[github/wallabag/wallabag.git] / src / Wallabag / UserBundle / Entity / User.php

<?php

namespace Wallabag\UserBundle\Entity;

use Doctrine\Common\Collections\ArrayCollection;
use Doctrine\ORM\Mapping as ORM;
use FOS\UserBundle\Model\User as BaseUser;
use JMS\Serializer\Annotation\Accessor;
use JMS\Serializer\Annotation\Groups;
use JMS\Serializer\Annotation\XmlRoot;
use Scheb\TwoFactorBundle\Model\BackupCodeInterface;
use Scheb\TwoFactorBundle\Model\Email\TwoFactorInterface as EmailTwoFactorInterface;
use Scheb\TwoFactorBundle\Model\Google\TwoFactorInterface as GoogleTwoFactorInterface;
use Symfony\Bridge\Doctrine\Validator\Constraints\UniqueEntity;
use Symfony\Component\Security\Core\User\UserInterface;
use Wallabag\ApiBundle\Entity\Client;
use Wallabag\CoreBundle\Entity\Config;
use Wallabag\CoreBundle\Entity\Entry;
use Wallabag\CoreBundle\Helper\EntityTimestampsTrait;

/**
 * User.
 *
 * @XmlRoot("user")
 * @ORM\Entity(repositoryClass="Wallabag\UserBundle\Repository\UserRepository")
 * @ORM\Table(name="`user`")
 * @ORM\HasLifecycleCallbacks()
 *
 * @UniqueEntity("email")
 * @UniqueEntity("username")
 */
class User extends BaseUser implements EmailTwoFactorInterface, GoogleTwoFactorInterface, BackupCodeInterface
{
    use EntityTimestampsTrait;

    /** @Serializer\XmlAttribute */
    /**
     * @var int
     *
     * @ORM\Column(name="id", type="integer")
     * @ORM\Id
     * @ORM\GeneratedValue(strategy="AUTO")
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $id;

    /**
     * @var string
     *
     * @ORM\Column(name="name", type="text", nullable=true)
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $name;

    /**
     * @var string
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $username;

    /**
     * @var string
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $email;

    /**
     * @var \DateTime
     *
     * @ORM\Column(name="created_at", type="datetime")
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $createdAt;

    /**
     * @var \DateTime
     *
     * @ORM\Column(name="updated_at", type="datetime")
     *
     * @Groups({"user_api", "user_api_with_client"})
     */
    protected $updatedAt;

    /**
     * @ORM\OneToMany(targetEntity="Wallabag\CoreBundle\Entity\Entry", mappedBy="user", cascade={"remove"})
     */
    protected $entries;

    /**
     * @ORM\OneToOne(targetEntity="Wallabag\CoreBundle\Entity\Config", mappedBy="user", cascade={"remove"})
     */
    protected $config;

    /**
     * @var ArrayCollection
     *
     * @ORM\OneToMany(targetEntity="Wallabag\CoreBundle\Entity\SiteCredential", mappedBy="user", cascade={"remove"})
     */
    protected $siteCredentials;

    /**
     * @var ArrayCollection
     *
     * @ORM\OneToMany(targetEntity="Wallabag\ApiBundle\Entity\Client", mappedBy="user", cascade={"remove"})
     */
    protected $clients;

    /**
     * @see getFirstClient() below
     *
     * @Groups({"user_api_with_client"})
     * @Accessor(getter="getFirstClient")
     */
    protected $default_client;

    /**
     * @ORM\Column(type="integer", nullable=true)
     */
    private $authCode;

    /**
     * @ORM\Column(name="googleAuthenticatorSecret", type="string", nullable=true)
     */
    private $googleAuthenticatorSecret;

    /**
     * @ORM\Column(type="json_array", nullable=true)
     */
    private $backupCodes;

    /**
     * @var bool
     *
     * @ORM\Column(type="boolean")
     */
    private $emailTwoFactor = false;

    public function __construct()
    {
        parent::__construct();
        $this->entries = new ArrayCollection();
        $this->roles = ['ROLE_USER'];
    }

    /**
     * Set name.
     *
     * @param string $name
     *
     * @return User
     */
    public function setName($name)
    {
        $this->name = $name;

        return $this;
    }

    /**
     * Get name.
     *
     * @return string
     */
    public function getName()
    {
        return $this->name;
    }

    /**
     * @return \DateTime
     */
    public function getCreatedAt()
    {
        return $this->createdAt;
    }

    /**
     * @return \DateTime
     */
    public function getUpdatedAt()
    {
        return $this->updatedAt;
    }

