src/Controller/DefaultController.php line 52

Open in your IDE?
  1. <?php
  3. namespace MedBrief\MSR\Controller;
  5. use DateTime;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Exception;
  8. use MedBrief\MSR\Controller\BaseController as Controller;
  9. use MedBrief\MSR\Entity\Analytics\AnalyticsReport;
  10. use MedBrief\MSR\Entity\Invitation;
  11. use MedBrief\MSR\Entity\Project;
  12. use MedBrief\MSR\Entity\RoleInvitation;
  13. use MedBrief\MSR\Entity\User;
  14. use MedBrief\MSR\Form\ChangePasswordFormType;
  15. use MedBrief\MSR\Form\Filter\MatterFilterType;
  16. use MedBrief\MSR\Form\Order\MatterOrderType;
  17. use MedBrief\MSR\Repository\ProjectRepository;
  18. use MedBrief\MSR\Repository\RoleInvitationRepository;
  19. use MedBrief\MSR\Repository\SystemNotificationRepository;
  20. use MedBrief\MSR\Service\Analytics\AnalyticsService;
  21. use MedBrief\MSR\Service\Analytics\Model\AnalyticsEmbeddedReport;
  22. use MedBrief\MSR\Service\DeviceDetectorService;
  23. use MedBrief\MSR\Service\EntityHelper\ProjectHelper;
  24. use MedBrief\MSR\Service\EntityHelper\UserHelper;
  25. use MedBrief\MSR\Service\LicenceRenewal\RenewalHelperService;
  26. use MedBrief\MSR\Service\ProjectMatch\MatchExpertUser;
  27. use MedBrief\MSR\Service\Role\RoleParserService;
  28. use MedBrief\MSR\Traits\PaginatorAwareTrait;
  29. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
  30. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  31. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  32. use Symfony\Component\HttpFoundation\Cookie;
  33. use Symfony\Component\HttpFoundation\JsonResponse;
  34. use Symfony\Component\HttpFoundation\RedirectResponse;
  35. use Symfony\Component\HttpFoundation\Request;
  36. use Symfony\Component\HttpFoundation\Response;
  37. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  38. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  39. use Symfony\Component\Security\Guard\Token\PostAuthenticationGuardToken;
  40. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  42. class DefaultController extends Controller
  43. {
  44. use PaginatorAwareTrait;
  46. /**
  47. * When the user navigates to the MedBrief home page, if they are logged in, then we
  48. * log them out. We then redirect to login. This is per Steve England's
  49. * request that for security purposes, when the landing page is hit, we log
  50. * users out.
  51. */
  52. public function indexAction(): JsonResponse|RedirectResponse
  53. {
  54. // if the user is currently logged in
  55. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  56. // Forward to the dashboard. We used to log the user out but this caused more problems than it solved.
  57. return $this->redirectWithAjaxSupport($this->generateUrl('infology_medbrief_dashboard'));
  58. }
  60. // if we have a redirect page specified in the parameters
  61. $redirectUrl = $this->getParameter('root_page_redirect_url');
  62. if ($redirectUrl) {
  63. // redirect the user to it
  64. return $this->redirectWithAjaxSupport($redirectUrl);
  65. }
  66. // otherwise just sent them to login
  67. return $this->redirectWithAjaxSupport($this->generateUrl('login'));
  68. }
  70. /**
  71. * @param EntityManagerInterface $entityManager
  72. * @param AnalyticsService $analyticsService
  73. * @param UserHelper $userHelper
  74. * @param ProjectRepository $projectRepository
  75. * @param RoleInvitationRepository $roleInvitationRepository
  76. * @param SystemNotificationRepository $systemNotificationRepository
  77. * @param RoleParserService $roleParser
  78. * @param RenewalHelperService $renewalHelperService
  79. * @param Request $request
  80. * @param ProjectHelper $projectHelper
  81. * @param MatchExpertUser $matchExpertUserService
  82. *
  83. * @throws Exception
  84. *
  85. */
  86. public function dashboardAction(
  87. AnalyticsService $analyticsService,
  88. UserHelper $userHelper,
  89. ProjectRepository $projectRepository,
  90. RoleInvitationRepository $roleInvitationRepository,
  91. SystemNotificationRepository $systemNotificationRepository,
  92. RoleParserService $roleParser,
  93. RenewalHelperService $renewalHelperService,
  94. ProjectHelper $projectHelper,
  95. MatchExpertUser $matchExpertUserService,
  96. Request $request
  97. ): JsonResponse|RedirectResponse|Response {
  98. // Redirect to pending invitations page if User has pending role invitations.
