src/Controller/PageController.php line 22

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use App\Entity\FormPageInterface;
  6. use App\Entity\Lead;
  7. use App\Entity\PageInterface;
  8. use App\Form\LeadType;
  9. use App\Message\FacebookPageViewConversionMessage;
  10. use App\Repository\LeadRepository;
  11. use App\Repository\PageRepository;
  12. use App\Service\SiteManager;
  13. use App\Service\CookieConsentCookieManager;
  14. use Doctrine\Persistence\ManagerRegistry;
  15. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpFoundation\RequestStack;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\Messenger\MessageBusInterface;
  20. use Symfony\Component\Routing\Annotation\Route;
  22. class PageController extends AbstractController
  23. {
  24.     private const UPLOAD_DIR 'uploads';
  26.     protected SiteManager $siteManager;
  27.     protected Request $request;
  29.     public function __construct(SiteManager $siteManagerRequestStack $requestStack) {
  30.         $this->siteManager $siteManager;
  31.         $this->request $requestStack->getCurrentRequest();
  32.     }
  34.     public function __invoke(PageInterface $contentDocumentManagerRegistry $doctrinePageRepository $pageRepositoryLeadRepository $leadRepositoryMessageBusInterface $bus): Response
  35.     {
  36.         $page $contentDocument;
  37.         $isPost $this->request->isMethod('POST');
  39.         if ($isPost) {
  40.             // Forward API requests to a dedicated controller.
  41.             $submittedData $this->request->request->all();
  42.             $submittedToken $submittedData['_token'] ?? null;
  43.             if (!isset($submittedData['_token'])) {
  44.                 // We assume a submission without CSRF protection is a signed API request.
  45.                 $response $this->forward('App\Controller\ApiController', [
  46.                     'contentDocument' => $contentDocument,
  47.                     'managerRegistry' => $doctrine,
  48.                     'pageRepository' => $pageRepository,
  49.                     'leadRepository' => $leadRepository,
  50.                     'messageBusInterface' => $bus,
  51.                     'request' => $this->request,
  52.                 ]);
  53.                 return $response;
  54.             }
  55.         }
  57.         if (!$page) {
  58.             throw $this->createNotFoundException('The page does not exist');
  59.         }
  61.         if (!$page->isPublished() && null === $this->getUser()) {
  62.             throw $this->createAccessDeniedException('The page does not exist');
  63.         }
  65.         // Prepare templates variables.
  66.         $queryParams $this->request->query->all();
  67.         $templateBasePath self::UPLOAD_DIR.'/'.$page->getFilesystemPath().DIRECTORY_SEPARATOR;
  69.         // Manage forms.
  70.         if ($page instanceof FormPageInterface) {
  71.             $formConfig $page->getFormConfig();
  73.             // Deny access to the form page if no email field is defined and no query param. defines it neither.
  74.             if (!isset($formConfig['email']) && !isset($queryParams['email']) && !isset($queryParams['mail'])) {
  75.                 throw $this->createNotFoundException('This page does not exist');
  76.             }
  78.             // Start managing form submission.
  79.             if ($isPost) {
  80.                 // Submissions can be validated though a CSRF token,
  81.                 // or, if programmatically posted, via a computed sihgnature.
  82.                 $validSubmission FALSE;
  83.                 // Manually verify the CSRF token.
  84.                 // https://symfony.com/doc/current/security/csrf.html#generating-and-checking-csrf-tokens-manually
  85.                 if ($submittedToken && $this->isCsrfTokenValid($page->getMachineName(), $submittedToken)) {
  86.                     unset($submittedData['_token']);
  87.                     $validSubmission true;
  88.                 }
  90.                 if ($validSubmission) {
  91.                     // Instanciate and start populate a Lead.
  92.                     $lead = new Lead;
  93.                     $lead->setFormPage($page);
  94.                     $lead->setQueryParams($queryParams);
  95.                     $cookies $this->request->cookies->all();
  96.                     $cookies array_filter($cookies, function($key) {
  97.                         return in_array($key, ['CookieConsent']);
  98.                     }, ARRAY_FILTER_USE_KEY);
  99.                     if (!empty($cookies['CookieConsent'])) {
  100.                         $cookies['CookieConsent'] = CookieConsentCookieManager::parse($cookies['CookieConsent']);
  101.                     }
  102.                     $lead->setCookies($cookies);
  104.                     $form $this->createForm(LeadType::class, $lead, [
  105.                         'config' => $page->getFormConfig(),
  106.                         'data_class' => Lead::class,
  107.                     ]);
  108.                     $form->submit($submittedData);
  110.                     // Validate form values.
  111.                     if ($form->isSubmitted() && $form->isValid()) {
  112.                         // Manage duplicates.
  113.                         $email $lead->getEmail();
  114.                         if (!$email || ($email && !$clone $leadRepository->findDuplicate($email))) {
  115.                             $entityManager $doctrine->getManager();
  116.                             $entityManager->persist($lead);
  117.                             $entityManager->flush();
  118.                         }
  120.                         // Render the conformation template.
  121.                         return $this->render($templateBasePath.$page->getConfirmationTemplateFilename(), [
  122.                             'lead' => $clone ?? $lead,
  123.                             'page' => $page,
  124.                             'query_params' => $lead->getQueryParams(),
  125.                         ]);
  126.                     }
  127.                 }
  128.             }
  130.             $config $page->getConfig()->getFacebook();
  131.             $accessToken $config->getAccessToken();
  132.             $pixelId $config->getPixelId();
  134.             if ($accessToken && $pixelId) {
  135.                 $bus->dispatch(new FacebookPageViewConversionMessage(
  136.                     $page->getId(),
  137.                     $accessToken,
  138.                     $pixelId,
  139.                     $this->request->getClientIp(),
  140.                     $this->request->headers->get('User-Agent'),
  141.                     $this->request->query->get('fbclid'),
  142.                     $this->request->cookies->get('_fbp')
  143.                 ));
  144.             }
  145.         }
  147.         // Render the page template.
  148.         return $this->render($templateBasePath.$page->getTemplateFilename(), [
  149.             'page' => $page,
  150.             'query_params' => $queryParams,
  151.         ]);
  152.     }
  154. }