    /**
     * @param Entry $entry
     *
     * @return User
     */
    public function addEntry(Entry $entry)
    {
        $this->entries[] = $entry;

        return $this;
    }

    /**
     * @return ArrayCollection<Entry>
     */
    public function getEntries()
    {
        return $this->entries;
    }

    public function isEqualTo(UserInterface $user)
    {
        return $this->username === $user->getUsername();
    }

    /**
     * Set config.
     *
     * @param Config $config
     *
     * @return User
     */
    public function setConfig(Config $config = null)
    {
        $this->config = $config;

        return $this;
    }

    /**
     * Get config.
     *
     * @return Config
     */
    public function getConfig()
    {
        return $this->config;
    }

    /**
     * @return bool
     */
    public function isEmailTwoFactor()
    {
        return $this->emailTwoFactor;
    }

    /**
     * @param bool $emailTwoFactor
     */
    public function setEmailTwoFactor($emailTwoFactor)
    {
        $this->emailTwoFactor = $emailTwoFactor;
    }

    /**
     * Used in the user config form to be "like" the email option.
     */
    public function isGoogleTwoFactor()
    {
        return $this->isGoogleAuthenticatorEnabled();
    }

    /**
     * {@inheritdoc}
     */
    public function isEmailAuthEnabled(): bool
    {
        return $this->emailTwoFactor;
    }

    /**
     * {@inheritdoc}
     */
    public function getEmailAuthCode(): string
    {
        return $this->authCode;
    }

    /**
     * {@inheritdoc}
     */
    public function setEmailAuthCode(string $authCode): void
    {
        $this->authCode = $authCode;
    }

    /**
     * {@inheritdoc}
     */
    public function getEmailAuthRecipient(): string
    {
        return $this->email;
    }

    /**
     * {@inheritdoc}
     */
    public function isGoogleAuthenticatorEnabled(): bool
    {
        return $this->googleAuthenticatorSecret ? true : false;
    }

    /**
     * {@inheritdoc}
     */
    public function getGoogleAuthenticatorUsername(): string
    {
        return $this->username;
    }

    /**
     * {@inheritdoc}
     */
    public function getGoogleAuthenticatorSecret(): string
    {
        return $this->googleAuthenticatorSecret;
    }

    /**
     * {@inheritdoc}
     */
    public function setGoogleAuthenticatorSecret(?string $googleAuthenticatorSecret): void
    {
        $this->googleAuthenticatorSecret = $googleAuthenticatorSecret;
    }

    public function setBackupCodes(array $codes = null)
    {
        $this->backupCodes = $codes;
    }

    public function getBackupCodes()
    {
        return $this->backupCodes;
    }

    /**
     * {@inheritdoc}
     */
    public function isBackupCode(string $code): bool
    {
        return false === $this->findBackupCode($code) ? false : true;
    }

    /**
     * {@inheritdoc}
     */
    public function invalidateBackupCode(string $code): void
    {
        $key = $this->findBackupCode($code);

        if (false !== $key) {
            unset($this->backupCodes[$key]);
        }
    }

    /**
     * @param Client $client
     *
     * @return User
     */
    public function addClient(Client $client)
    {
        $this->clients[] = $client;

        return $this;
    }

    /**
     * @return ArrayCollection<Entry>
     */
    public function getClients()
    {
        return $this->clients;
    }

    /**
     * Only used by the API when creating a new user it'll also return the first client (which was also created at the same time).
     *
     * @return Client
     */
    public function getFirstClient()
    {
        if (!empty($this->clients)) {
            return $this->clients->first();
        }
    }

    /**
     * Try to find a backup code from the list of backup codes of the current user.
     *
     * @param string $code Given code from the user
     *
     * @return string|false
     */
    private function findBackupCode(string $code)
    {
        foreach ($this->backupCodes as $key => $backupCode) {
            // backup code are hashed using `password_hash`
            // see ConfigController->otpAppAction
            if (password_verify($code, $backupCode)) {
                return $key;
            }
        }

