src/Controller/Api/ProfileController.php line 64

Open in your IDE?
  1. <?php
  3. namespace App\Controller\Api;
  5. use App\Entity\Core\AccountDeleted;
  6. use App\Entity\Core\Agencies;
  7. use App\Entity\Core\AgenciesHasUsers;
  8. use App\Entity\Core\MobileIdentifiers;
  9. use App\Entity\Cvs\CandidatesHasComments;
  10. use App\Entity\Cvs\CandidatesHasLikes;
  11. use App\Entity\Cvs\CandidatesHasStatistics;
  12. use App\Entity\Messenger\Groups;
  13. use App\Entity\Messenger\Messages;
  14. use App\Services\Dossiers;
  15. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Cache;
  16. use Sensio\Bundle\FrameworkExtraBundle\Configuration\IsGranted;
  17. use Sensio\Bundle\FrameworkExtraBundle\Configuration\ParamConverter;
  18. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  19. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  20. use Symfony\Component\HttpFoundation\Request;
  21. use Symfony\Component\HttpFoundation\Response;
  22. use Symfony\Component\Routing\Annotation\Route;
  23. use Symfony\Component\HttpFoundation\JsonResponse;
  24. use Doctrine\ORM\EntityManagerInterface;
  25. use Knp\Component\Pager\PaginatorInterface;
  26. use Symfony\Component\Form\Extension\Core\Type\CheckboxType;
  27. use Symfony\Component\Form\Extension\Core\Type\ChoiceType;
  28. use Symfony\Component\Form\Extension\Core\Type\DateTimeType;
  29. use Symfony\Component\Form\Extension\Core\Type\EmailType;
  30. use Symfony\Component\Form\Extension\Core\Type\HiddenType;
  31. use Symfony\Component\Form\Extension\Core\Type\NumberType;
  32. use Symfony\Component\Form\Extension\Core\Type\SubmitType;
  33. use Symfony\Component\Form\Extension\Core\Type\TextareaType;
  34. use Symfony\Component\Form\Extension\Core\Type\TextType;
  35. use Symfony\Component\HttpFoundation\Session\Session;
  36. use Symfony\Component\HttpFoundation\File\File;
  37. use Symfony\Component\HttpFoundation\File\UploadedFile;
  38. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  40. class ProfileController extends AbstractController
  41. {
  43.     private $em;
  44.     private $paginator;
  45.     private $dossier;
  46.     private $passwordEncoder;
  48.     public function __construct(EntityManagerInterface $em,
  49.                                 Dossiers $dossier,
  50.                                 PaginatorInterface $paginator,
  51.                                 UserPasswordEncoderInterface $passwordEncoder,
  52.     ) {
  53.         $this->em $em;
  54.         $this->paginator $paginator;
  55.         $this->dossier $dossier;
  56.         $this->passwordEncoder $passwordEncoder;
  57.     }
  59.     /**
  60.      * Informations de l'utilisateur.