  99. if ($this->userHasPendingInvitations()) {
  100. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  101. }
  103. /** @var User $user */
  104. $user = $this->getUser();
  105. $userHelper->setUser($user);
  107. // If the user has 2FA enabled and is rate limited, redirect them to the login page.
  108. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('rateLimited')) {
  109. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times. Please try again in fifteen minutes.');
  110. return $this->redirectToRoute('logout');
  111. }
  113. // If the user has 2FA enabled and their IP Address has been blacklisted, redirect them to the login page.
  114. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('ipBlacklisted')) {
  115. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times from this IP Address. Please try again in fifteen minutes.');
  116. return $this->redirectToRoute('logout');
  117. }
  119. $analyticsEmbeddedReport = $analyticsService->generateAnalyticsEmbeddedReport($user, AnalyticsReport::REPORT_TYPE_DASHBOARD);
  121. // We use this to determine if we should display the 'Explore Analytics' button.
  122. $analyticsEmbeddedReportMain = $analyticsService->generateAnalyticsEmbeddedReport($user, AnalyticsReport::REPORT_TYPE_MAIN);
  124. $recentlyViewedProjects = $this->getRecentlyViewedProjects($projectRepository, $userHelper, $projectHelper, $matchExpertUserService, false)['projects'];
  125. $favouriteProjects = $this->getFavouriteProjects($projectHelper, $matchExpertUserService, false)['projects'];
  126. $recentlyAcceptedProjects = $this->getRecentlyAcceptedProjects($roleInvitationRepository, $roleParser, $projectHelper, $matchExpertUserService, false)['projects'];
  128. $recentlyViewedProjectCount = count($recentlyViewedProjects);
  129. $favouritesCount = count($favouriteProjects);
  130. $recentlyAcceptedCount = count($recentlyAcceptedProjects);
  131. $renewalsCount = $projectRepository->countRenewalsDueWithin30DaysForUser($userHelper);
  133. // Create a combined array of all unique Projects fetched in this controller action.
  134. $uniqueProjects = array_unique(array_merge(
  135. $recentlyViewedProjects,
  136. $favouriteProjects,
  137. $recentlyAcceptedProjects,
  138. ));
  140. $grossTotalProjectsCount = count($uniqueProjects);
  142. // All Projects that have a renewal date
  143. $eligibleProjects = $this->getEligibleRenewalProjects($uniqueProjects, $renewalHelperService);
  145. // Get the latest active system notification
  146. $systemNotification = $systemNotificationRepository->findLatestSystemNotification();
  148. /**
  149. * Create a form we will use to allow the user to Filter this list
  150. */
  151. $filterForm = $this->createForm(MatterFilterType::class, null, [
  152. 'userHelper' => $userHelper,
  153. 'em' => $this->getDoctrine()->getManager(),
  154. ]);
  156. // Create and user a form to order this list
  157. $orderForm = $this->createForm(MatterOrderType::class);
  159. $isExpert = $user->isExpertOnly() || $user->isExpertViewerOnly();
  161. // Order A applies to all user roles, excluding the two expert user roles
  162. // Order B applies to the two expert user roles only
  163. $tabOrder = $isExpert ? 'order-b' : 'order-a';
  165. return $this->renderTurbo('Default/dashboard.html.twig', [
  166. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  167. 'filterForm' => $filterForm->createView(),
  168. 'orderForm' => $orderForm->createView(),
  169. 'systemNotification' => $systemNotification,
  170. 'analyticsEmbeddedReport' => $analyticsEmbeddedReport,
  171. 'analyticsEmbeddedReportMain' => $analyticsEmbeddedReportMain,
  172. 'recentlyViewedCount' => $recentlyViewedProjectCount,
  173. 'recentlyAcceptedCount' => $recentlyAcceptedCount,
  174. 'favouritesCount' => $favouritesCount,
  175. 'renewalsCount' => $renewalsCount,
  176. 'grossTotalProjectsCount' => $grossTotalProjectsCount,
  177. 'tabOrder' => $tabOrder,
  178. 'isExpert' => $isExpert,
  180. ]);
  181. }
  183. /**
  184. * List Matters most recently viewed
  185. *
  186. * @Template("Default/Partials/viewedTab.html.twig")
  187. *
  188. * @param RoleInvitationRepository $roleInvitationRepository
  189. * @param RoleParserService $roleParser
  190. * @param UserHelper $userHelper
  191. * @param ProjectRepository $projectRepository
  192. * @param RenewalHelperService $renewalHelperService
  193. * @param ProjectHelper $projectHelper
  194. * @param MatchExpertUser $matchExpertUserService
  195. *
  196. * @throws Exception
  197. *
  198. */
  199. public function dashboardViewedAjaxAction(
  200. UserHelper $userHelper,
  201. ProjectRepository $projectRepository,
  202. RenewalHelperService $renewalHelperService,
  203. MatchExpertUser $matchExpertUserService,
  204. ProjectHelper $projectHelper,
  205. ): JsonResponse|RedirectResponse|array {
  206. // Redirect to pending invitations page if User has pending role invitations.
