vendor/contao/core-bundle/src/Resources/contao/controllers/BackendIndex.php line 40

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of Contao.
  5.  *
  6.  * (c) Leo Feyer
  7.  *
  8.  * @license LGPL-3.0-or-later
  9.  */
  11. namespace Contao;
  13. use Contao\CoreBundle\Security\Exception\LockedException;
  14. use Scheb\TwoFactorBundle\Security\Authentication\Exception\InvalidTwoFactorCodeException;
  15. use Scheb\TwoFactorBundle\Security\Authentication\Token\TwoFactorToken;
  16. use Scheb\TwoFactorBundle\Security\TwoFactor\Event\TwoFactorAuthenticationEvent;
  17. use Scheb\TwoFactorBundle\Security\TwoFactor\Event\TwoFactorAuthenticationEvents;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\HttpKernel\UriSigner;
  20. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  21. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  22. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  24. /**
  25.  * Handle back end logins and logouts.
  26.  */
  27. class BackendIndex extends Backend
  28. {
  29.     /**
  30.      * Initialize the controller
  31.      *
  32.      * 1. Import the user
  33.      * 2. Call the parent constructor
  34.      * 3. Login the user
  35.      * 4. Load the language files
  36.      * DO NOT CHANGE THIS ORDER!
  37.      */
  38.     public function __construct()
  39.     {
  40.         $this->import(BackendUser::class, 'User');
  41.         parent::__construct();
  43.         System::loadLanguageFile('default');
  44.         System::loadLanguageFile('tl_user');
  45.     }
  47.     /**
  48.      * Run the controller and parse the login template
  49.      *
  50.      * @return Response
  51.      */
  52.     public function run()
  53.     {
  54.         $container System::getContainer();
  55.         $exception $container->get('security.authentication_utils')->getLastAuthenticationError();
  57.         if ($exception instanceof LockedException)
  58.         {
  59.             Message::addError(sprintf($GLOBALS['TL_LANG']['ERR']['accountLocked'], $exception->getLockedMinutes()));
  60.         }
  61.         elseif ($exception instanceof InvalidTwoFactorCodeException)
  62.         {
  63.             Message::addError($GLOBALS['TL_LANG']['ERR']['invalidTwoFactor']);
  64.         }
  65.         elseif ($exception instanceof AuthenticationException)
  66.         {
  67.             Message::addError($GLOBALS['TL_LANG']['ERR']['invalidLogin']);
  68.         }
  70.         $router $container->get('router');
  71.         $targetPath $router->generate('contao_backend', array(), UrlGeneratorInterface::ABSOLUTE_URL);
  72.         $request $container->get('request_stack')->getCurrentRequest();
  74.         if ($request && $request->query->has('redirect'))
  75.         {
  76.             /** @var UriSigner $uriSigner */
  77.             $uriSigner $container->get('uri_signer');
  79.             // We cannot use $request->getUri() here as we want to work with the original URI (no query string reordering)
  80.             if ($uriSigner->check($request->getSchemeAndHttpHost() . $request->getBaseUrl() . $request->getPathInfo() . (null !== ($qs $request->server->get('QUERY_STRING')) ? '?' $qs '')))
  81.             {
  82.                 $targetPath $request->query->get('redirect');
  83.             }
  84.         }
  86.         $objTemplate = new BackendTemplate('be_login');
  87.         $objTemplate->headline $GLOBALS['TL_LANG']['MSC']['loginBT'];
  89.         /** @var TokenInterface $token */
  90.         $token $container->get('security.token_storage')->getToken();
  92.         if ($token instanceof TwoFactorToken)
  93.         {
  94.             // Dispatch 2FA form event to prepare 2FA providers
  95.             $event = new TwoFactorAuthenticationEvent($request$token);
  96.             $container->get('event_dispatcher')->dispatch($eventTwoFactorAuthenticationEvents::FORM);
  98.             $objTemplate = new BackendTemplate('be_login_two_factor');
  99.             $objTemplate->headline $GLOBALS['TL_LANG']['MSC']['twoFactorAuthentication'];
  100.             $objTemplate->authCode $GLOBALS['TL_LANG']['MSC']['twoFactorVerification'];
  101.             $objTemplate->cancel $GLOBALS['TL_LANG']['MSC']['cancelBT'];
  102.         }
  104.         $objTemplate->theme Backend::getTheme();
  105.         $objTemplate->messages Message::generate();
  106.         $objTemplate->base Environment::get('base');
  107.         $objTemplate->language $GLOBALS['TL_LANGUAGE'];
  108.         $objTemplate->languages System::getContainer()->get('contao.intl.locales')->getEnabledLocales(nulltrue); // backwards compatibility
  109.         $objTemplate->host Backend::getDecodedHostname();
  110.         $objTemplate->charset System::getContainer()->getParameter('kernel.charset');
  111.         $objTemplate->userLanguage $GLOBALS['TL_LANG']['tl_user']['language'][0];
  112.         $objTemplate->curUsername Input::post('username') ?: '';
  113.         $objTemplate->loginButton StringUtil::specialchars($GLOBALS['TL_LANG']['MSC']['continue']);
  114.         $objTemplate->username $GLOBALS['TL_LANG']['tl_user']['username'][0];
  115.         $objTemplate->password $GLOBALS['TL_LANG']['MSC']['password'][0];
  116.         $objTemplate->feLink $GLOBALS['TL_LANG']['MSC']['feLink'];
  117.         $objTemplate->default $GLOBALS['TL_LANG']['MSC']['default'];
  118.         $objTemplate->jsDisabled $GLOBALS['TL_LANG']['MSC']['jsDisabled'];
  119.         $objTemplate->targetPath StringUtil::specialchars(base64_encode($targetPath));
  121.         return $objTemplate->getResponse();
  122.     }
  123. }
  125. class_alias(BackendIndex::class, 'BackendIndex');