  61.      * @param Request $request
  62.      * @return JsonResponse
  63.      */
  64.     public function info(Request $request)
  65.     {
  66.         $user $this->getUser();
  68.         $language "en";
  69.         if($user->getLanguage() !== null) {
  70.             $language $user->getLanguage();
  71.         }
  73.         $avatar "";
  74.         if($user->getImage() !== null && $user->getImage()->getName() !== null) {
  75.             $avatar $user->getImageBase64();
  76.         }
  78.         // ════════════════════════════════════════════════════════════════
  79.         //  RECRUTEUR — auto-création / réparation de l'agence et de l'AHU
  80.         // ════════════════════════════════════════════════════════════════
  81.         if($user->getTypeAccount() == "enterprise") {
  83.             // CAS 1 : pas de currentAgency → on crée tout (agency + AHU)
  84.             if($user->getCurrentAgency() === null) {
  86.                 $agency = new Agencies();
  87.                 $agency->setEmail($user->getEmail());
  88.                 $agency->setFirst(true);
  89.                 $agency->setValide(false);
  90.                 $agency->setPremium(false);
  91.                 $agency->setCreatedAt(new \DateTime("now"));
  92.                 $agency->setUpdatedAt(new \DateTime("now"));
  93.                 $agency->setPourcentCommission(0);
  94.                 $agency->setPourcentCommissionBank(0);
  95.                 $agency->setNoCommission(false);
  96.                 $agency->setCommissionCentimesBank(0);
  97.                 $agency->setLimitedUsers(1);
  98.                 $agency->setLimitedCourses(10);
  99.                 $agency->setLimitedQcm(10);
  100.                 $agency->setLimitedQcmApplication(10);
  101.                 $agency->setMultipleInscription(false);
  102.                 $agency->setStripe(false);
  103.                 $agency->setDemonstration(false);
  104.                 $this->em->persist($agency);
  105.                 $this->em->flush();
  107.                 $user->setCurrentAgency($agency);
  108.                 $this->em->persist($user);
  109.                 $this->em->flush();
  111.                 $ahu = new AgenciesHasUsers();
  112.                 $ahu->setAgency($agency);
  113.                 $ahu->setUser($user);
  114.                 $ahu->setAdmin(false);
  115.                 $this->em->persist($ahu);
  116.                 $this->em->flush();
  117.             }
  118.             // CAS 2 : l'user a une currentAgency mais pas d'AHU → on crée l'AHU manquant
  119.             // (cas des comptes pré-existants à la refonte RC)
  120.             else {
  121.                 $existingAhu $this->em->getRepository(AgenciesHasUsers::class)->findOneBy([
  122.                     'user'   => $user,
  123.                     'agency' => $user->getCurrentAgency(),
  124.                 ]);
  125.                 if (!$existingAhu) {
  126.                     $ahu = new AgenciesHasUsers();
  127.                     $ahu->setAgency($user->getCurrentAgency());
  128.                     $ahu->setUser($user);
  129.                     $ahu->setAdmin(false);
  130.                     $this->em->persist($ahu);
  131.                     $this->em->flush();
  132.                 }
  133.             }
  134.         }
  136.         // ── Flags CV (candidats uniquement, sinon false) ──
  137.         $cvGenerated false;
  138.         $cvUploaded  false;
  139.         if ($user->getTypeAccount() !== 'enterprise') {
  140.             $candidate $user->getCandidate();
  141.             if ($candidate) {
  142.                 // CV généré : un cv_pdf_path a été enregistré par CvGeneratorController::generate
  143.                 $cvGenerated = !empty($candidate->getCvPdfPath());
  144.                 // CV uploadé (PDF original envoyé via analyze/upload) : image Vich renseignée
  145.                 $cvUploaded  $candidate->getImage() !== null
  146.                     && $candidate->getImage()->getName() !== null;
  147.             }
  148.         }
  150.         return new JsonResponse([
  151.             'id'  => $user->getId(),
  152.             'avatar' => $avatar ?? '',
  153.             'email' => $user->getEmail(),
  154.             'roles' => $user->getRoles(),
  155.             'typeAccount' => $user->getTypeAccount() ?? 'candidate',
  156.             'name' => $user->getName() ?? '',
  157.             'lastname' => $user->getLastname() ?? '',
  158.             'fullName' => '',
  159.             'language' => $language ?? 'en',
  160.             'first' => $user->isFirst() ?? 1,
  161.             'enabled' => $user->isEnabled() ?? 0,
  162.             'verification' => $user->isVerification() ?? 0,
  163.             'motifverification' => $user->getMotif() ?? '',
  164.             'premium' => $user->isPremium() ?? 0,
  165.             'cvGenerated' => $cvGenerated,
  166.             'cvUploaded'  => $cvUploaded,
  167.         ]);
  168.     }
  170.     /**
  171.      * Mettre le profil de l'utilisateur - POST.