        return false;
    }
}
Commit	Line	Data
9d50517c NL	1	<?php
9d50517c NL	2
1210dae1	3	namespace Wallabag\UserBundle\Entity;
9d50517c	4
5f09650e	5	use Doctrine\Common\Collections\ArrayCollection;
9d50517c	6	use Doctrine\ORM\Mapping as ORM;
f808b016 JB	7	use FOS\UserBundle\Model\User as BaseUser;
f808b016 JB	8	use JMS\Serializer\Annotation\Accessor;
22510459	9	use JMS\Serializer\Annotation\Groups;
5709ecb3	10	use JMS\Serializer\Annotation\XmlRoot;
dfd0a7bc	11	use Scheb\TwoFactorBundle\Model\BackupCodeInterface;
a6b242a1 JB	12	use Scheb\TwoFactorBundle\Model\Email\TwoFactorInterface as EmailTwoFactorInterface;
a6b242a1 JB	13	use Scheb\TwoFactorBundle\Model\Google\TwoFactorInterface as GoogleTwoFactorInterface;
619cc453 JB	14	use Symfony\Bridge\Doctrine\Validator\Constraints\UniqueEntity;
619cc453 JB	15	use Symfony\Component\Security\Core\User\UserInterface;
23406ca3	16	use Wallabag\ApiBundle\Entity\Client;
1210dae1 NL	17	use Wallabag\CoreBundle\Entity\Config;
1210dae1 NL	18	use Wallabag\CoreBundle\Entity\Entry;
927c9e79	19	use Wallabag\CoreBundle\Helper\EntityTimestampsTrait;
9d50517c NL	20
9d50517c NL	21	/**
4346a860	22	* User.
9d50517c	23	*
5709ecb3	24	* @XmlRoot("user")
1210dae1	25	* @ORM\Entity(repositoryClass="Wallabag\UserBundle\Repository\UserRepository")
bd0f3d32	26	* @ORM\Table(name="`user`")
2f69eb4a	27	* @ORM\HasLifecycleCallbacks()
c844dc0c J	28	*
	29	* @UniqueEntity("email")
	30	* @UniqueEntity("username")
9d50517c	31	*/
dfd0a7bc	32	class User extends BaseUser implements EmailTwoFactorInterface, GoogleTwoFactorInterface, BackupCodeInterface
9d50517c	33	{
927c9e79 JB	34	use EntityTimestampsTrait;
927c9e79 JB	35
5709ecb3	36	/** @Serializer\XmlAttribute */
9d50517c	37	/**
4346a860	38	* @var int
9d50517c	39	*
2f69eb4a	40	* @ORM\Column(name="id", type="integer")
9d50517c	41	* @ORM\Id
2f69eb4a	42	* @ORM\GeneratedValue(strategy="AUTO")
5709ecb3	43	*
0c00e525	44	* @Groups({"user_api", "user_api_with_client"})
9d50517c	45	*/
a1691859	46	protected $id;
9d50517c NL	47
	48	/**
	49	* @var string
	50	*
	51	* @ORM\Column(name="name", type="text", nullable=true)
5709ecb3	52	*
0c00e525	53	* @Groups({"user_api", "user_api_with_client"})
9d50517c	54	*/
a1691859	55	protected $name;
6894d48e	56
5709ecb3 JB	57	/**
	58	* @var string
	59	*
0c00e525	60	* @Groups({"user_api", "user_api_with_client"})
5709ecb3 JB	61	*/
	62	protected $username;
	63
	64	/**
	65	* @var string
	66	*
0c00e525	67	* @Groups({"user_api", "user_api_with_client"})
5709ecb3 JB	68	*/
	69	protected $email;
	70
2f69eb4a	71	/**
c3f7a2ca	72	* @var \DateTime
2f69eb4a NL	73	*
2f69eb4a NL	74	* @ORM\Column(name="created_at", type="datetime")
5709ecb3	75	*
0c00e525	76	* @Groups({"user_api", "user_api_with_client"})
2f69eb4a	77	*/
a1691859	78	protected $createdAt;
2f69eb4a NL	79
2f69eb4a NL	80	/**
c3f7a2ca	81	* @var \DateTime
2f69eb4a NL	82	*
2f69eb4a NL	83	* @ORM\Column(name="updated_at", type="datetime")
5709ecb3	84	*
0c00e525	85	* @Groups({"user_api", "user_api_with_client"})
2f69eb4a	86	*/
a1691859	87	protected $updatedAt;
2f69eb4a	88
5f09650e	89	/**
1210dae1	90	* @ORM\OneToMany(targetEntity="Wallabag\CoreBundle\Entity\Entry", mappedBy="user", cascade={"remove"})
5f09650e	91	*/
a1691859	92	protected $entries;
5f09650e	93
32da2a70	94	/**
152fcccd	95	* @ORM\OneToOne(targetEntity="Wallabag\CoreBundle\Entity\Config", mappedBy="user", cascade={"remove"})
32da2a70	96	*/
a1691859	97	protected $config;
32da2a70	98
9114615a JB	99	/**
	100	* @var ArrayCollection
	101	*
	102	* @ORM\OneToMany(targetEntity="Wallabag\CoreBundle\Entity\SiteCredential", mappedBy="user", cascade={"remove"})
