app/Customize/Controller/UpdateCustomerController.php line 164

Open in your IDE?
  1. <?php
  2. namespace Customize\Controller;
  4. use Symfony\Component\HttpFoundation\Request;
  5. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Method;
  6. use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route;
  7. use Symfony\Component\HttpFoundation\Response;
  8. use Doctrine\ORM\EntityManager;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Eccube\Common\EccubeConfig;
  11. use Eccube\Repository\PluginRepository;
  12. use Eccube\Service\Composer\ComposerServiceInterface;
  13. use Eccube\Util\CacheUtil;
  14. use Symfony\Component\DependencyInjection\ContainerInterface;
  15. use Eccube\Service\EntityProxyService;
  16. use Eccube\Service\SchemaService;
  17. use Eccube\Service\PluginApiService;
  18. use Eccube\Service\SystemService;
  19. use Eccube\Service\PluginContext;
  20. use Eccube\Util\StringUtil;
  21. //use Symfony\Bridge\Doctrine\RegistryInterface;
  22. use Doctrine\Common\Persistence\ManagerRegistry;
  23. use Eccube\Entity\Master\CustomerStatus;
  24. use Eccube\Repository\Master\CustomerStatusRepository;
  25. use Eccube\Repository\CustomerRepository;
  27. class UpdateCustomerController
  28. {
  29.     /**
  30.      * @var EccubeConfig
  31.      */
  32.     protected $eccubeConfig;
  34.     /**
  35.      * @var EntityManager
  36.      */
  37.     protected $entityManager;
  39.     /**
  40.      * @var PluginRepository
  41.      */
  42.     protected $pluginRepository;
  44.     /**
  45.      * @var EntityProxyService
  46.      */
  47.     protected $entityProxyService;
  49.     /**
  50.      * @var SchemaService
  51.      */
  52.     protected $schemaService;
  54.     /**
  55.      * @var ComposerServiceInterface
  56.      */
  57.     protected $composerService;
  59.     const VENDOR_NAME 'ec-cube';
  61.     /**
  62.      * Plugin type/library of ec-cube
  63.      */
  64.     const ECCUBE_LIBRARY 1;
  66.     /**
  67.      * Plugin type/library of other (except ec-cube)
  68.      */
  69.     const OTHER_LIBRARY 2;
  71.     /**
  72.      * @var string %kernel.project_dir%
  73.      */
  74.     private $projectRoot;
  76.     /**
  77.      * @var string %kernel.environment%
  78.      */
  79.     private $environment;
  81.     /**
  82.      * @var ContainerInterface
  83.      */
  84.     protected $container;
  86.     /** @var CacheUtil */
  87.     protected $cacheUtil;
  89.     /**
  90.      * @var PluginApiService
  91.      */
  92.     private $pluginApiService;
  94.     /**
  95.      * @var SystemService
  96.      */
  97.     private $systemService;
  99.     /**
  100.      * @var PluginContext
  101.      */
  102.     private $pluginContext;
  104.     /**
  105.      * @var CustomerRepository
  106.      */
  107.     protected $customerRepository;
  109.     /**
  110.      * PluginService constructor.