  207. if ($this->userHasPendingInvitations()) {
  208. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  209. }
  211. $userHelper->setUser($this->getUser());
  213. $recentlyViewed = $this->getRecentlyViewedProjects($projectRepository, $userHelper, $projectHelper, $matchExpertUserService);
  214. $recentlyViewedProjects = $recentlyViewed['projects'];
  215. $userType = $recentlyViewed['userType'];
  217. // Return if no qualifying Projects
  218. if ($recentlyViewedProjects === []) {
  219. return [
  220. 'blurb' => 'You do not have any recently viewed matters.',
  221. ];
  222. }
  224. // All Projects that have a renewal date
  225. $eligibleProjects = $this->getEligibleRenewalProjects($recentlyViewedProjects, $renewalHelperService);
  227. return [
  228. 'projects' => $recentlyViewedProjects,
  229. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  230. 'blurb' => 'Most recently viewed matters (up to 20).',
  231. 'userType' => $userType,
  232. ];
  234. }
  236. /**
  237. * List the User's favourite Matters
  238. *
  239. * @Template("Default/Partials/favouritesTab.html.twig")
  240. *
  241. * @param Request $request
  242. * @param RenewalHelperService $renewalHelperService
  243. * @param ProjectHelper $projectHelper
  244. * @param MatchExpertUser $matchExpertUserService
  245. *
  246. * @throws Exception
  247. */
  248. public function dashboardFavouritesAjaxAction(Request $request, RenewalHelperService $renewalHelperService, ProjectHelper $projectHelper, MatchExpertUser $matchExpertUserService): JsonResponse|RedirectResponse|array
  249. {
  250. // Redirect to pending invitations page if User has pending role invitations.
  251. if ($this->userHasPendingInvitations()) {
  252. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  253. }
  255. $favouriteProjectsArray = $this->getFavouriteProjects($projectHelper, $matchExpertUserService);
  256. $favouriteProjects = $favouriteProjectsArray['projects'];
  257. $userType = $favouriteProjectsArray['userType'];
  259. // Return if no qualifying Projects
  260. if ($favouriteProjects === []) {
  261. return [
  262. 'blurb' => 'You do not have any matters added as a favourite.',
  263. ];
  264. }
  266. // All favourite Projects that have a renewal date
  267. $eligibleProjects = $this->getEligibleRenewalProjects($favouriteProjects, $renewalHelperService);
  268. $projectCount = count($favouriteProjects);
  269. $blurbText = $projectCount === 1 ? '1 Matter added as a favourite.' : sprintf('%d %s', $projectCount, 'Matters added as a favourite.');
  271. // Paginate with a specific page and limit
  272. $pagination = $this->paginator->paginate(
  273. $favouriteProjects, // the array to paginate
  274. $request->query->getInt('page', 1), // current page number, default is 1
  275. 10 // items per page
  276. );
  278. return [
  279. 'pagination' => $pagination,
  280. 'totalProjectCount' => $projectCount,
  281. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  282. 'blurb' => $blurbText,
  283. 'userType' => $userType,
  284. ];
  285. }
  287. /**
  288. * List Matters accepted in the past 30 days
  289. *
  290. * @Template("Default/Partials/invitationsTab.html.twig")
  291. *
  292. * @param Request $request
  293. * @param RoleInvitationRepository $roleInvitationRepository
  294. * @param RoleParserService $roleParser
  295. * @param RenewalHelperService $renewalHelperService
  296. * @param ProjectHelper $projectHelper
  297. * @param MatchExpertUser $matchExpertUserService
  298. *
  299. * @throws Exception
  300. */
  301. public function dashboardInvitationsAjaxAction(
  302. Request $request,
  303. RoleInvitationRepository $roleInvitationRepository,
  304. RoleParserService $roleParser,
  305. RenewalHelperService $renewalHelperService,
  306. MatchExpertUser $matchExpertUserService,
  307. ProjectHelper $projectHelper
  308. ): JsonResponse|RedirectResponse|array {
  309. // Redirect to pending invitations page if User has pending role invitations.
