Feat 108625 form mail protection

bundle/Entity/ProtectedAccess.php

@@ -38,8 +38,7 @@ class ProtectedAccess implements ContentInterface
     /**
      * @var string
      *
-     * @ORM\Column(type="string", length=255, nullable=false)
-     * @Assert\NotBlank()
+     * @ORM\Column(type="string", length=255, nullable=true)
      * @Assert\Length(max=255)
      */
     protected $password;
@@ -51,13 +50,27 @@ class ProtectedAccess implements ContentInterface
      */
     protected $enabled;
 
+    /**
+     * @var bool
+     *
+     * @ORM\Column(type="boolean", nullable=false)
+     */
+    protected $asEmail = false;
+
     /**
      * @var bool
      *
      * @ORM\Column(type="boolean", nullable=false)
      */
     protected $protectChildren;
 
+    /**
+     * @var string
+     *
+     * @ORM\Column(type="string", nullable=true)
+     */
+    protected $emailMessage;
+
     public function __construct()
     {
         $this->enabled         = true;
@@ -76,12 +89,24 @@ public function setId(int $id): self
         return $this;
     }
 
+    public function getAsEmail(): bool
+    {
+        return $this->asEmail ?? false;
+    }
+
+    public function setAsEmail(bool $asEmail): self
+    {
+        $this->asEmail = $asEmail;
+
+        return $this;
+    }
+
     public function getPassword(): string
     {
         return $this->password ?? '';
     }
 
-    public function setPassword(string $password): self
+    public function setPassword(?string $password = ''): self
     {
         $this->password = $password;
 
@@ -109,4 +134,14 @@ public function setProtectChildren(bool $protectChildren): void
     {
         $this->protectChildren = $protectChildren;
     }
+
+    public function getEmailMessage(): ?string
+    {
+        return $this->emailMessage;
+    }
+
+    public function setEmailMessage(string $emailMessage): void
+    {
+        $this->emailMessage = $emailMessage;
+    }
 }

bundle/Entity/ProtectedTokenStorage.php

@@ -0,0 +1,111 @@
+<?php
+
+/**
+ * NovaeZProtectedContentBundle.
+ *
+ * @package   Novactive\Bundle\eZProtectedContentBundle
+ *
+ * @author    Novactive
+ * @copyright 2023 Novactive
+ * @license   https://github.com/Novactive/eZProtectedContentBundle/blob/master/LICENSE MIT Licence
+ */
+declare(strict_types=1);
+
+namespace Novactive\Bundle\eZProtectedContentBundle\Entity;
+
+use DateTime;
+use Doctrine\ORM\Mapping as ORM;
+use Symfony\Component\Validator\Constraints as Assert;
+
+/**
+ * @ORM\Entity(repositoryClass="Novactive\Bundle\eZProtectedContentBundle\Repository\ProtectedTokenStorageRepository")
+ * @ORM\Table(name="novaezprotectedcontentstorage")
+ */
+class ProtectedTokenStorage {
+    /**
+     * @var int
+     *
+     * @ORM\Id
+     * @ORM\Column(type="integer")
+     * @ORM\GeneratedValue(strategy="AUTO")
+     */
+    private $id;
+
+    /**
+     * @var DateTime
+     * @ORM\Column(name="created", type="datetime")
+     */
+    private $created;
+
+    /**
+     * @var string
+     *
+     * @ORM\Column(type="string", length=255, nullable=false)
+     * @Assert\Length(max=255)
+     */
+    protected $token;
+
+    /**
+     * @var string
+     *
+     * @ORM\Column(type="string", length=255, nullable=false)
+     * @Assert\Length(max=255)
+     */
+    protected $mail;
+
+    /**
+     * @var int
+     *
+     * @ORM\Column(type="integer")
+     */
+    protected $content_id;
+
+    public function getId(): int
+    {
+        return $this->id;
+    }
+
+    public function setId(int $id): void
+    {
+        $this->id = $id;
+    }
+    public function getCreated(): DateTime
+    {
+        return $this->created;
+    }
+
+    public function setCreated(DateTime $created): void
+    {
+        $this->created = $created;
+    }
+
+    public function getToken(): string
+    {
+        return $this->token;
+    }
+
+    public function setToken(string $token): void
+    {
+        $this->token = $token;
+    }
+
+    public function getMail(): string
+    {
+        return $this->mail;
+    }
+
+    public function setMail(string $mail): void
+    {
+        $this->mail = $mail;
+    }
+
+    public function getContentId(): int
+    {
+        return $this->content_id;
+    }
+
+    public function setContentId(int $content_id): void
+    {
+        $this->content_id = $content_id;
+    }
+}