  111.      *
  112.      * @param EntityManagerInterface $entityManager
  113.      * @param PluginRepository $pluginRepository
  114.      * @param EntityProxyService $entityProxyService
  115.      * @param SchemaService $schemaService
  116.      * @param EccubeConfig $eccubeConfig
  117.      * @param ContainerInterface $container
  118.      * @param CacheUtil $cacheUtil
  119.      * @param ComposerServiceInterface $composerService
  120.      * @param PluginApiService $pluginApiService
  121.      * @param SystemService $systemService
  122.      * @param PluginContext $pluginContext
  123.      * @param RegistryInterface $registry
  124.      * 
  125.      */
  126.     public function __construct(
  127.         EntityManagerInterface $entityManager,
  128.         PluginRepository $pluginRepository,
  129.         EntityProxyService $entityProxyService,
  130.         SchemaService $schemaService,
  131.         EccubeConfig $eccubeConfig,
  132.         ContainerInterface $container,
  133.         CacheUtil $cacheUtil,
  134.         ComposerServiceInterface $composerService,
  135.         PluginApiService $pluginApiService,
  136.         SystemService $systemService,
  137.         PluginContext $pluginContext,
  138.         CustomerRepository $customerRepository
  139.         //RegistryInterface $registry
  140.         // ManagerRegistry $registry
  141.         ) {
  142.         // parent::__construct($registry, Customer::class);
  143.         $this->entityManager $entityManager;
  144.         $this->pluginRepository $pluginRepository;
  145.         $this->entityProxyService $entityProxyService;
  146.         $this->schemaService $schemaService;
  147.         $this->eccubeConfig $eccubeConfig;
  148.         $this->projectRoot $eccubeConfig->get('kernel.project_dir');
  149.         $this->environment $eccubeConfig->get('kernel.environment');
  150.         $this->container $container;
  151.         $this->cacheUtil $cacheUtil;
  152.         $this->composerService $composerService;
  153.         $this->pluginApiService $pluginApiService;
  154.         $this->systemService $systemService;
  155.         $this->pluginContext $pluginContext;
  156.         $this->customerRepository $customerRepository;
  157.     }
  159.     /**
  160.      * @Route("/api/update")
  161.      * @Method("POST")
  162.     */
  164.     public function getAction(Request $request)
  165.     {
  166.         $ip getenv('API_KV_IP');
  167.         // $ip = "3.114.86.82";
  168.         // $clientip = $request->getClientIp();
  169.         // $ips = explode (".",$ip);
  170.         // $clientips = explode (".",$clientip);
  171.         // log_info('会員編集API ', ['HTTP_X_FORWARDED_FOR' => $_SERVER['HTTP_X_FORWARDED_FOR']]);
  172.         // log_info('会員編集API ', ['IP' => $ips,'IP2' => $clientips]);
  173.         // log_info('会員編集API ', ['IP' => $ips[0],'IP2' => $clientips[0]]);
  174.         // log_info('会員編集API ', ['is not *' => ($ips[0] !== '*')]);
  175.         // if($ips[0] !== "*"){
  176.         //     if($ips[0] != $clientips[0]){
  177.         //         log_info('会員編集API IPエラー1', ['IP' => $request->getClientIp()]);
  178.         //         $return_code['status'] = false;
  179.         //         $return_code['error_message'] = 'IPエラー1';
  180.         //         return new Response(json_encode($return_code));
  181.         //     }
  182.         // }
  183.         // if($ips[1] !== "*"){
  184.         //     if($ips[1] != $clientips[1]){
  185.         //         log_info('会員編集API IPエラー2', ['IP' => $request->getClientIp()]);
  186.         //         $return_code['status'] = false;
  187.         //         $return_code['error_message'] = 'IPエラー2';
  188.         //         return new Response(json_encode($return_code));
  189.         //     }
  190.         // }
  191.         // if($ips[2] !== "*"){
  192.         //     if($ips[2] != $clientips[2]){
  193.         //         log_info('会員編集API IPエラー3', ['IP' => $request->getClientIp()]);
  194.         //         $return_code['status'] = false;
  195.         //         $return_code['error_message'] = 'IPエラー3';
  196.         //         return new Response(json_encode($return_code));
  197.         //     }
  198.         // }
  199.         // if($ips[3] !== "*"){
  200.         //     if($ips[3] != $clientips[3]){
  201.         //         log_info('会員編集API IPエラー4', ['IP' => $request->getClientIp()]);
