1], 200);
  558. }
  560. return new JsonResponse(['status' => 0], 200);
  561. }
  563. /**
  564. * Refresh the session upon user wishing to remain logged in.
  565. *
  566. *
  567. *
  568. * @param Request $request
  569. *
  570. * @return JsonResponse
  571. */
  572. public function refreshSessionAction(Request $request)
  573. {
  574. // if the user is currently logged in
  575. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  576. // Extend the session
  577. try {
  578. $cookie_lifetime = ini_get('session.cookie_lifetime');
  579. if ($cookie_lifetime === false || $cookie_lifetime === '') {
  580. throw new Exception('session.cookie_lifetime not found!');
  581. }
  583. $lifeTime = (int) $cookie_lifetime;
  584. } catch (Exception) {
  585. $lifeTime = $request->getSession()->getMetadataBag()->getLifetime();
  586. }
  587. $request->getSession()->getMetadataBag()->stampNew($lifeTime);
  589. $now = new DateTime();
  590. $expire = $request->getSession()->getMetadataBag()->getCreated() + $request->getSession()->getMetadataBag()->getLifetime();
  592. $response = new JsonResponse([
  593. 'sessionExpire' => $expire,
  594. ]);
  595. $sessionName = $this->getParameter('session.name');
  596. $sessionCookieValue = $request->cookies->get($sessionName);
  597. $sessionCookie = Cookie::create($sessionName, $sessionCookieValue, $expire);
  598. $response->headers->setCookie($sessionCookie);
  600. return $response;
  601. }
  602. return new JsonResponse([], 404);
  603. }
  605. /**
  606. * Refresh the session upon user wishing to remain logged in.
  607. *
  608. *
  609. *
  610. * @param Request $request
  611. *
  612. * @return JsonResponse
  613. */
  614. public function refreshUserSessionAction(Request $request)
  615. {
  616. // if the user is currently logged in
  617. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  618. // Expiration time
  619. $expire = time() + (20 * 60 * 1000);
  621. return new JsonResponse([
  622. 'sessionExpire' => $expire,
  623. ]);
  624. }
  625. return new JsonResponse(['status' => 0], Response::HTTP_FORBIDDEN);
  626. }
  628. /**
  629. * Redirect the user to the login page with a message
  630. *
  631. * Used by the session timeout feature to logout inactive users while preserving
  632. * the return URL so they can resume where they left off after logging back in.
  633. *
  634. * @param Request $request
  635. */
  636. public function userInactivityLoginRedirectAction(Request $request): RedirectResponse
  637. {
  638. $this->addFlash('warning', 'You have been automatically logged out due to inactivity');
  640. // Get the return URL from the query parameter (passed from JavaScript)
  641. $returnUrl = $request->query->get('returnUrl');
  643. // Note: Uses 'logout' route (not legacy 'fos_user_security_logout' which no longer exists)
  644. $response = $this->redirectToRoute('logout');
  646. // Store return URL in a cookie that survives logout (session is cleared on logout)
  647. // The login authenticator will read this cookie and redirect after successful login
  648. if ($returnUrl) {
  649. $response->headers->setCookie(
  650. new Cookie(
  651. 'inactivity_return_url',
  652. $returnUrl,
  653. time() + 3600, // 1 hour expiry
  654. '/',
  655. null,
  656. $request->isSecure(),
  657. true, // httpOnly
  658. false,
  659. Cookie::SAMESITE_LAX
  660. )
  661. );
  662. }
  664. return $response;
  665. }
  667. /**
  668. * Helper function which determines if the user is using a deprecated browser.
  669. *
  670. *
  671. *
  672. * @param Request $request
  673. * @param DeviceDetectorService $deviceDetector
  674. *
  675. * @return bool
  676. */
  677. protected function isDeprecatedBrowser(Request $request, DeviceDetectorService $deviceDetector)
  678. {
  679. $dci = $deviceDetector->getClientInfoFromRequest($request);
  681. if (is_array($dci)) {
  682. // Check if the browser matches IE10 or lower (which we won't support in future).
