feat(User): Added impersonation to controller

Samir Comprés · Samir Comprés · commit a668b5b59987 · 2020-12-15T15:54:17.000-05:00
diff --git a/Controller/Admin/User/KeycloakAdminUserController.php b/Controller/Admin/User/KeycloakAdminUserController.php
@@ -7,6 +7,7 @@
 use AppBundle\Util\Rest\RestResponse;
 use GuzzleHttp\Exception\ClientException;
 use Symfony\Bundle\FrameworkBundle\Controller\Controller;
+use Symfony\Component\HttpFoundation\RedirectResponse;
 use Symfony\Component\HttpFoundation\Request;
 use Symfony\Component\Routing\Annotation\Route;
 
@@ -292,4 +293,21 @@ public function resetPasswordAction(Request $request, string $id) {
             return new RestResponse(null, 500, "An unknown error occurred while sending the reset password request. Please try again or contact support if the problem persists.");
         }
     }
+
+    /**
+     * @Route("/user/{id}/impersonate", name="keycloak_admin_impersonate", options={"expose"=true}, methods={"GET"})
+     * @param Request $request
+     * @param $id
+     * @return RestResponse
+     */
+    public function impersonateAction(Request $request, string $id) {
+        try{
+            $this->get('nti.keycloak.security.service')->impersonateUser($id);
+            $defaultTargetPath = $this->container->getParameter('nti_keycloak_security.default_target_path');
+            $redirect_route = $this->container->get('router')->generate($defaultTargetPath);
+            return new RedirectResponse($redirect_route);
+        } catch (\Exception $ex){
+            return new RestResponse(null, 500, "An unknown error occurred while impersonating the user. Please try again or contact support if the problem persists.");
+        }
+    }
 }
diff --git a/Controller/ApiAdmin/User/KeycloakApiAdminUserController.php b/Controller/ApiAdmin/User/KeycloakApiAdminUserController.php
@@ -103,5 +103,15 @@ public function addRolesAction(Request $request, string $id) {
     public function removeRolesAction(Request $request, string $id) {
         return $this->forward("NTI\KeycloakSecurityBundle\Controller\Admin\User\KeycloakAdminUserController::removeRolesAction",["request" => $request, "id" => $id]);
     }
+    
+    /**
+     * @Route("/user/{id}/resetPassword", name="keycloak_api_admin_user_reset_password", options={"expose"=true}, methods={"POST"})
+     * @param Request $request
+     * @param $id
+     * @return RestResponse
+     */
+    public function resetPasswordAction(Request $request, string $id) {
+        return $this->forward("NTI\KeycloakSecurityBundle\Controller\Admin\User\KeycloakAdminUserController::resetPasswordAction",["request" => $request, "id" => $id]);
+    }
 
 }
diff --git a/Service/KeycloakSecurityService.php b/Service/KeycloakSecurityService.php
@@ -94,7 +94,7 @@ public function impersonateUser($userId) {
         $oldToken = $tokenStorage->getToken();
         $oldUser = $oldToken->getUser();
 
-        if (!$oldUser instanceof KeycloakUser) {
+        if (!$newUser instanceof KeycloakUser) {
             throw new \RuntimeException('The user must be an instance of KeycloakUser');
         }
 

Original file line number	Diff line number	Diff line change
`@@ -94,7 +94,7 @@ public function impersonateUser($userId) {`
`94`	`94`	`$oldToken = $tokenStorage->getToken();`
`95`	`95`	`$oldUser = $oldToken->getUser();`
`96`	`96`
`97`		`- if (!$oldUser instanceof KeycloakUser) {`
	`97`	`+ if (!$newUser instanceof KeycloakUser) {`
`98`	`98`	`throw new \RuntimeException('The user must be an instance of KeycloakUser');`
`99`	`99`	`}`
`100`	`100`