  172.      * @param Request $request
  173.      * @return JsonResponse
  174.      */
  175.     public function update(Request $request): JsonResponse
  176.     {
  177.         if (!$request->isMethod('POST')) {
  178.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  179.         }
  181.         $user $this->getUser();
  182.         if (!$user) {
  183.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  184.         }
  186.         $data $request->toArray();
  188.         $user->setName($data['name']);
  189.         $user->setLastname($data['lastname']);
  191.         if (!empty($data['avatar64'])) {
  192.             try {
  193.                 $imageInfo $this->detectImageTypeFromBase64($data['avatar64']);
  195.                 // Décoder le base64
  196.                 $decodedImage base64_decode($imageInfo['data']);
  197.                 if ($decodedImage === false) {
  198.                     return new JsonResponse(['error' => 'Invalid base64 image'], 400);
  199.                 }
  201.                 // Créer un fichier temporaire avec un nom unique
  202.                 $tmpFilePath sys_get_temp_dir() . '/' uniqid('avatar_'true) . '.' $imageInfo['extension'];
  204.                 // Écrire l'image décodée dans le fichier temporaire
  205.                 $bytesWritten file_put_contents($tmpFilePath$decodedImage);
  206.                 if ($bytesWritten === false) {
  207.                     return new JsonResponse(['error' => 'Failed to write temporary file'], 500);
  208.                 }
  210.                 // ✅ IMPORTANT : Créer un objet UploadedFile (pas File) pour VichUploader
  211.                 $uploadedFile = new UploadedFile(
  212.                     $tmpFilePath,                    // Chemin du fichier temporaire
  213.                     'avatar.' $imageInfo['extension'], // Nom original du fichier
  214.                     $imageInfo['mimeType'],          // Type MIME
  215.                     null,                             // Erreur (null = pas d'erreur)
  216.                     true                              // test mode = true (fichier temporaire)
  217.                 );
  219.                 // Assigner le fichier à l'entité via VichUploader
  220.                 $user->setImageFile($uploadedFile);
  222.                 // ✅ IMPORTANT : Mettre à jour le timestamp pour forcer VichUploader à détecter le changement
  223.                 $user->setUpdatedAt(new \DateTimeImmutable());
  225.             } catch (\Exception $e) {
  226.                 // Nettoyer le fichier temporaire en cas d'erreur
  227.                 if (isset($tmpFilePath) && file_exists($tmpFilePath)) {
  228.                     @unlink($tmpFilePath);
  229.                 }
  230.                 return new JsonResponse(['error' => 'Upload failed: ' $e->getMessage()], 500);
  231.             }
  232.         }
  234.         if($user->getTypeAccount() == "enterprise") {
  235.             $user->setFirst(false);
  236.         }
  237.         $this->em->persist($user);
  238.         $this->em->flush();
  240.         if (isset($tmpFilePath) && file_exists($tmpFilePath)) {
  241.             @unlink($tmpFilePath);
  242.         }
  244.         // Nettoyer le fichier temporaire si créé
  245.         if (isset($tmpFilePath) && file_exists($tmpFilePath)) {
  246.             @unlink($tmpFilePath);
  247.         }
  249.         return new JsonResponse(['success' => true]);
  250.     }
  252.     /**
  253.      * Mettre à jour le language
  254.      * @param Request $request
  255.      * @return JsonResponse
  256.      */
  257.     public function updateLanguage(Request $request): JsonResponse
  258.     {
  259.         if (!$request->isMethod('POST')) {
  260.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  261.         }
  263.         $user $this->getUser();
  264.         if (!$user) {
  265.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  266.         }
  268.         $data $request->toArray();
  270.         $user->setLanguage($data['language']);
  271.         $this->em->persist($user);
  272.         $this->em->flush();
  274.         return new JsonResponse(['language' => $user->getLanguage(), 'success' => true]);
  275.     }
  277.     /**
  278.      * Mettre à jour le language
  279.      * @param Request $request
  280.      * @return JsonResponse
  281.      */
  282.     public function updateVerification(Request $request): JsonResponse
  283.     {
  284.         if (!$request->isMethod('POST')) {
  285.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  286.         }
  288.         $user $this->getUser();
  289.         if (!$user) {
  290.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  291.         }
  293.         $data $request->toArray();
  295.         $user->setVerification(false);
  296.         $user->setMotif($data['motif']);
  297.         $this->em->persist($user);
  298.         $this->em->flush();
  300.         return new JsonResponse(['success' => true]);
  301.     }
  303.     /**
  304.      * Mettre à jour le token de notifications.