bundle/Form/ProtectedAccessType.php

@@ -13,10 +13,12 @@
 namespace Novactive\Bundle\eZProtectedContentBundle\Form;
 
 use Novactive\Bundle\eZProtectedContentBundle\Entity\ProtectedAccess;
+
 use Symfony\Component\Form\AbstractType;
 use Symfony\Component\Form\Extension\Core\Type\CheckboxType;
 use Symfony\Component\Form\Extension\Core\Type\HiddenType;
 use Symfony\Component\Form\Extension\Core\Type\TextType;
+use Symfony\Component\Form\Extension\Core\Type\TextareaType;
 use Symfony\Component\Form\FormBuilderInterface;
 use Symfony\Component\OptionsResolver\OptionsResolver;
 
@@ -31,7 +33,10 @@ public function buildForm(FormBuilderInterface $builder, array $options): void
                     ['label' => 'tab.table.th.children_protection', 'required' => false]
                 )
                 ->add('enabled', CheckboxType::class, ['label' => 'tab.table.th.enabled', 'required' => false])
-                ->add('password', TextType::class, ['required' => true, 'label' => 'tab.table.th.password']);
+                ->add('password', TextType::class, ['required' => false, 'label' => 'tab.table.th.password'])
+                ->add('asEmail', CheckboxType::class, ['label' => 'tab.table.th.as_email', 'required' => false])
+                ->add('emailMessage', TextareaType::class, ['label' => 'tab.table.th.message_email', 'required' => false])
+        ;
     }
 
     public function configureOptions(OptionsResolver $resolver): void

bundle/Form/RequestEmailProtectedAccessType.php

@@ -0,0 +1,47 @@
+<?php
+/**
+ * NovaeZProtectedContentBundle.
+ *
+ * @package   Novactive\Bundle\eZProtectedContentBundle
+ *
+ * @author    Novactive
+ * @copyright 2019 Novactive
+ * @license   https://github.com/Novactive/eZProtectedContentBundle/blob/master/LICENSE MIT Licence
+ */
+declare(strict_types=1);
+
+namespace Novactive\Bundle\eZProtectedContentBundle\Form;
+
+use Symfony\Component\Form\AbstractType;
+use Symfony\Component\Form\Extension\Core\Type\EmailType;
+use Symfony\Component\Form\Extension\Core\Type\HiddenType;
+use Symfony\Component\Form\Extension\Core\Type\SubmitType;
+use Symfony\Component\Form\Extension\Core\Type\TextType;
+use Symfony\Component\Form\FormBuilderInterface;
+use Symfony\Component\OptionsResolver\OptionsResolver;
+
+class RequestEmailProtectedAccessType extends AbstractType
+{
+    public function buildForm(FormBuilderInterface $builder, array $options): void
+    {
+        $builder->add(
+            'email',
+            EmailType::class,
+            [
+                'required' => true,
+                'label' => 'tab.table.th.email',
+            ]
+        );
+        $builder->add('content_id', HiddenType::class);
+        $builder->add('submit', SubmitType::class);
+    }
+
+    public function configureOptions(OptionsResolver $resolver): void
+    {
+        $resolver->setDefaults(
+            [
+                'translation_domain' => 'ezprotectedcontent',
+            ]
+        );
+    }
+}