  310. if ($this->userHasPendingInvitations()) {
  311. return $this->redirectWithAjaxSupport($this->pendingInvitationsUrlWithFlash());
  312. }
  314. $recentlyAcceptedArray = $this->getRecentlyAcceptedProjects($roleInvitationRepository, $roleParser, $projectHelper, $matchExpertUserService);
  315. $recentlyAccepted = $recentlyAcceptedArray['projects'];
  316. $userType = $recentlyAcceptedArray['userType'];
  318. // Return if no qualifying Projects
  319. if ($recentlyAccepted === []) {
  320. return [
  321. 'blurb' => 'You have not accepted any invitations in the last 30 days.',
  322. ];
  323. }
  325. // All recently accepted Projects that have a renewal date
  326. $eligibleProjects = $this->getEligibleRenewalProjects($recentlyAccepted, $renewalHelperService);
  327. $projectCount = count($recentlyAccepted);
  328. $blurbText = $projectCount === 1 ? '1 Invitation accepted in the last 30 days.' : sprintf('%d %s', $projectCount, 'Invitations accepted in the last 30 days.');
  330. // Paginate with a specific page and limit
  331. $pagination = $this->paginator->paginate(
  332. $recentlyAccepted, // the array to paginate
  333. $request->query->getInt('page', 1), // current page number, default is 1
  334. 10 // items per page
  335. );
  337. return [
  338. 'pagination' => $pagination,
  339. 'totalProjectCount' => $projectCount,
  340. 'eligibleProjectsToDisplayRenewalDate' => $eligibleProjects,
  341. 'blurb' => $blurbText,
  342. 'userType' => $userType,
  343. ];
  344. }
  346. /**
  347. * List Matters due for renewal
  348. *
  349. * @Template("Default/Partials/renewalsTab.html.twig")
  350. *
  351. * @param Request $request
  352. * @param ProjectRepository $projectRepository
  353. * @param UserHelper $userHelper
  354. * @param ProjectHelper $projectHelper
  355. * @param MatchExpertUser $matchExpertUserService
  356. *
  357. * @return array
  358. */
  359. public function dashboardRenewalsAjaxAction(Request $request, ProjectRepository $projectRepository, UserHelper $userHelper, ProjectHelper $projectHelper, MatchExpertUser $matchExpertUserService): RedirectResponse|array
  360. {
  361. // Redirect to pending invitations page if User has pending role invitations.
  362. if ($this->userHasPendingInvitations()) {
  363. return $this->redirect($this->pendingInvitationsUrlWithFlash());
  364. }
  366. $userHelper->setUser($this->getUser());
  368. // All Projects that are due for renewal within the next 30 days
  369. $renewalProjects = $projectRepository->findRenewalsDueWithin30DaysForUser($userHelper);
  370. $projectCount = count($renewalProjects);
  371. $blurbText = $projectCount === 1 ? '1 Matter due for renewal within the next 30 days.' : sprintf('%d %s', $projectCount, 'Matters due for renewal within the next 30 days.');
  373. // Return if no qualifying Projects
  374. if (empty($renewalProjects)) {
  375. return [
  376. 'blurb' => 'There are no matters due for renewal in the next 30 days.',
  377. ];
  378. }
  380. // Paginate with a specific page and limit
  381. $pagination = $this->paginator->paginate(
  382. $renewalProjects, // the array to paginate
  383. $request->query->getInt('page', 1), // current page number, default is 1
  384. 10 // items per page
  385. );
  387. // Determine user type for displaying unread message counts (firm/expert)
  388. $userType = $matchExpertUserService->getUserType($this->getUser());
  389. // This sets the unread message counts on each Project entity
  390. $projectHelper->setUnreadMessageCount(iterator_to_array($pagination), $userType, $this->getUser());
  392. return [
  393. 'pagination' => $pagination,
  394. 'totalProjectCount' => $projectCount,
  395. 'eligibleProjectsToDisplayRenewalDate' => $renewalProjects,
  396. 'blurb' => $blurbText,
  397. 'userType' => $userType,
  398. ];
  399. }
  401. /**
  402. * @Template("Default/analytics.html.twig")
  403. *
  404. * @Security("is_granted('IS_AUTHENTICATED_REMEMBERED')")
  405. *
  406. * @param AnalyticsService $analyticsService
  407. */
  408. public function analyticsAction(AnalyticsService $analyticsService): RedirectResponse|array
  409. {