  305.      * @param Request $request
  306.      * @return JsonResponse
  307.      */
  308.     public function updateNotifications(Request $request): JsonResponse
  309.     {
  310.         if (!$request->isMethod('POST')) {
  311.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  312.         }
  314.         $user $this->getUser();
  315.         if (!$user) {
  316.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  317.         }
  319.         $data $request->toArray();
  321.         if (!isset($data['identifiant']) || empty($data['identifiant'])) {
  322.             return new JsonResponse(['error' => 'Missing identifiant'], 400);
  323.         }
  325.         $mobileIdentifiers $this->em->getRepository(MobileIdentifiers::class)->findOneBy(['user' => $user'identifiant' => $data['identifiant']]);
  327.         if ($mobileIdentifiers === null) {
  328.             $mobileIdentifiers = new MobileIdentifiers();
  329.             $mobileIdentifiers->setUser($user);
  330.             $mobileIdentifiers->setIdentifiant($data['identifiant']);
  331.             $mobileIdentifiers->setDescription("expo_token_notifications");
  333.             $this->em->persist($mobileIdentifiers);
  334.             $this->em->flush();
  336.             return new JsonResponse([
  337.                 'token' => $mobileIdentifiers->getIdentifiant(),
  338.                 'success' => true,
  339.                 'created' => true
  340.             ], 201);
  341.         }
  343.         return new JsonResponse([
  344.             'token' => $mobileIdentifiers->getIdentifiant(),
  345.             'success' => true,
  346.             'created' => false
  347.         ], 200);
  348.     }
  350.     /**
  351.      * Supprimer les notifications.
  352.      * @param Request $request
  353.      * @return JsonResponse
  354.      */
  355.     public function deleteNotifications(Request $request): JsonResponse
  356.     {
  357.         if (!$request->isMethod('DELETE')) {
  358.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  359.         }
  361.         $user $this->getUser();
  362.         if (!$user) {
  363.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  364.         }
  366.         $data $request->toArray();
  368.         // Vérifier que l'identifiant est présent
  369.         if (!isset($data['identifiant']) || empty($data['identifiant'])) {
  370.             return new JsonResponse(['error' => 'Missing identifiant'], 400);
  371.         }
  373.         $mobileIdentifiers $this->em->getRepository(MobileIdentifiers::class)
  374.             ->findOneBy(['user' => $user'identifiant' => $data['identifiant']]);
  376.         if ($mobileIdentifiers) {
  377.             $this->em->remove($mobileIdentifiers);
  378.             $this->em->flush();
  380.             return new JsonResponse([
  381.                 'success' => true,
  382.                 'message' => 'Notification token deleted successfully'
  383.             ], 200);
  384.         }
  386.         return new JsonResponse([
  387.             'success' => false,
  388.             'message' => 'Token not found'
  389.         ], 404);
  390.     }
  392.     /**
  393.      * Mettre à jour le mot de passe.
  394.      * @param Request $request
  395.      * @return JsonResponse
  396.      */
  397.     public function updatePassword(Request $request): JsonResponse
  398.     {
  399.         if (!$request->isMethod('POST')) {
  400.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  401.         }
  403.         $user $this->getUser();
  404.         if (!$user) {
  405.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  406.         }
  408.         $data $request->toArray();
  410.         if($data['password'] !== $data['password_confirm']){
  411.             return new JsonResponse(['error' => 'Passwords do not match']);
  412.         }
  414.         $user->setPassword($this->passwordEncoder->encodePassword($user$data['password']));
  415.         $this->em->persist($user);
  416.         $this->em->flush();
  418.         return new JsonResponse(['success' => true]);
  419.     }
  421.     /**
  422.      * Avatar Base64.
  423.      * @param string $base64String
  424.      * @return array|string[]
  425.      */
  426.     private function detectImageTypeFromBase64(string $base64String): array
  427.     {
  428.         // Supprimer le préfixe data:image/...;base64, si présent
  429.         if (preg_match('/^data:image\/(\w+);base64,(.+)$/'$base64String$matches)) {
  430.             $extension $matches[1]; // jpeg, png, gif, etc.
