chg: usr: add modern Webauthn authentication #4

src/Controller/ProfileController.php

@@ -12,6 +12,7 @@ namespace App\Controller;
 
 use App\Entity\User;
 use App\Repository\PlayedGameRepository;
+use App\Service\WebAuthnService;
 use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
 use Symfony\Component\HttpFoundation\Response;
 use Symfony\Component\HttpKernel\Attribute\AsController;
@@ -30,7 +31,10 @@ use Symfony\Component\Routing\Attribute\Route;
 #[AsController]
 class ProfileController extends AbstractController
 {
-    public function __construct(private readonly PlayedGameRepository $repo) { }
+    public function __construct(
+        private readonly PlayedGameRepository $repo,
+        private readonly WebAuthnService $webAuthnService
+    ) { }
 
     #[Route('/profile', name: 'MineSeekerBundle_profile')]
     public function index(): Response
@@ -49,4 +53,26 @@ class ProfileController extends AbstractController
             'recent' => $this->repo->findRecentFinishedForUser($user),
         ]);
     }
+
+    #[Route('/profile/security', name: 'MineSeekerBundle_profile_security')]
+    public function security(): Response
+    {
+        /** @var User $user */
+        $user = $this->getUser();
+        $this->denyAccessUnlessGranted('IS_AUTHENTICATED_REMEMBERED');
+
+        $credentials = $this->webAuthnService->getCredentialsForUser($user);
+        $credentialsData = array_map(fn ($cred) => [
+            'id' => $cred->getId(),
+            'credentialName' => $cred->getCredentialName(),
+            'createdAt' => $cred->getCreatedAt()?->format('Y-m-d H:i:s'),
+            'lastUsedAt' => $cred->getLastUsedAt()?->format('Y-m-d H:i:s'),
+            'isBackupEligible' => $cred->isBackupEligible(),
+            'isBackupAuthenticated' => $cred->isBackupAuthenticated(),
+        ], $credentials);
+
+        return $this->render('Security/profile_security.html.twig', [
+            'credentials' => $credentialsData,
+        ]);
+    }
 }