src/Security/LoginFormAuthenticator.php line 64

Open in your IDE?
  1. <?php
  3. // src/Security/LoginFormAuthenticator.php
  4. namespace App\Security;
  6. use App\Entity\User;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  12. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  15. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  16. use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
  17. use Symfony\Component\Security\Core\Security;
  18. use Symfony\Component\Security\Core\User\UserInterface;
  19. use Symfony\Component\Security\Core\User\UserProviderInterface;
  20. use Symfony\Component\Security\Csrf\CsrfToken;
  21. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  22. use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
  23. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  24. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  26. class LoginFormAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
  27. {
  28.     use TargetPathTrait;
  30.     public const LOGIN_ROUTE 'app_login';
  32.     private $entityManager;
  33.     private $urlGenerator;
  34.     private $csrfTokenManager;
  35.     private $passwordEncoder;
  37.     private $security;
  39.     public function __construct(EntityManagerInterface $entityManagerUrlGeneratorInterface $urlGenerator,
  40.                                 CsrfTokenManagerInterface $csrfTokenManager,
  41.                                 UserPasswordHasherInterface $passwordEncoder)
  42.     {
  43.         $this->entityManager $entityManager;
  44.         $this->urlGenerator $urlGenerator;
  45.         $this->csrfTokenManager $csrfTokenManager;
  46.         $this->passwordEncoder $passwordEncoder;
  47.     }
  49.     public function supports(Request $request): bool
  50.     {
  51.         return self::LOGIN_ROUTE === $request->attributes->get('_route')
  52.             && $request->isMethod('POST');
  53.     }
  55.     public function getCredentials(Request $request)
  56.     {
  57.         $credentials = [
  58.             'email' => $request->request->get('email'),
  59.             'password' => $request->request->get('password'),
  60.             'csrf_token' => $request->request->get('_csrf_token'),
  61.         ];
  62.         $request->getSession()->set(
  63.             Security::LAST_USERNAME,
  64.             $credentials['email']
  65.         );
  67.         return $credentials;
  68.     }
  70.     public function getUser($credentialsUserProviderInterface $userProvider): ?User
  71.     {
  72.         $token = new CsrfToken('authenticate'$credentials['csrf_token']);
  73.         if (!$this->csrfTokenManager->isTokenValid($token)) {
  74.             throw new InvalidCsrfTokenException();
  75.         }
  77.         $user $this->entityManager->getRepository(User::class)->findOneBy(['email' => $credentials['email']]);
  79.         if (!$user) {
  80.             // fail authentication with a custom error
  81.             throw new CustomUserMessageAuthenticationException('Email could not be found.');
  82.         }
  84.         return $user;
  85.     }
  87.     public function checkCredentials($credentialsUserInterface $user): bool
  88.     {
  89.         return $this->passwordEncoder->isPasswordValid($user$credentials['password']);
  90.     }
  92.     /**
  93.      * Used to upgrade (rehash) the user's password automatically over time.
  94.      */
  95.     public function getPassword($credentials): ?string
  96.     {
  97.         return $credentials['password'];
  98.     }
  100.     public function onAuthenticationSuccess(Request $requestTokenInterface $token$providerKey): ?Response
  101.     {
  102.         /*if ($this->security->isGranted('ROLE_ADMIN')){
  103.             return new RedirectResponse($this->router->generate('admin_index'), 307);
  104.         }*/
  106.         if ($targetPath $this->getTargetPath($request->getSession(), $providerKey)) {
  107.             return new RedirectResponse($targetPath);
  108.         }
  110.         // For example : return new RedirectResponse($this->urlGenerator->generate('some_route'));
  111.         //throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  113.         return new RedirectResponse($this->urlGenerator->generate('admin_index'));
  114.     }
  116.     protected function getLoginUrl(): string
  117.     {
  118.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  119.     }
  120. }