  410. $analyticsEmbeddedReport = $analyticsService->generateAnalyticsEmbeddedReport($this->getUser(), AnalyticsReport::REPORT_TYPE_MAIN);
  411. if (!$analyticsEmbeddedReport instanceof AnalyticsEmbeddedReport) {
  412. $this->addFlash('warning', 'No Analytics Report for this case');
  413. return $this->redirectToRoute('infology_medbrief_dashboard');
  414. }
  415. return [
  416. 'analyticsEmbeddedReport' => $analyticsEmbeddedReport,
  417. ];
  418. }
  420. /**
  421. * This action is the click through from the email that is sent to a user asking
  422. * them to finalise their registration in order to enable their account
  423. *
  424. * @Template("Default/enableAccount.html.twig")
  425. *
  426. * @param Request $request
  427. * @param TokenStorageInterface $tokenStorage
  428. * @param EventDispatcherInterface $eventDispatcher
  429. * @param EntityManagerInterface $entityManager
  430. * @param UserPasswordEncoderInterface $userPasswordEncoder
  431. * @param UserHelper $userHelper
  432. *
  433. * @throws Exception
  434. */
  435. public function enableAccountAction(
  436. Request $request,
  437. TokenStorageInterface $tokenStorage,
  438. EventDispatcherInterface $eventDispatcher,
  439. EntityManagerInterface $entityManager,
  440. UserPasswordEncoderInterface $userPasswordEncoder,
  441. UserHelper $userHelper
  442. ): RedirectResponse|array {
  443. // if the user is logged in
  444. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  445. // log them out
  446. $tokenStorage->setToken();
  447. $request->getSession()->invalidate();
  449. // redirect them back here
  450. return $this->redirect($request->getRequestUri());
  451. }
  453. // grab the invitation code from the URL
  454. $invitationCode = $request->query->get('i');
  456. // if none was provided, we have a problem
  457. if (empty($invitationCode)) {
  458. throw $this->createNotFoundException('Invitation could not be found.');
  459. }
  461. // try to find a matching invitation
  462. $invitation = $this->getDoctrine()->getRepository(Invitation::class)->findOneByCode($invitationCode);
  464. // if we cant find one, we have a problem
  465. if (!$invitation) {
  466. throw $this->createNotFoundException('Unable to find Invitation.');
  467. }
  469. // try to find a user who matches this invitation
  470. $matchingUser = $entityManager->getRepository(User::class)
  471. ->findOneByEmail($invitation->getEmail())
  472. ;
  474. if (!$matchingUser) {
  475. throw $this->createNotFoundException('Unable to find User.');
  476. }
  478. // if the user is already enabled, then we assume this invitation has been processed already
  479. if ($matchingUser->isEnabled()) {
  480. return $this->redirectToRoute('infology_medbrief_invitation_already_processed');
  481. }
  483. // if we get here then we have found a user who is not yet enabled and may now complete their registration
  484. $form = $this->createForm(ChangePasswordFormType::class, $matchingUser, [
  485. 'action' => $this->generateUrl('infology_medbrief_user_complete_registration', ['id' => $matchingUser->getId()]),
  486. ]);
  488. $form->handleRequest($request);
  490. if ($form->isSubmitted() && $form->isValid()) {
  492. // Accept the Medbrief policies
  493. $userHelper->acceptDeclineMedbriefPolicies($matchingUser);
  495. $encodedPassword = $userPasswordEncoder->encodePassword(
  496. $matchingUser,
  497. $form->get('plainPassword')->getData()
  498. );
  500. // Set the password
  501. $matchingUser->setPassword($encodedPassword);
  503. // set the user enabled now
  504. $matchingUser->setEnabled(true);
  505. $entityManager->flush();
  507. // log the user in
  508. $token = new PostAuthenticationGuardToken($matchingUser, 'main', $matchingUser->getRoles());
  509. $tokenStorage->setToken($token); //now the user is logged in
  511. //now dispatch the login event
  512. $eventDispatcher->dispatch(
  513. new InteractiveLoginEvent($request, $token),
  514. 'security.interactive_login'
  515. );
  517. // Determine if th user requires 2FA to be enabled (if they don't already) and store it in the session
  518. // to prevent navigating to any part of the site, except the 2FA enable page, or logout page.