	103	*/
e50d7d31	104	protected $siteCredentials;
9114615a	105
2db616b5	106	/**
f808b016 JB	107	* @var ArrayCollection
	108	*
	109	* @ORM\OneToMany(targetEntity="Wallabag\ApiBundle\Entity\Client", mappedBy="user", cascade={"remove"})
2db616b5	110	*/
f808b016	111	protected $clients;
2db616b5 NL	112
2db616b5 NL	113	/**
f808b016	114	* @see getFirstClient() below
0c00e525	115	*
f808b016 JB	116	* @Groups({"user_api_with_client"})
f808b016 JB	117	* @Accessor(getter="getFirstClient")
2db616b5	118	*/
f808b016	119	protected $default_client;
2db616b5 NL	120
2db616b5 NL	121	/**
f808b016	122	* @ORM\Column(type="integer", nullable=true)
2db616b5	123	*/
f808b016	124	private $authCode;
2db616b5	125
23406ca3	126	/**
a6b242a1	127	* @ORM\Column(name="googleAuthenticatorSecret", type="string", nullable=true)
23406ca3	128	*/
a6b242a1	129	private $googleAuthenticatorSecret;
23406ca3	130
dfd0a7bc JB	131	/**
	132	* @ORM\Column(type="json_array", nullable=true)
	133	*/
	134	private $backupCodes;
	135
0c00e525	136	/**
a6b242a1 JB	137	* @var bool
	138	*
	139	* @ORM\Column(type="boolean")
0c00e525	140	*/
a6b242a1	141	private $emailTwoFactor = false;
0c00e525	142
c3235553 NL	143	public function __construct()
c3235553 NL	144	{
a1691859	145	parent::__construct();
98f0929f	146	$this->entries = new ArrayCollection();
4094ea47	147	$this->roles = ['ROLE_USER'];
c3235553	148	}
2f69eb4a	149
9d50517c	150	/**
4346a860 JB	151	* Set name.
	152	*
	153	* @param string $name
9d50517c	154	*
2f69eb4a	155	* @return User
9d50517c NL	156	*/
	157	public function setName($name)
	158	{
	159	$this->name = $name;
	160
	161	return $this;
	162	}
	163
	164	/**
4346a860	165	* Get name.
9d50517c	166	*
7df80cb3	167	* @return string
9d50517c NL	168	*/
	169	public function getName()
	170	{
	171	return $this->name;
	172	}
	173
2f69eb4a	174	/**
3a6af6c5	175	* @return \DateTime
2f69eb4a NL	176	*/
	177	public function getCreatedAt()
	178	{
	179	return $this->createdAt;
	180	}
	181
	182	/**
3a6af6c5	183	* @return \DateTime
2f69eb4a NL	184	*/
	185	public function getUpdatedAt()
	186	{
	187	return $this->updatedAt;
	188	}
	189
5f09650e NL	190	/**
	191	* @param Entry $entry
	192	*
	193	* @return User
	194	*/
	195	public function addEntry(Entry $entry)
	196	{
	197	$this->entries[] = $entry;
	198
	199	return $this;
	200	}
	201
	202	/**
	203	* @return ArrayCollection<Entry>
	204	*/
	205	public function getEntries()
	206	{
	207	return $this->entries;
	208	}
	209
c3235553 NL	210	public function isEqualTo(UserInterface $user)
	211	{
	212	return $this->username === $user->getUsername();
	213	}
	214
32da2a70	215	/**
4346a860 JB	216	* Set config.
4346a860 JB	217	*
1210dae1	218	* @param Config $config
32da2a70	219	*
32da2a70 J	220	* @return User
32da2a70 J	221	*/
1210dae1	222	public function setConfig(Config $config = null)
32da2a70 J	223	{
	224	$this->config = $config;
	225
	226	return $this;
	227	}
	228
	229	/**
4346a860	230	* Get config.
32da2a70	231	*
1210dae1	232	* @return Config
32da2a70 J	233	*/
	234	public function getConfig()
	235	{
	236	return $this->config;
	237	}
2db616b5 NL	238
	239	/**
	240	* @return bool
	241	*/
a6b242a1 JB	242	public function isEmailTwoFactor()
	243	{
	244	return $this->emailTwoFactor;
	245	}
	246
	247	/**
	248	* @param bool $emailTwoFactor
	249	*/
	250	public function setEmailTwoFactor($emailTwoFactor)
2db616b5	251	{
a6b242a1	252	$this->emailTwoFactor = $emailTwoFactor;
2db616b5 NL	253	}
	254
	255	/**
a6b242a1	256	* Used in the user config form to be "like" the email option.
2db616b5	257	*/
