src/Controller/EnquiryDefaultController.php line 38

Open in your IDE?
  1. <?php
  3. namespace App\Controller;
  5. use Swift_Mailer;
  6. use App\Entity\Enquiry;
  7. use App\Form\EnquiryType;
  8. use App\Annotation\CmsComponent;
  9. use Doctrine\ORM\EntityManagerInterface;
  10. use Symfony\Component\HttpFoundation\Request;
  11. use Google\Cloud\RecaptchaEnterprise\V1\Event;
  12. use Symfony\Component\HttpFoundation\Response;
  13. use Symfony\Component\Routing\Annotation\Route;
  14. use Google\Cloud\RecaptchaEnterprise\V1\Assessment;
  15. use Google\Cloud\RecaptchaEnterprise\V1\CreateAssessmentRequest;
  16. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  17. use Google\Cloud\RecaptchaEnterprise\V1\TokenProperties\InvalidReason;
  18. use Google\Cloud\RecaptchaEnterprise\V1\Client\RecaptchaEnterpriseServiceClient;
  20. class EnquiryDefaultController extends AbstractController
  21. {
  22.     private ?RecaptchaEnterpriseServiceClient $client null;
  23.     private string $errorMessage '';
  25.     public function __construct(
  26.         private readonly EntityManagerInterface $em,
  27.         private readonly Swift_Mailer $mailer,
  28.         private readonly string $recaptcha_key,
  29.         private readonly string $recaptcha_project_id,
  30.         private readonly string $projectRoot
  31.     ) {
  32.     }
  34.     /**
  35.      * @CmsComponent("WhatsApp Block", active=true, routeName="whatsapp_block")
  36.      */
  37.     #[Route(path'/whatsapp-block'name'whatsapp_block')]
  38.     public function whatsappBlock(): Response
  39.     {
  40.         return $this->render('@theme/enquiry/whatsapp-block.html.twig');
  41.     }
  43.     /**
  44.      * @CmsComponent("Embed Enquiry Form", active=true, routeName="embed_enquiry")
  45.      */
  46.     #[Route(path'/pcgc-enquiry'name'embed_enquiry')]
  47.     public function embedEnquiry(Request $request): Response
  48.     {
  49.         $enquiry = new Enquiry();
  50.         $enquiry->setSubject('TaurusHR Website Enquiry');
  52.         // $this->setTempData($enquiry);
  54.         $form $this->createForm(EnquiryType::class, $enquiry);
  55.         $form->handleRequest($request);
  57.         $error false;
  58.         $success false;
  59.         $errorMessage '';
  61.         if ($form->isSubmitted()) {
  62.             if ($this->spamChecksPass($request)) {
  63.                 if ($form->isValid()) {
  64.                     $this->em->persist($enquiry);
  65.                     $this->em->flush();
  66.                     $success true;
  67.                     $this->sendEmail($enquiry);
  68.                 } else {
  69.                     $error true;
  70.                     $errorMessage 'Error - Check the form for errors';
  71.                 }
  72.             } else {
  73.                 $error true;
  74.                 $errorMessage $this->errorMessage;
  75.             }
  76.         }
  78.         return $this->render('@theme/enquiry/enquiry.html.twig', [
  79.             'enquiry' => $enquiry,
  80.             'error' => $error,
  81.             'success' => $success,
  82.             'errorMessage' => $errorMessage,
  83.             'form' => $form->createView(),
  84.         ]);
  85.     }
  89.     #[Route(path'/email-test'name'email_test')]
  90.     public function emailTest(): Response
  91.     {
  92.         return $this->render('@theme/emails/enquiry-confirmed.html.twig');
  93.     }
  95.     private function spamChecksPass(Request $request): bool
  96.     {
  97.         // also test form execution time
  98.         try {
  99.             $posted $request->request->All();
  101.             // check for captcha response
  102.             $recaptcha $posted['g-recaptcha-response'] ?? null;
  104.             if (empty($recaptcha)) {
  105.                 return false;
  106.             }
  108.             // check for form execution time
  109.             $loadedAt = (int) $posted['enquiry']['_loaded_at'] ?? 0;
  111.             if ($loadedAt && (time() - $loadedAt) < 3) {
  112.                 return false;
  113.             }
  115.             // check for $honeypot field
  116.             $honeypot $posted['enquiry']['website'] ?? null;
  118.             if (!empty($honeypot)) {
  119.                 return false;
  120.             }
  122.             return $this->verifyRecaptcha($recaptcha);
  123.         } catch (\Throwable $th) {
  124.             return false;
  125.         }
  126.     }
  128.     private function verifyRecaptcha($token): bool
  129.     {
  130.         $this->errorMessage '';
  132.         if (! $this->client) {
  133.             $this->client = new RecaptchaEnterpriseServiceClient([
  134.                 'credentials' => $this->projectRoot '/recaptcha-credentials.json',
  135.             ]);
  137.             $projectName $this->client->projectName($this->recaptcha_project_id);
  138.         }
  140.         // Set the properties of the event to be tracked.
  141.         $event = (new Event())
  142.             ->setSiteKey($this->recaptcha_key)
  143.             ->setToken($token);
  145.         $assessment = (new Assessment())
  146.             ->setEvent($event);
  148.         $request = (new CreateAssessmentRequest())
  149.             ->setParent($projectName)
  150.             ->setAssessment($assessment);
  152.         try {
  153.             $response $this->client->createAssessment($request);
  155.             if ($response->getTokenProperties()->getValid() == false) {
  156.                 $this->errorMessage InvalidReason::name($response->getTokenProperties()->getInvalidReason());
  158.                 return false;
  159.             }
  161.             $score $response->getRiskAnalysis()->getScore();
  163.             if ($score 0.5) {
  164.                 $this->errorMessage 'Low score: ' $score;
  166.                 return false;
  167.             }
  168.         } catch (\Exception $e) {
  169.             return false;
  170.         }
  172.         return true;
  173.     }
  175.     private function sendEmail(Enquiry $enquiry): void
  176.     {
  177.         $message_to_client = (new \Swift_Message())
  178.             ->setSubject('Enquiry Received via '.$this->getParameter('sitename').' website')
  179.             ->setFrom($this->getParameter('email_norely'))
  180.             ->setTo($this->getParameter('email_primary'))
  181.             ->setBody(
  182.                 $this->renderView('@theme/emails/enquiry-to-client.html.twig', ['enquiry' => $enquiry]),
  183.                 'text/html'
  184.             )
  185.         ;
  186.         $this->mailer->send($message_to_client);
  188.         $message_to_user = (new \Swift_Message())
  189.             ->setSubject('Enquiry sent to '.$this->getParameter('sitename').' confirmed')
  190.             ->setFrom($this->getParameter('email_norely'))
  191.             ->setTo($enquiry->getEmail())
  192.             ->setBody(
  193.                 $this->renderView(
  194.                     '@theme/emails/enquiry-confirmed.html.twig',
  195.                     ['enquiry' => $enquiry]
  196.                 ),
  197.                 'text/html'
  198.             )
  199.         ;
  200.         $this->mailer->send($message_to_user);
  201.     }
  203.     private function setTempData(Enquiry $enquiry): void
  204.     {
  205.         $enquiry->setName('Test Recaptcha');
  206.         $enquiry->setContactNumber('0400000000');
  207.         $enquiry->setEmail('dev@thetlb.co.uk');
  208.         $enquiry->setInterestedService('HR');
  209.         $enquiry->setMessage('Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat.');
  210.     }
  211. }