Thomas Peterson
ebaf509a2f
Stack & Setup
- Dockerisierte Dev-Umgebung (PHP 8.4-FPM, Nginx, MariaDB 11.4)
- Symfony 7.4 + API Platform 4.3, Doctrine ORM, LexikJWT, Messenger
- Vue 3 + TS (Vite), Vue Router, Pinia, Axios
Kern-Domäne & Auth
- Entitäten: User, PlatformPlan, Reseller, Company, Domain, Location,
Employee, ContactLink (UUIDv7)
- JWT-Login (/api/login), Rollen-Hierarchie, /api/me
- Mandantentrennung via API-Platform-Query-Extension (Lesen) +
TenantStampProcessor (Schreiben)
Öffentliche Profile (SSR)
- Profil-Landingpage, vCard-Download, QR-Code im Marken-Look
- Stabiler NFC/QR-Kurz-Link /t/{code} -> Redirect aufs aktuelle Profil
- Firmenspezifisches Branding (Farben/Logo) auf der Profilseite
Verwaltungsoberfläche (SPA)
- Brand-Look (dunkle Sidebar), rollenbasierte Navigation
- Dashboard, Reseller (+Provisioning), Firmen, Mitarbeiter, Standorte,
Domains, Design/Branding mit Live-Vorschau
Konzept & Doku: docs/KONZEPT.md (inkl. Wallet/Sync §12), README.md
Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
184 lines
4.1 KiB
PHP
184 lines
4.1 KiB
PHP
<?php
|
|
|
|
namespace App\Entity;
|
|
|
|
use App\Repository\UserRepository;
|
|
use Doctrine\ORM\Mapping as ORM;
|
|
use Symfony\Bridge\Doctrine\Types\UuidType;
|
|
use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
|
|
use Symfony\Component\Security\Core\User\UserInterface;
|
|
use Symfony\Component\Uid\Uuid;
|
|
|
|
#[ORM\Entity(repositoryClass: UserRepository::class)]
|
|
#[ORM\Table(name: '`user`')]
|
|
#[ORM\UniqueConstraint(name: 'uniq_user_email', fields: ['email'])]
|
|
class User implements UserInterface, PasswordAuthenticatedUserInterface
|
|
{
|
|
public const ROLE_PLATFORM_ADMIN = 'ROLE_PLATFORM_ADMIN';
|
|
public const ROLE_RESELLER_ADMIN = 'ROLE_RESELLER_ADMIN';
|
|
public const ROLE_COMPANY_ADMIN = 'ROLE_COMPANY_ADMIN';
|
|
public const ROLE_EMPLOYEE = 'ROLE_EMPLOYEE';
|
|
|
|
#[ORM\Id]
|
|
#[ORM\Column(type: UuidType::NAME, unique: true)]
|
|
private Uuid $id;
|
|
|
|
#[ORM\Column(length: 180)]
|
|
private string $email;
|
|
|
|
/** @var string[] */
|
|
#[ORM\Column]
|
|
private array $roles = [];
|
|
|
|
#[ORM\Column]
|
|
private string $password;
|
|
|
|
#[ORM\Column(length: 20)]
|
|
private string $status = 'active';
|
|
|
|
/** Reseller-Kontext (für Reseller-Admins). */
|
|
#[ORM\ManyToOne(targetEntity: Reseller::class)]
|
|
private ?Reseller $reseller = null;
|
|
|
|
/** Firmen-Kontext (für Firmen-Admins). */
|
|
#[ORM\ManyToOne(targetEntity: Company::class)]
|
|
private ?Company $company = null;
|
|
|
|
/** Verknüpftes Mitarbeiterprofil (für Self-Service). */
|
|
#[ORM\OneToOne(targetEntity: Employee::class, inversedBy: 'user')]
|
|
private ?Employee $employee = null;
|
|
|
|
#[ORM\Column(type: 'datetime_immutable')]
|
|
private \DateTimeImmutable $createdAt;
|
|
|
|
#[ORM\Column(type: 'datetime_immutable', nullable: true)]
|
|
private ?\DateTimeImmutable $lastLoginAt = null;
|
|
|
|
public function __construct()
|
|
{
|
|
$this->id = Uuid::v7();
|
|
$this->createdAt = new \DateTimeImmutable();
|
|
}
|
|
|
|
public function getId(): Uuid
|
|
{
|
|
return $this->id;
|
|
}
|
|
|
|
public function getEmail(): string
|
|
{
|
|
return $this->email;
|
|
}
|
|
|
|
public function setEmail(string $email): self
|
|
{
|
|
$this->email = $email;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getUserIdentifier(): string
|
|
{
|
|
return $this->email;
|
|
}
|
|
|
|
/** @return string[] */
|
|
public function getRoles(): array
|
|
{
|
|
$roles = $this->roles;
|
|
$roles[] = 'ROLE_USER';
|
|
|
|
return array_values(array_unique($roles));
|
|
}
|
|
|
|
/** @param string[] $roles */
|
|
public function setRoles(array $roles): self
|
|
{
|
|
$this->roles = $roles;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getPassword(): string
|
|
{
|
|
return $this->password;
|
|
}
|
|
|
|
public function setPassword(string $password): self
|
|
{
|
|
$this->password = $password;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getStatus(): string
|
|
{
|
|
return $this->status;
|
|
}
|
|
|
|
public function setStatus(string $status): self
|
|
{
|
|
$this->status = $status;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getReseller(): ?Reseller
|
|
{
|
|
return $this->reseller;
|
|
}
|
|
|
|
public function setReseller(?Reseller $reseller): self
|
|
{
|
|
$this->reseller = $reseller;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getCompany(): ?Company
|
|
{
|
|
return $this->company;
|
|
}
|
|
|
|
public function setCompany(?Company $company): self
|
|
{
|
|
$this->company = $company;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getEmployee(): ?Employee
|
|
{
|
|
return $this->employee;
|
|
}
|
|
|
|
public function setEmployee(?Employee $employee): self
|
|
{
|
|
$this->employee = $employee;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function getCreatedAt(): \DateTimeImmutable
|
|
{
|
|
return $this->createdAt;
|
|
}
|
|
|
|
public function getLastLoginAt(): ?\DateTimeImmutable
|
|
{
|
|
return $this->lastLoginAt;
|
|
}
|
|
|
|
public function setLastLoginAt(?\DateTimeImmutable $lastLoginAt): self
|
|
{
|
|
$this->lastLoginAt = $lastLoginAt;
|
|
|
|
return $this;
|
|
}
|
|
|
|
public function eraseCredentials(): void
|
|
{
|
|
// ggf. temporäre, sensible Daten löschen
|
|
}
|
|
}
|