src/Security/LoginFormAuthenticator.php line 64

Open in your IDE?
  1. <?php
  3. // src/Security/LoginFormAuthenticator.php
  4. namespace App\Security;
  6. use App\Entity\User;
  7. use App\Repository\UserRepository;
  8. use Doctrine\ORM\EntityManagerInterface;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\HttpFoundation\Request;
  11. use Symfony\Component\HttpFoundation\Response;
  12. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  13. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  14. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  15. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  16. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  17. use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
  18. use Symfony\Component\Security\Core\Exception\UserNotFoundException;
  19. use Symfony\Component\Security\Core\Security;
  20. use Symfony\Component\Security\Core\User\UserInterface;
  21. use Symfony\Component\Security\Core\User\UserProviderInterface;
  22. use Symfony\Component\Security\Csrf\CsrfToken;
  23. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  24. use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
  25. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  26. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  27. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  28. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  29. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  30. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  31. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  32. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  34. class LoginFormAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
  35. {
  36.     use TargetPathTrait;
  38.     public const LOGIN_ROUTE 'app_login';
  40.     private $entityManager;
  41.     private $urlGenerator;
  42.     private $csrfTokenManager;
  43.     private $passwordEncoder;
  45.     private $security;
  46.     private UserRepository $userRepository;
  47.     public function __construct(EntityManagerInterface $entityManagerUrlGeneratorInterface $urlGenerator,
  48.                                 CsrfTokenManagerInterface $csrfTokenManager,
  49.                                 UserPasswordHasherInterface $passwordEncoder,
  50.                                 UserRepository $userRepository)
  51.     {
  52.         $this->entityManager $entityManager;
  53.         $this->urlGenerator $urlGenerator;
  54.         $this->csrfTokenManager $csrfTokenManager;
  55.         $this->passwordEncoder $passwordEncoder;
  56.         $this->userRepository $userRepository;
  57.     }
  59.     public function supports(Request $request): bool
  60.     {
  61.         return self::LOGIN_ROUTE === $request->attributes->get('_route')
  62.             && $request->isMethod('POST');
  63.     }
  65.     public function getCredentials(Request $request)
  66.     {
  67.         $credentials = [
  68.             'email' => $request->request->get('email'),
  69.             'password' => $request->request->get('password'),
  70.             'csrf_token' => $request->request->get('_csrf_token'),
  71.         ];
  72.         $request->getSession()->set(
  73.             Security::LAST_USERNAME,
  74.             $credentials['email']
  75.         );
  77.         return $credentials;
  78.     }
  80.     public function getUser($credentialsUserProviderInterface $userProvider): ?User
  81.     {
  82.         $token = new CsrfToken('authenticate'$credentials['csrf_token']);
  83.         if (!$this->csrfTokenManager->isTokenValid($token)) {
  84.             throw new InvalidCsrfTokenException();
  85.         }
  87.         $user $this->entityManager->getRepository(User::class)->findOneBy(['email' => $credentials['email']]);
  89.         if (!$user) {
  90.             // fail authentication with a custom error
  91.             throw new CustomUserMessageAuthenticationException('Email could not be found.');
  92.         }
  94.         return $user;
  95.     }
  97.     public function checkCredentials($credentialsUserInterface $user): bool
  98.     {
  99.         return $this->passwordEncoder->isPasswordValid($user$credentials['password']);
  100.     }
  102.     /**
  103.      * Used to upgrade (rehash) the user's password automatically over time.
  104.      */
  105.     public function getPassword($credentials): ?string
  106.     {
  107.         return $credentials['password'];
  108.     }
  110.     public function onAuthenticationSuccess(Request $requestTokenInterface $token$providerKey): ?Response
  111.     {
  112.         /*if ($this->security->isGranted('ROLE_ADMIN')){
  113.             return new RedirectResponse($this->router->generate('admin_index'), 307);
  114.         }*/
  116.         if ($targetPath $this->getTargetPath($request->getSession(), $providerKey)) {
  117.             return new RedirectResponse($targetPath);
  118.         }
  120.         // For example : return new RedirectResponse($this->urlGenerator->generate('some_route'));
  121.         //throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  123.         return new RedirectResponse($this->urlGenerator->generate('admin_index'));
  124.     }
  126.     protected function getLoginUrl(): string
  127.     {
  128.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  129.     }
  131. }