  683. return $dci['type'] === 'browser' && $dci['short_name'] === 'IE' && floor($dci['version']) <= 10;
  684. }
  686. // If we didn't get an array of results, this is probably an automated action
  687. return true;
  688. }
  690. /**
  691. * Helper function to determine whether the User has any pending Role Invitations
  692. */
  693. private function userHasPendingInvitations(): bool
  694. {
  695. return $this->getUser()->hasUnsuppressedRoleInvitationsPendingApproval();
  696. }
  698. /**
  699. * Generate the Url to the role invitation listing page and
  700. * add a flash message to current session
  701. */
  702. private function pendingInvitationsUrlWithFlash(): string
  703. {
  704. $this->addFlash('info', 'You have pending invitations. Before you continue, please accept or decline all of your invitations.');
  706. return $this->generateUrl('infology_medbrief_role_invitation_list_pending');
  707. }
  709. /**
  710. * Get all Projects the User has recently viewed
  711. *
  712. * @param ProjectRepository $projectRepository
  713. * @param UserHelper $userHelper
  714. * @param ProjectHelper $projectHelper
  715. * @param int $limit
  716. * @param bool $calculateUnreadMessages
  717. *
  718. * @return array ['projects' => Project[], 'userType' => string|null]
  719. */
  720. private function getRecentlyViewedProjects(
  721. ProjectRepository $projectRepository,
  722. UserHelper $userHelper,
  723. ProjectHelper $projectHelper,
  724. bool $calculateUnreadMessages = true,
  725. int $limit = 20
  726. ): array {
  727. $projects = $projectRepository->findRecentlyAccessedByUser($userHelper, $limit);
  728. // if calculating unread messages, set them on each Project entity
  729. if ($calculateUnreadMessages) {
  730. // also set the user type (firm/expert) for displaying unread message counts
  731. $userType = $projectHelper->setUnreadMessageCountAndGetUserType(iterator_to_array($projects), $userHelper->getUser());
  732. return ['projects' => $projects, 'userType' => $userType];
  733. }
  734. return ['projects' => $projects, 'userType' => null];
  735. }
  737. /**
  738. * Get all Projects the User has recently accepted
  739. *
  740. * @param RoleInvitationRepository $roleInvitationRepository
  741. * @param RoleParserService $roleParser
  742. * @param ProjectHelper $projectHelper
  743. * @param bool $calculateUnreadMessages
  744. *
  745. * @return array ['projects' => Project[], 'userType' => string|null]
  746. */
  747. private function getRecentlyAcceptedProjects(RoleInvitationRepository $roleInvitationRepository, RoleParserService $roleParser, ProjectHelper $projectHelper, bool $calculateUnreadMessages = true): array
  748. {
  749. /**
  750. * Not Accessed
  751. */
  752. $recentlyAccepted = $roleInvitationRepository->findLatestProjectRoleInvitationsByUser($this->getUser());
  754. // Map Role Invitations to obtain Projects via the RoleParserService
  755. $recentlyAccepted = array_map(fn (RoleInvitation $roleInvitation)
  756. => $roleParser->parseRole($roleInvitation)->getSubject(), $recentlyAccepted);
  758. // Filter out Projects with any type of deleted or archived status
  759. $recentlyAccepted = array_filter($recentlyAccepted, fn ($project): bool => !$project->isCloseInProgressOrComplete());
  761. // if calculating unread messages, set them on each Project entity
  762. if ($calculateUnreadMessages) {
  763. // also set the user type (firm/expert) for displaying unread message counts
  764. $userType = $projectHelper->setUnreadMessageCountAndGetUserType(iterator_to_array($recentlyAccepted), $this->getUser());
  765. return ['projects' => $recentlyAccepted, 'userType' => $userType];
  766. }
  768. return ['projects' => $recentlyAccepted, 'userType' => null];
  769. }
  771. /**
  772. * Get all the User's favourite Projects
  773. *
  774. * @param ProjectHelper $projectHelper
  775. * @param bool $calculateUnreadMessages
  776. *
  777. * @return array ['projects' => Project[], 'userType' => string|null]
  778. */
  779. private function getFavouriteProjects(ProjectHelper $projectHelper, bool $calculateUnreadMessages = true): array
  780. {
  781. $favouriteProjects = $this->getUser()->getFavouriteProjects()->toArray();
  782. // Filter out deleted and archived Projects
  783. $favouriteProjects = array_filter($favouriteProjects, fn ($project): bool => !$project->isDeleteStatusComplete() && !$project->isArchiveStatusComplete());
  785. // Converts favourite projects to project_id's and removes ones where access is no longer granted
  786. foreach ($favouriteProjects as $key => $project) {
  787. if (!$this->isGranted('READ', $project)) {
  788. unset($favouriteProjects[$key]);
  789. }
  790. }
  792. // if calculating unread messages, set them on each Project entity
  793. if ($calculateUnreadMessages) {
  794. // also set the user type (firm/expert) for displaying unread message counts
  795. $userType = $projectHelper->setUnreadMessageCountAndGetUserType(iterator_to_array($favouriteProjects), $this->getUser());
  796. return ['projects' => $favouriteProjects, 'userType' => $userType];
  797. }
  799. // TODO: create a UserProject Entity to store the date when the Project was favourited
  800. return ['projects' => $favouriteProjects, 'userType' => null];
  801. }
  803. /**
  804. * @param Project[] $projects
  805. * @param RenewalHelperService $renewalHelperService
  806. *
  807. * @return Projects[]|[]
  808. */
  809. private function getEligibleRenewalProjects(array $projects, RenewalHelperService $renewalHelperService): array
  810. {
  811. $eligibleProjectsToDisplayRenewalDate = array_filter($projects, fn ($project): ?bool => $renewalHelperService->isMatterEligibleForRenewal($project));
  813. return $this->sortProjectsByDateOrder($eligibleProjectsToDisplayRenewalDate, 'descending');
  814. }
  816. /**
  817. * Sort an array of Projects by their Updated date in specified order.
  818. *
  819. *
  820. *
  821. * @param array $projects
  822. * @param string $order
  823. *
  824. * @return array $projects
  825. */
  826. private function sortProjectsByDateOrder(array $projects, string $order = 'descending'): array
  827. {
  828. // Use usort to sort the array using the custom comparison function
  829. if ($order === 'descending') {
  830. usort($projects, self::compareByDateDescending(...));
  831. } else {
  832. usort($projects, self::compareByDateAscending(...));
  833. }
  835. return $projects;
  836. }
  838. /**
  839. * Callback function for the comparison of two Projects by Updated date Descending.
  840. *
  841. * @param Project $project1
  842. * @param Project $project2
  843. */
  844. private function compareByDateDescending($project1, $project2): bool
  845. {
  846. $date1 = $project1->getUpdated();
  847. $date2 = $project2->getUpdated();
  848. return $date2 <=> $date1;
  849. }
  851. /**
  852. * Callback function for the comparison of two Projects by Updated date Ascending.
  853. *
  854. * @param Project $project1
  855. * @param Project $project2
  856. */
  857. private function compareByDateAscending($project1, $project2): bool
  858. {
  859. $date1 = $project1->getUpdated();
  860. $date2 = $project2->getUpdated();
  861. return $date1 <=> $date2;
  862. }
  863. }