eXtreme
diff --git a/‎app/Resources/views/profile/change_password.html.twig
Lines changed: 12 additions & 0 deletions b/‎app/Resources/views/profile/change_password.html.twig
Lines changed: 12 additions & 0 deletions
diff --git a/‎app/config/security.yml
Lines changed: 4 additions & 0 deletions b/‎app/config/security.yml
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/AppBundle/Controller/ProfileController.php
Lines changed: 50 additions & 0 deletions b/‎src/AppBundle/Controller/ProfileController.php
Lines changed: 50 additions & 0 deletions
diff --git a/‎src/AppBundle/Form/UserPasswordType.php
Lines changed: 30 additions & 0 deletions b/‎src/AppBundle/Form/UserPasswordType.php
Lines changed: 30 additions & 0 deletions
@@ -0,0 +1,12 @@
+{% extends 'base.html.twig' %}
+
+{% block main %}
+    {{ form_start(form, { method: 'POST', action: path('profile_change_password') }) }}
+        {{ form_widget(form) }}
+
+        <div class="form-group">
+            <button class="btn btn-primary pull-right" type="submit">{{ 'action.save'|trans }}</button>
+        </div>
+    {{ form_end(form) }}
+
+{% endblock main %}
@@ -1,4 +1,7 @@
 security:
+    role_hierarchy:
+        ROLE_ADMIN: ['ROLE_USER']
+
     encoders:
         # Our user class and the algorithm we'll use to encode passwords
         # http://symfony.com/doc/current/book/security.html#encoding-the-user-s-password
@@ -43,3 +46,4 @@ security:
         # this is a catch-all for the admin area
         # additional security lives in the controllers
         - { path: ^/admin, roles: ROLE_ADMIN }
+        - { path: ^/profile, roles: ROLE_USER }
@@ -0,0 +1,50 @@
+<?php
+
+namespace AppBundle\Controller;
+
+use AppBundle\Entity\User;
+use Symfony\Bundle\FrameworkBundle\Controller\Controller;
+use Sensio\Bundle\FrameworkExtraBundle\Configuration\Method;
+use Sensio\Bundle\FrameworkExtraBundle\Configuration\Route;
+use Sensio\Bundle\FrameworkExtraBundle\Configuration\Security;
+use Symfony\Component\HttpFoundation\Request;
+
+/**
+ * @Route("/profile")
+ * @Security("has_role('ROLE_USER')")
+ */
+class ProfileController extends Controller
+{
+    /**
+     * @Route("/change-password", name="profile_change_password")
+     * @Method({"GET", "POST"})
+     */
+    public function changePasswordAction(Request $request)
+    {
+        /** @var User $user */
+        $user = $this->getUser();
+
+        $form = $this->createForm('AppBundle\Form\UserPasswordType');
+
+        $form->handleRequest($request);
+
+        if ($form->isSubmitted() && $form->isValid()) {
+            $encoder = $this->get('security.password_encoder');
+            $encodedPassword = $encoder->encodePassword($user, $form->get('new_password')->getData());
+
+            $user->setPassword($encodedPassword);
+
+            $entityManager = $this->getDoctrine()->getManager();
+            $entityManager->persist($user);
+            $entityManager->flush();
+
+            $this->addFlash('success', 'profile.password_changed');
+
+            return $this->redirectToRoute('profile_change_password');
+        }
+
+        return $this->render('profile/change_password.html.twig', array(
+            'form' => $form->createView(),
+        ));
+    }
+}
@@ -0,0 +1,30 @@
+<?php
+
+namespace AppBundle\Form;
+
+use Symfony\Component\Form\AbstractType;
+use Symfony\Component\Form\Extension\Core\Type\PasswordType;
+use Symfony\Component\Form\FormBuilderInterface;
+use Symfony\Component\OptionsResolver\OptionsResolver;
+
+class UserPasswordType extends AbstractType
+{
+    /**
+     * {@inheritdoc}
+     */
+    public function buildForm(FormBuilderInterface $builder, array $options)
+    {
+        $builder
+            ->add('new_password', PasswordType::class, array(
+                'label' => 'label.new_password',
+            ))
+        ;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    public function configureOptions(OptionsResolver $resolver)
+    {
+    }
+}