a6b242a1	258	public function isGoogleTwoFactor()
2db616b5	259	{
a6b242a1	260	return $this->isGoogleAuthenticatorEnabled();
2db616b5 NL	261	}
2db616b5 NL	262
a6b242a1 JB	263	/**
	264	* {@inheritdoc}
	265	*/
	266	public function isEmailAuthEnabled(): bool
2db616b5	267	{
a6b242a1	268	return $this->emailTwoFactor;
2db616b5 NL	269	}
2db616b5 NL	270
a6b242a1 JB	271	/**
	272	* {@inheritdoc}
	273	*/
	274	public function getEmailAuthCode(): string
2db616b5 NL	275	{
	276	return $this->authCode;
	277	}
	278
a6b242a1 JB	279	/**
	280	* {@inheritdoc}
	281	*/
	282	public function setEmailAuthCode(string $authCode): void
2db616b5 NL	283	{
	284	$this->authCode = $authCode;
	285	}
	286
a6b242a1 JB	287	/**
	288	* {@inheritdoc}
	289	*/
	290	public function getEmailAuthRecipient(): string
2db616b5	291	{
a6b242a1	292	return $this->email;
2db616b5 NL	293	}
2db616b5 NL	294
a6b242a1 JB	295	/**
	296	* {@inheritdoc}
	297	*/
	298	public function isGoogleAuthenticatorEnabled(): bool
2db616b5	299	{
a6b242a1 JB	300	return $this->googleAuthenticatorSecret ? true : false;
a6b242a1 JB	301	}
2db616b5	302
a6b242a1 JB	303	/**
	304	* {@inheritdoc}
	305	*/
	306	public function getGoogleAuthenticatorUsername(): string
	307	{
	308	return $this->username;
	309	}
2db616b5	310
a6b242a1 JB	311	/**
	312	* {@inheritdoc}
	313	*/
	314	public function getGoogleAuthenticatorSecret(): string
	315	{
	316	return $this->googleAuthenticatorSecret;
	317	}
	318
	319	/**
	320	* {@inheritdoc}
	321	*/
	322	public function setGoogleAuthenticatorSecret(?string $googleAuthenticatorSecret): void
	323	{
	324	$this->googleAuthenticatorSecret = $googleAuthenticatorSecret;
2db616b5	325	}
23406ca3	326
dfd0a7bc JB	327	public function setBackupCodes(array $codes = null)
	328	{
	329	$this->backupCodes = $codes;
	330	}
	331
	332	public function getBackupCodes()
	333	{
	334	return $this->backupCodes;
	335	}
	336
	337	/**
	338	* {@inheritdoc}
	339	*/
	340	public function isBackupCode(string $code): bool
	341	{
4654a83b	342	return false === $this->findBackupCode($code) ? false : true;
dfd0a7bc JB	343	}
	344
	345	/**
	346	* {@inheritdoc}
	347	*/
	348	public function invalidateBackupCode(string $code): void
	349	{
4654a83b	350	$key = $this->findBackupCode($code);
dfd0a7bc JB	351
	352	if (false !== $key) {
	353	unset($this->backupCodes[$key]);
	354	}
	355	}
	356
23406ca3 NL	357	/**
	358	* @param Client $client
	359	*
	360	* @return User
	361	*/
	362	public function addClient(Client $client)
	363	{
	364	$this->clients[] = $client;
	365
	366	return $this;
	367	}
	368
	369	/**
	370	* @return ArrayCollection<Entry>
	371	*/
	372	public function getClients()
	373	{
	374	return $this->clients;
	375	}
0c00e525 JB	376
	377	/**
	378	* Only used by the API when creating a new user it'll also return the first client (which was also created at the same time).
	379	*
	380	* @return Client
	381	*/
	382	public function getFirstClient()
	383	{
eb570e49 JB	384	if (!empty($this->clients)) {
eb570e49 JB	385	return $this->clients->first();
0c00e525	386	}
0c00e525	387	}
4654a83b JB	388
	389	/**
	390	* Try to find a backup code from the list of backup codes of the current user.
	391	*
	392	* @param string $code Given code from the user
	393	*
	394	* @return string\|false
	395	*/
	396	private function findBackupCode(string $code)
	397	{
	398	foreach ($this->backupCodes as $key => $backupCode) {
	399	// backup code are hashed using `password_hash`
	400	// see ConfigController->otpAppAction
	401	if (password_verify($code, $backupCode)) {
	402	return $key;
	403	}
	404	}
	405
	406	return false;
	407	}
9d50517c	408	}