bundle/Listener/EmailProvided.php

@@ -0,0 +1,134 @@
+<?php
+/**
+ * NovaeZProtectedContentBundle.
+ *
+ * @package   Novactive\Bundle\eZProtectedContentBundle
+ *
+ * @author    Novactive
+ * @copyright 2019 Novactive
+ * @license   https://github.com/Novactive/eZProtectedContentBundle/blob/master/LICENSE MIT Licence
+ */
+declare(strict_types=1);
+
+namespace Novactive\Bundle\eZProtectedContentBundle\Listener;
+
+use DateTime;
+use Doctrine\ORM\EntityManagerInterface;
+use Exception;
+use Novactive\Bundle\eZProtectedContentBundle\Entity\ProtectedAccess;
+use Novactive\Bundle\eZProtectedContentBundle\Entity\ProtectedTokenStorage;
+use Novactive\Bundle\eZProtectedContentBundle\Form\RequestEmailProtectedAccessType;
+use Swift_Message;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
+use Symfony\Component\Form\FormFactoryInterface;
+use Symfony\Component\HttpFoundation\RedirectResponse;
+use Symfony\Component\HttpKernel\Event\GetResponseEvent;
+use Swift_Mailer;
+use Symfony\Component\Translation\TranslatorInterface;
+
+class EmailProvided
+{
+    protected const SENDMAIL_ERROR = 'Impossible d\'envoyer le lien formaté à l\'adresse mail %s';
+    /**
+     * @var FormFactoryInterface
+     */
+    private $formFactory;
+    /**
+     * @var Swift_Mailer
+     */
+    private $mailer;
+    /**
+     * @var Swift_Message
+     */
+    protected $messageInstance;
+
+    /**
+     * @var EntityManagerInterface
+     */
+    private $entityManager;
+
+    /**
+     * @var TranslatorInterface
+     */
+    private $translator;
+
+    /**
+     * @var ParameterBagInterface
+     */
+    private $parameterBag;
+
+    public function __construct(
+        FormFactoryInterface $formFactory,
+        Swift_Mailer $mailer,
+        EntityManagerInterface $entityManager,
+        TranslatorInterface $translator,
+        ParameterBagInterface $parameterBag
+    )
+    {
+        $this->formFactory     = $formFactory;
+        $this->mailer          = $mailer;
+        $this->entityManager   = $entityManager;
+        $this->translator      = $translator;
+        $this->parameterBag    = $parameterBag;
+        $this->messageInstance = new Swift_Message();
+
+    }
+
+    public function onKernelRequest(GetResponseEvent $event): void
+    {
+        if (!$event->isMasterRequest()) {
+            return;
+        }
+        $form = $this->formFactory->create(RequestEmailProtectedAccessType::class);
+
+        $request = $event->getRequest();
+        $form->handleRequest($request);
+
+        if ($form->isSubmitted() && $form->isValid()) {
+            $data           = $form->getData();
+            $contentId      = intval($data['content_id']);
+            $randomString   = bin2hex(random_bytes(16));
+            $token          = substr($randomString, 0, 16);
+
+            $access         = new ProtectedTokenStorage();
+            $access->setMail($data['email']);
+            $access->setContentId($contentId);
+            $access->setCreated(new DateTime());
+            $access->setToken($token);
+
+            $this->entityManager->persist($access);
+            $this->entityManager->flush();
+
+            $currentUrl = $request->getScheme().'://'.$request->getHost().$request->getBaseUrl().$request->getRequestUri();
+            $accessUrl  = $currentUrl."?mail=".$data['email']."&token=".$token;
+            $this->sendMail($contentId, $data['email'], $accessUrl);
+            $response   = new RedirectResponse($request->getRequestUri()."?waiting_validation=".$data['email']);
+            $response->setPrivate();
+            $event->setResponse($response);
+        }
+    }
+
+    /**
+     * @throws Exception
+     */
+    private function sendMail(int $contentId, string $receiver, string $link): void {
+        /** @var ProtectedAccess $protectedAccess */
+        $protectedAccess = $this->entityManager->getRepository(ProtectedAccess::class)->findOneBy(['contentId' => $contentId]);
+
+        $message = $this->messageInstance
+            ->setSubject('Access to protected content')
+            ->setFrom($this->parameterBag->get('default_sender_email'))
+            ->setTo($receiver)
+            ->setContentType('text/html')
+            ->setBody(
+                $protectedAccess->getEmailMessage()
+                . "</br><a href='$link'>".$this->translator->trans('mail.link', [], 'ezprotectedcontent')."</a>"
+            );
+
+        try {
+            $this->mailer->send($message);
+        } catch (Exception $exception) {
+            throw new Exception(sprintf(self::SENDMAIL_ERROR, $receiver));
+        }
+    }
+}