app/Customize/Controller/Mypage/MypageController.php line 63

Open in your IDE?
  1. <?php
  3. namespace Customize\Controller\Mypage;
  5. use Eccube\Controller\AbstractController;
  6. use Eccube\Entity\Customer;
  7. use Eccube\Form\Type\Front\CustomerLoginType;
  8. use Eccube\Event\EccubeEvents;
  9. use Eccube\Event\EventArgs;
  10. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Template;
  11. use Symfony\Component\HttpFoundation\Request;
  12. use Symfony\Component\Security\Http\Authentication\AuthenticationUtils;
  13. use Symfony\Component\Routing\Annotation\Route;
  14. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  15. use Customize\Helper\BaseHelper;
  16. use Customize\Service\LogoutDebugService;
  18. class MypageController extends AbstractController
  19. {
  20.     use BaseHelper;
  22.     /**
  23.      * @var TokenStorageInterface
  24.      */
  25.     protected TokenStorageInterface $tokenStorage;
  27.     /**
  28.      * MypageController constructor.
  29.      *
  30.      * @param TokenStorageInterface $tokenStorage
  31.      */
  32.     public function __construct(TokenStorageInterface $tokenStorage)
  33.     {
  34.         $this->tokenStorage $tokenStorage;
  35.     }
  36.     /**
  37.      * @Route("/mypage/login", name="mypage_login", methods={"GET", "POST"})
  38.      * @Template("Mypage/login.twig")
  39.      */
  40.     public function login(Request $requestAuthenticationUtils $utils)
  41.     {
  42.         $redirect $_GET['redirect'] ?? null;
  43.         $this->session->set('redirect'$redirect);
  45.         if ($this->isGranted('IS_AUTHENTICATED_FULLY')) {
  46.             log_info('認証済のためログイン処理をスキップ');
  48.             if ($myPageUrl = (env('MY_PAGE_URL') ?? null)) {
  49.                 if ($this->session->get('redirect'null) === $myPageUrl) {
  50.                     $redirectMyPage $this->generateRedirectMyPage();
  51.                     $this->session->set('has_redirect_mypage'true);
  52.                     return $this->redirect($redirectMyPage);
  53.                 }
  54.             }
  56.             return $this->redirectToRoute('mypage');
  57.         }
  59.         /* @var $form \Symfony\Component\Form\FormInterface */
  60.         $builder $this->formFactory
  61.             ->createNamedBuilder(''CustomerLoginType::class);
  63.         $builder->get('login_memory')->setData((bool) $request->getSession()->get('_security.login_memory'));
  65.         if ($this->isGranted('IS_AUTHENTICATED_REMEMBERED')) {
  66.             $Customer $this->getUser();
  67.             if ($Customer instanceof Customer) {
  68.                 $builder->get('login_email')
  69.                     ->setData($Customer->getEmail());
  70.             }
  71.         }
  73.         $event = new EventArgs(
  74.             [
  75.                 'builder' => $builder,
  76.             ],
  77.             $request
  78.         );
  79.         $this->eventDispatcher->dispatch($eventEccubeEvents::FRONT_MYPAGE_MYPAGE_LOGIN_INITIALIZE);
  81.         $form $builder->getForm();
  83.         return [
  84.             'error' => $utils->getLastAuthenticationError(),
  85.             'form' => $form->createView(),
  86.             'route' => 'mypage_login',
  87.         ];
  88.     }
  90.     /**
  91.      * @Route("/logout", name="logout", methods={"GET"})
  92.      */
  93.     public function logout(Request $request)
  94.     {
  95.         // --- Log bằng service ---
  96.         $debugService = new LogoutDebugService();
  97.         $user $this->isGranted('IS_AUTHENTICATED_FULLY') ? $this->getUser() : null;
  98.         $debugService->logLogoutAttempt($request$user);
  100.         // --- Xoá session ---
  101.         $this->tokenStorage->setToken(null);
  102.         $this->session->invalidate();
  104.         // --- Lấy iframe links ---
  105.         $iframeLinks = [];
  106.         $envLinks env('SSO_LOGOUT_LINKS');
  107.         if ($envLinks) {
  108.             $iframeLinks array_map('trim'explode(','$envLinks));
  109.         }
  111.         // --- Tạo response ---
  112.         $response $this->render('Mypage/logout.twig', [
  113.             'iframe_links' => $iframeLinks,
  114.         ]);
  116.         $host $request->getHost();
  117.         $isSecure = ($host === 'localhost' false $request->isSecure());
  119.         $response->headers->clearCookie(
  120.             'eccube_remember_me',
  121.             '/',
  122.             $host,
  123.             $isSecure,
  124.             true,  // HttpOnly
  125.             false// Raw
  126.             null   // SameSite
  127.         );
  129.         // --- 2. Xóa cookie với domain null (để đảm bảo xóa được) ---
  130.         $response->headers->clearCookie(
  131.             'eccube_remember_me',
  132.             '/',
  133.             null,  // Domain null
  134.             $isSecure,
  135.             true,  // HttpOnly
  136.             false// Raw
  137.             null   // SameSite
  138.         );
  140.         // --- 3. Xóa session login_memory ---
  141.         $this->session->remove('_security.login_memory');
  143.         // --- 4. Log để debug ---
  144.         error_log('MypageController: Đã xóa cookie remember_me với host: ' $host ', secure: ' . ($isSecure 'true' 'false'));
  146.         return $response;
  147.     }
  150. }