  431.             $data $matches[2];
  433.             $mimeTypes = [
  434.                 'jpeg' => 'image/jpeg',
  435.                 'jpg' => 'image/jpeg',
  436.                 'png' => 'image/png',
  437.                 'gif' => 'image/gif',
  438.                 'webp' => 'image/webp',
  439.             ];
  441.             return [
  442.                 'extension' => $extension === 'jpg' 'jpeg' $extension,
  443.                 'mimeType' => $mimeTypes[$extension] ?? 'image/jpeg',
  444.                 'data' => $data
  445.             ];
  446.         }
  448.         // Si pas de préfixe, supposer que c'est du JPEG par défaut
  449.         return [
  450.             'extension' => 'jpeg',
  451.             'mimeType' => 'image/jpeg',
  452.             'data' => $base64String
  453.         ];
  454.     }
  456.     /**
  457.      * Supprimer un compte utilisateur.
  458.      * @param Request $request
  459.      * @return JsonResponse
  460.      */
  461.     public function deleteAccount(Request $request): JsonResponse
  462.     {
  463.         if (!$request->isMethod('POST')) {
  464.             return new JsonResponse(['error' => 'Method not allowed'], 405);
  465.         }
  467.         $user $this->getUser();
  468.         if (!$user) {
  469.             return new JsonResponse(['error' => 'Unauthorized'], 401);
  470.         }
  472.         $data $request->toArray();
  474.         if($data['mail'] != $user->getEmail()) {
  475.             return new JsonResponse(['success' => false]);
  476.         }
  478.         $candidate $user->getCandidate();
  479.         if($candidate != null) {
  481.             $groups $this->em->getRepository(Groups::class)->findBy(["userOne" => $user]);
  482.             if($groups !== null){
  483.                 foreach ($groups as $group) {
  484.                     $messages $this->em->getRepository(Messages::class)->findBy(['group' => $group->getId()]);
  485.                     foreach ($messages as $message) {
  486.                         $this->em->remove($message);
  487.                         $this->em->flush();
  488.                     }
  490.                     $this->em->remove($group);
  491.                 }
  492.             }
  494.             $groups $this->em->getRepository(Groups::class)->findBy(["userTwo" => $user]);
  495.             if($groups !== null){
  496.                 foreach ($groups as $group) {
  497.                     $messages $this->em->getRepository(Messages::class)->findBy(['group' => $group->getId()]);
  498.                     foreach ($messages as $message) {
  499.                         $this->em->remove($message);
  500.                         $this->em->flush();
  501.                     }
  503.                     $this->em->remove($group);
  504.                 }
  505.             }
  507.             $queries $this->em->getRepository(CandidatesHasStatistics::class)->findBy(["candidate" => $candidate]);
  508.             if($queries !== null){
  509.                 foreach ($queries as $query) {
  510.                     $this->em->remove($query);
  511.                 }
  512.             }
  514.             $queries $this->em->getRepository(CandidatesHasLikes::class)->findBy(["candidate" => $candidate]);
  515.             if($queries !== null){
  516.                 foreach ($queries as $query) {
  517.                     $this->em->remove($query);
  518.                 }
  519.             }
  521.             $queries $this->em->getRepository(CandidatesHasComments::class)->findBy(["candidate" => $candidate]);
  522.             if($queries !== null){
  523.                 foreach ($queries as $query) {
  524.                     $this->em->remove($query);
  525.                 }
  526.             }
  528.             $this->em->remove($candidate);
  529.         }
  531.         $this->em->remove($user);
  532.         $this->em->flush();
  534.         $delAccount = new AccountDeleted();
  535.         $delAccount->setEmail($data['mail']);
  536.         $delAccount->setMotif($data['motif']);
  537.         $delAccount->setCreatedAt(new \DateTime("now"));
  538.         $delAccount->setUpdatedAt(new \DateTime("now"));
  539.         $this->em->persist($delAccount);
  540.         $this->em->flush();
  542.         return new JsonResponse(['success' => true]);
  543.     }
  544. }