  519. // @see MedBrief\MSR\EventSubscriber\Enforce2FASubscriber
  520. /** @var User $user */
  521. $user = $this->getUser();
  522. $userHelper->setUser($user);
  524. if ($userHelper->twoFactoryAuthEnabledUser() && !$user->hasMultiMfaEnabled()) {
  525. $request->getSession()->set('enforce-two-factor-authentication-detail', [
  526. '2faRequired' => true,
  527. 'targetPath' => null,
  528. ]);
  530. return $this->redirectToRoute('mfa_enable_force');
  531. }
  533. // If the user has 2FA enabled and is rate limited, redirect them to the login page.
  534. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('rateLimited')) {
  535. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times. Please try again in five minutes.');
  536. return $this->redirectToRoute('logout');
  537. }
  539. // If the user has 2FA enabled and their IP Address has been blacklisted, redirect them to the login page.
  540. if ($user->hasMultiMfaEnabled() && $request->getSession()->has('ipBlacklisted')) {
  541. $this->addFlash('danger', 'You have entered the incorrect authentication code too many times from this IP address. Please try again in fifteen minutes.');
  542. return $this->redirectToRoute('logout');
  543. }
  545. return $this->redirectToRoute('infology_medbrief_dashboard');
  546. }
  548. return [
  549. 'user' => $matchingUser,
  550. 'form' => $form->createView(),
  551. ];
  552. }
  554. /**
  555. * Is the user logged in?
  556. *
  557. *
  558. *
  559. * @param Request $request
  560. *
  561. * @return JsonResponse 1/0
  562. */
  563. public function isUserLoggedInAction(Request $request)
  564. {
  565. // if the user is currently logged in
  566. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  567. return new JsonResponse(['status' => 1], 200);
  568. }
  570. return new JsonResponse(['status' => 0], 200);
  571. }
  573. /**
  574. * Refresh the session upon user wishing to remain logged in.
  575. *
  576. *
  577. *
  578. * @param Request $request
  579. *
  580. * @return JsonResponse
  581. */
  582. public function refreshSessionAction(Request $request)
  583. {
  584. // if the user is currently logged in
  585. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  586. // Extend the session
  587. try {
  588. $cookie_lifetime = ini_get('session.cookie_lifetime');
  589. if ($cookie_lifetime === false || $cookie_lifetime === '') {
  590. throw new Exception('session.cookie_lifetime not found!');
  591. }
  593. $lifeTime = (int) $cookie_lifetime;
  594. } catch (Exception) {
  595. $lifeTime = $request->getSession()->getMetadataBag()->getLifetime();
  596. }
  597. $request->getSession()->getMetadataBag()->stampNew($lifeTime);
  599. $now = new DateTime();
  600. $expire = $request->getSession()->getMetadataBag()->getCreated() + $request->getSession()->getMetadataBag()->getLifetime();
  602. $response = new JsonResponse([
  603. 'sessionExpire' => $expire,
  604. ]);
  605. $sessionName = $this->getParameter('session.name');
  606. $sessionCookieValue = $request->cookies->get($sessionName);
  607. $sessionCookie = Cookie::create($sessionName, $sessionCookieValue, $expire);
  608. $response->headers->setCookie($sessionCookie);
  610. return $response;
  611. }
  612. return new JsonResponse([], 404);
  613. }
  615. /**
  616. * Refresh the session upon user wishing to remain logged in.
  617. *
  618. *
  619. *
  620. * @param Request $request
  621. *
  622. * @return JsonResponse
  623. */
  624. public function refreshUserSessionAction(Request $request)
  625. {
  626. // if the user is currently logged in
  627. if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  628. // Expiration time
  629. $expire = time() + (20 * 60 * 1000);
  631. return new JsonResponse([
  632. 'sessionExpire' => $expire,
  633. ]);
  634. }
  635. return new JsonResponse(['status' => 0], Response::HTTP_FORBIDDEN);
  636. }
  638. /**
  639. * Redirect the user to the login page with a message
  640. *
  641. * Used by the session timeout feature to logout inactive users while preserving
  642. * the return URL so they can resume where they left off after logging back in.
  643. *
  644. * @param Request $request
  645. */
  646. public function userInactivityLoginRedirectAction(Request $request): RedirectResponse
  647. {
  648. $this->addFlash('warning', 'You have been automatically logged out due to inactivity');
  650. // Get the return URL from the query parameter (passed from JavaScript)
  651. $returnUrl = $request->query->get('returnUrl');
  653. // Note: Uses 'logout' route (not legacy 'fos_user_security_logout' which no longer exists)
  654. $response = $this->redirectToRoute('logout');
  656. // Store return URL in a cookie that survives logout (session is cleared on logout)
  657. // The login authenticator will read this cookie and redirect after successful login
  658. if ($returnUrl) {
  659. $response->headers->setCookie(
  660. new Cookie(
  661. 'inactivity_return_url',
  662. $returnUrl,
  663. time() + 3600, // 1 hour expiry
  664. '/',
  665. null,
  666. $request->isSecure(),
  667. true, // httpOnly
  668. false,
  669. Cookie::SAMESITE_LAX
  670. )
  671. );
  672. }
  674. return $response;
  675. }
  677. /**
  678. * Helper function which determines if the user is using a deprecated browser.