  202.         //         $return_code['status'] = false;
  203.         //         $return_code['error_message'] = 'IPエラー4';
  204.         //         return new Response(json_encode($return_code));
  205.         //     }
  206.         // }
  207.         // if ($_SERVER['HTTP_X_FORWARDED_FOR'] != $ip) {
  208.         if ($_SERVER['HTTP_X_FORWARDED_FOR'] != $ip) {
  209.             log_info('会員編集API IPエラー', ['IP' => $_SERVER['HTTP_X_FORWARDED_FOR']]);
  210.             $return_code['status'] = false;
  211.             $return_code['error_message'] = 'IPエラー';
  212.             return new Response(json_encode($return_code));
  213.         }
  214.         $content $request->getContent();
  215.         $param json_decode($contenttrue);
  216.         $em $this->entityManager;
  217.         try{
  218.             $aes_key getenv('API_AES_KEY');
  219.             log_info('会員編集API ', ['id' => $param["user_id"],'mail' => $param['mail_address'],'pass' => $param['password'],'salt' => $param['salt']]);
  220.             if(!empty($param['mail_address']) && !empty($param['user_id']) && !empty($param['password']) && !empty($param['salt'])){
  221.                 $mail_address openssl_decrypt($param["mail_address"],'aes-256-ecb',$aes_key);
  222.                 $user_id openssl_decrypt($param["user_id"],'aes-256-ecb',$aes_key);
  223.                 $password $param["password"];
  224.                 $salt $param["salt"];
  225.             }else{
  226.                 $return_code['status'] = false;
  227.                 $return_code['user_id'] = '';
  228.                 $return_code['error_no'] = 4;
  229.                 $return_code['message'] = '会員編集エラー()';
  230.                 return new Response(json_encode($return_code));
  231.             }
  232.             log_info('会員編集API ', ['id' => $user_id,'mail' => $mail_address,'pass' => $password,'salt' => $salt]);
  234.             $em->getConnection()->beginTransaction();
  235.             $secret_Key $this->customerRepository->getUniqueSecretKey();
  236.             // $secretkey = $this->getUniqueSecretKey();
  237.             $conn $em->getConnection();
  239.             // 存在チェック
  240.             // $stmt = $conn->prepare('SELECT id FROM dtb_customer WHERE id = :id;');
  241.             // $stmt->execute([':id' => $user_id]);
  242.             // $row = $stmt->fetch();
  243.             $row $this->customerRepository->findOneBy([
  244.                 'id' => $user_id,
  245.             ]);
  247.             if (!$row) {
  248.                 $return_code['status'] = false;
  249.                 $return_code['user_id'] = $param["user_id"];
  250.                 $return_code['error_message'] = '会員は登録されていません。';
  251.                 return new Response(json_encode($return_code));
  252.             }
  253.             $sth $conn->prepare('UPDATE dtb_customer set email = :email, password = :password, salt = :salt, update_date = current_timestamp WHERE id = :id;');
  254.             $sth->execute([
  255.                 ':email' => $mail_address,
  256.                 ':password' => $password,
  257.                 ':salt' => $salt,
  258.                 ':id' => $user_id
  259.             ]);
  260.             $em->getConnection()->commit();
  261.             
  262.             $return_code['status'] = true;
  263.             $return_code['user_id'] = $param["user_id"];
  264.             $return_code['error_message'] = '';
  265.         } catch (\Exception $e) {
  266.             $return_code['status'] = false;
  267.             $return_code['user_id'] = '';
  268.             $return_code['error_message'] = '会員編集エラー('.$e.')';
  269.             $conn->rollback();
  270.         }
  271.         return new Response(json_encode($return_code));
  272.     }
  273.     /**
  274.      * ユニークなシークレットキーを返す.
  275.      *
  276.      * @return string
  277.      */
  278.     // public function getUniqueSecretKey()
  279.     // {
  280.     //     $em2 = $this->entityManager;
  281.     //     $conn2 = $em2->getConnection();
  282.     //     do {
  283.     //         $key = StringUtil::random(32);
  284.     //         $stmt2 = $conn2->prepare('SELECT id FROM dtb_customer WHERE secret_key = :secretkey;');
  285.     //         $stmt2->execute([':secretkey' => $key]);
  286.     //         $Customer = $stmt2->fetch();
  287.     //     } while ($Customer);
  289.     //     return $key;
  290.     // }
  291. }