vendor/kematjaya/user-bundle/src/Security/KmjLoginAuthenticator.php line 141

Open in your IDE?
  1. <?php
  3. namespace Kematjaya\UserBundle\Security;
  5. use Kematjaya\UserBundle\Form\LoginType;
  6. use Kematjaya\UserBundle\Repo\KmjUserRepoInterface;
  7. use Kematjaya\UserBundle\Config\RoutingConfigurationFactoryInterface;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  14. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  15. use Symfony\Component\Security\Core\Security;
  16. use Symfony\Component\Security\Core\User\UserInterface;
  17. use Symfony\Component\Security\Core\User\UserProviderInterface;
  18. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  19. use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
  20. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  21. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  22. use Symfony\Component\DependencyInjection\ParameterBag\ContainerBagInterface;
  23. use Symfony\Component\DependencyInjection\ContainerInterface;
  24. use Symfony\Component\Form\FormInterface;
  25. use Symfony\Component\Form\FormError;
  27. /**
  28.  * @deprecated since version 4.2.0, use Kematjaya\UserBundle\Security\FormLoginAuthenticator instead
  29.  */
  30. class KmjLoginAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
  31. {
  32.     use TargetPathTrait;
  34.     public const LOGIN_ROUTE 'kmj_user_login';
  36.     /**
  37.      * 
  38.      * @var array
  39.      */
  40.     private $config;
  41.     
  42.     /**
  43.      * 
  44.      * @var KmjUserRepoInterface
  45.      */
  46.     private $kmjUserRepo;
  47.     
  48.     /**
  49.      * 
  50.      * @var UrlGeneratorInterface
  51.      */
  52.     private $urlGenerator;
  53.     
  54.     /**
  55.      * 
  56.      * @var CsrfTokenManagerInterface
  57.      */
  58.     private $csrfTokenManager;
  59.     
  60.     /**
  61.      * 
  62.      * @var UserPasswordHasherInterface
  63.      */
  64.     private $passwordEncoder;
  65.     
  66.     /**
  67.      * 
  68.      * @var ContainerInterface
  69.      */
  70.     private $container;
  71.     
  72.     private $loginRoute;
  73.     
  74.     /**
  75.      * 
  76.      * @var string
  77.      */
  78.     private $error;
  80.     /**
  81.      * 
  82.      * @var RoutingConfigurationFactoryInterface
  83.      */
  84.     private $routingConfigurationFactory;
  85.     
  86.     public function __construct(
  87.         ContainerBagInterface $containerBag,
  88.         ContainerInterface $container,
  89.         KmjUserRepoInterface $kmjUserRepo
  90.         UrlGeneratorInterface $urlGenerator
  91.         CsrfTokenManagerInterface $csrfTokenManager
  92.         UserPasswordHasherInterface $passwordEncoder,
  93.             RoutingConfigurationFactoryInterface $routingConfigurationFactory
  94.     ) {
  95.         $this->container $container;
  96.         $this->config $containerBag->get('user');
  97.         $this->kmjUserRepo $kmjUserRepo;
  98.         $this->urlGenerator $urlGenerator;
  99.         $this->csrfTokenManager $csrfTokenManager;
  100.         $this->passwordEncoder $passwordEncoder;
  101.         $this->loginRoute $this->config['route']['login'];
  102.         $this->routingConfigurationFactory $routingConfigurationFactory;
  103.     }
  105.     public function supports(Request $request):bool
  106.     {
  107.         return $this->loginRoute === $request->attributes->get('_route')
  108.             && $request->isMethod(Request::METHOD_POST);
  109.     }
  111.     /**
  112.      * 
  113.      * @param Request $request
  114.      * @return mixed
  115.      */
  116.     public function getCredentials(Request $request)
  117.     {
  118.         $form $this->createForm(LoginType::class);
  119.         $form->handleRequest($request);
  120.         if (!$form->isValid()) {
  121.             
  122.             $this->error $this->getErrors($form);
  123.         }
  124.         
  125.         $credentials $form->getData();
  126.         
  127.         $request->getSession()->set(
  128.             Security::LAST_USERNAME,
  129.             $credentials['username']
  130.         );
  132.         return $credentials;
  133.     }
  135.     public function getUser($credentialsUserProviderInterface $userProvider):?UserInterface
  136.     {
  137.         if (null !== $this->error) {
  138.             throw new CustomUserMessageAuthenticationException($this->error);
  139.         }
  140.         
  141.         $user $this->kmjUserRepo->findOneByUsernameAndActive($credentials['username']);
  142.         if (!$user) {
  143.             
  144.             throw new CustomUserMessageAuthenticationException('Username could not be found.');
  145.         }
  147.         return $user;
  148.     }
  150.     public function checkCredentials($credentialsUserInterface $user):bool
  151.     {
  152.         return $this->passwordEncoder->isPasswordValid($user$credentials['password']);
  153.     }
  155.     /**
  156.      * Used to upgrade (rehash) the user's password automatically over time.
  157.      */
  158.     public function getPassword($credentials): ?string
  159.     {
  160.         return $credentials['password'];
  161.     }
  163.     public function onAuthenticationSuccess(Request $requestTokenInterface $token$providerKey):?Response
  164.     {
  165.         $redirectPath $this->routingConfigurationFactory->getLoginSuccessRedirectPath($token->getUser()->getRoles());
  166.         $this->saveTargetPath($request->getSession(), $providerKey$this->urlGenerator->generate($redirectPath));
  167.         $targetPath $this->getTargetPath($request->getSession(), $providerKey);
  168.         if ($targetPath) {
  169.             
  170.             return new RedirectResponse($targetPath);
  171.         }
  173.         throw new RedirectResponse('homepage');
  174.     }
  176.     protected function getLoginUrl():string
  177.     {
  178.         return $this->urlGenerator->generate($this->loginRoute);
  179.     }
  180.     
  181.     protected function createForm(string $className$data null): FormInterface
  182.     {
  183.         return $this->container->get('form.factory')->create($className$data);
  184.     }
  185.     
  186.     protected function getErrors(FormInterface $form):?string 
  187.     {
  188.         $errors = [];
  189.         foreach ($form->getErrors(true) as $error) {
  190.             if (!$error instanceof FormError) {
  191.                 
  192.                 continue;
  193.             }
  194.             $errors[] = sprintf("%s %s"$error->getOrigin() ? $error->getOrigin()->getName() . ': ' ''$error->getMessage());
  195.         }
  196.         
  197.         return implode(", "$errors);
  198.     }
  199. }