  679. *
  680. *
  681. *
  682. * @param Request $request
  683. * @param DeviceDetectorService $deviceDetector
  684. *
  685. * @return bool
  686. */
  687. protected function isDeprecatedBrowser(Request $request, DeviceDetectorService $deviceDetector)
  688. {
  689. $dci = $deviceDetector->getClientInfoFromRequest($request);
  691. if (is_array($dci)) {
  692. // Check if the browser matches IE10 or lower (which we won't support in future).
  693. return $dci['type'] === 'browser' && $dci['short_name'] === 'IE' && floor($dci['version']) <= 10;
  694. }
  696. // If we didn't get an array of results, this is probably an automated action
  697. return true;
  698. }
  700. /**
  701. * Helper function to determine whether the User has any pending Role Invitations
  702. */
  703. private function userHasPendingInvitations(): bool
  704. {
  705. return $this->getUser()->hasUnsuppressedRoleInvitationsPendingApproval();
  706. }
  708. /**
  709. * Generate the Url to the role invitation listing page and
  710. * add a flash message to current session
  711. */
  712. private function pendingInvitationsUrlWithFlash(): string
  713. {
  714. $this->addFlash('info', 'You have pending invitations. Before you continue, please accept or decline all of your invitations.');
  716. return $this->generateUrl('infology_medbrief_role_invitation_list_pending');
  717. }
  719. /**
  720. * Get all Projects the User has recently viewed
  721. *
  722. * @param ProjectRepository $projectRepository
  723. * @param UserHelper $userHelper
  724. * @param ProjectHelper $projectHelper
  725. * @param int $limit
  726. * @param bool $calculateUnreadMessages
  727. * @param MatchExpertUser $matchExpertUserService
  728. *
  729. * @return array ['projects' => Project[], 'userType' => string|null]
  730. */
  731. private function getRecentlyViewedProjects(
  732. ProjectRepository $projectRepository,
  733. UserHelper $userHelper,
  734. ProjectHelper $projectHelper,
  735. MatchExpertUser $matchExpertUserService,
  736. bool $calculateUnreadMessages = true,
  737. int $limit = 20
  738. ): array {
  739. $projects = $projectRepository->findRecentlyAccessedByUser($userHelper, $limit);
  740. // if calculating unread messages, set them on each Project entity
  741. if ($calculateUnreadMessages) {
  742. // Determine user type for displaying unread message counts (firm/expert)
  743. $userType = $matchExpertUserService->getUserType($this->getUser());
  744. // This sets the unread message counts on each Project entity
  745. $projectHelper->setUnreadMessageCount(iterator_to_array($projects), $userType, $userHelper->getUser());
  746. return ['projects' => $projects, 'userType' => $userType];
  747. }
  748. return ['projects' => $projects, 'userType' => null];
  749. }
  751. /**
  752. * Get all Projects the User has recently accepted
  753. *
  754. * @param RoleInvitationRepository $roleInvitationRepository
  755. * @param RoleParserService $roleParser
  756. * @param ProjectHelper $projectHelper
  757. * @param bool $calculateUnreadMessages
  758. * @param MatchExpertUser $matchExpertUserService
  759. *
  760. * @return array ['projects' => Project[], 'userType' => string|null]
  761. */
  762. private function getRecentlyAcceptedProjects(RoleInvitationRepository $roleInvitationRepository, RoleParserService $roleParser, ProjectHelper $projectHelper, MatchExpertUser $matchExpertUserService, bool $calculateUnreadMessages = true): array
  763. {
  764. /**
  765. * Not Accessed
  766. */
  767. $recentlyAccepted = $roleInvitationRepository->findLatestProjectRoleInvitationsByUser($this->getUser());
  769. // Map Role Invitations to obtain Projects via the RoleParserService
  770. $recentlyAccepted = array_map(fn (RoleInvitation $roleInvitation)
  771. => $roleParser->parseRole($roleInvitation)->getSubject(), $recentlyAccepted);
  773. // Filter out Projects with any type of deleted or archived status
  774. $recentlyAccepted = array_filter($recentlyAccepted, fn ($project): bool => !$project->isCloseInProgressOrComplete());
  776. // if calculating unread messages, set them on each Project entity
  777. if ($calculateUnreadMessages) {
  778. // Determine user type for displaying unread message counts (firm/expert)
  779. $userType = $matchExpertUserService->getUserType($this->getUser());
  780. // This sets the unread message counts on each Project entity
  781. $projectHelper->setUnreadMessageCount(iterator_to_array($recentlyAccepted), $userType, $this->getUser());
  782. return ['projects' => $recentlyAccepted, 'userType' => $userType];
  783. }
  785. return ['projects' => $recentlyAccepted, 'userType' => null];
  786. }
  788. /**
  789. * Get all the User's favourite Projects
  790. *
  791. * @param ProjectHelper $projectHelper
  792. * @param bool $calculateUnreadMessages
  793. * @param MatchExpertUser $matchExpertUserService
  794. *
  795. * @return array ['projects' => Project[], 'userType' => string|null]
  796. */
  797. private function getFavouriteProjects(ProjectHelper $projectHelper, MatchExpertUser $matchExpertUserService, bool $calculateUnreadMessages = true): array
  798. {
  799. $favouriteProjects = $this->getUser()->getFavouriteProjects()->toArray();
  800. // Filter out deleted and archived Projects
  801. $favouriteProjects = array_filter($favouriteProjects, fn ($project): bool => !$project->isDeleteStatusComplete() && !$project->isArchiveStatusComplete());
  803. // Converts favourite projects to project_id's and removes ones where access is no longer granted
  804. foreach ($favouriteProjects as $key => $project) {
  805. if (!$this->isGranted('READ', $project)) {
  806. unset($favouriteProjects[$key]);
  807. }
  808. }
  810. // if calculating unread messages, set them on each Project entity
  811. if ($calculateUnreadMessages) {
  812. // Determine user type for displaying unread message counts (firm/expert)
  813. $userType = $matchExpertUserService->getUserType($this->getUser());
  814. // This sets the unread message counts on each Project entity
  815. $projectHelper->setUnreadMessageCount(iterator_to_array($favouriteProjects), $userType, $this->getUser());
  816. return ['projects' => $favouriteProjects, 'userType' => $userType];
  817. }
  819. // TODO: create a UserProject Entity to store the date when the Project was favourited
  820. return ['projects' => $favouriteProjects, 'userType' => null];
  821. }
  823. /**
  824. * @param Project[] $projects
  825. * @param RenewalHelperService $renewalHelperService
  826. *
  827. * @return Projects[]|[]
  828. */
  829. private function getEligibleRenewalProjects(array $projects, RenewalHelperService $renewalHelperService): array
  830. {
  831. $eligibleProjectsToDisplayRenewalDate = array_filter($projects, fn ($project): ?bool => $renewalHelperService->isMatterEligibleForRenewal($project));
  833. return $this->sortProjectsByDateOrder($eligibleProjectsToDisplayRenewalDate, 'descending');
  834. }
  836. /**
  837. * Sort an array of Projects by their Updated date in specified order.
  838. *
  839. *
  840. *
  841. * @param array $projects
  842. * @param string $order
  843. *
  844. * @return array $projects
  845. */
  846. private function sortProjectsByDateOrder(array $projects, string $order = 'descending'): array
  847. {
  848. // Use usort to sort the array using the custom comparison function
  849. if ($order === 'descending') {
  850. usort($projects, self::compareByDateDescending(...));
  851. } else {
  852. usort($projects, self::compareByDateAscending(...));
  853. }
  855. return $projects;
  856. }
  858. /**
  859. * Callback function for the comparison of two Projects by Updated date Descending.
  860. *
  861. * @param Project $project1
  862. * @param Project $project2
  863. */
  864. private function compareByDateDescending($project1, $project2): bool
  865. {
  866. $date1 = $project1->getUpdated();
  867. $date2 = $project2->getUpdated();
  868. return $date2 <=> $date1;
  869. }
  871. /**
  872. * Callback function for the comparison of two Projects by Updated date Ascending.
  873. *
  874. * @param Project $project1
  875. * @param Project $project2
  876. */
  877. private function compareByDateAscending($project1, $project2): bool
  878. {
  879. $date1 = $project1->getUpdated();
  880. $date2 = $project2->getUpdated();
  881. return $date1 <=> $date2;
  882. }
  883. }