src/Security/LoginFormAuthenticator.php line 24

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\User;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Symfony\Component\HttpFoundation\RedirectResponse;
  8. use Symfony\Component\HttpFoundation\Request;
  9. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  12. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  13. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  14. use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
  15. use Symfony\Component\Security\Core\Security;
  16. use Symfony\Component\Security\Core\User\UserInterface;
  17. use Symfony\Component\Security\Core\User\UserProviderInterface;
  18. use Symfony\Component\Security\Csrf\CsrfToken;
  19. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  20. use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
  21. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  22. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  24. class LoginFormAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
  25. {
  26.     use TargetPathTrait;
  28.     public const LOGIN_ROUTE 'app_login';
  30.     private $entityManager;
  31.     private $urlGenerator;
  32.     private $csrfTokenManager;
  33.     private $passwordEncoder;
  35.     public function __construct(
  36.         EntityManagerInterface $entityManager,
  37.         UrlGeneratorInterface $urlGenerator,
  38.         CsrfTokenManagerInterface $csrfTokenManager,
  39.         UserPasswordHasherInterface $passwordEncoder
  40.     ) {
  41.         $this->entityManager $entityManager;
  42.         $this->urlGenerator $urlGenerator;
  43.         $this->csrfTokenManager $csrfTokenManager;
  44.         $this->passwordEncoder $passwordEncoder;
  45.     }
  47.     public function supports(Request $request)
  48.     {
  49.         return self::LOGIN_ROUTE === $request->attributes->get('_route')
  50.             && $request->isMethod('POST');
  51.     }
  53.     public function getCredentials(Request $request)
  54.     {
  55.         $credentials = [
  56.             'email' => $request->request->get('email'),
  57.             'password' => $request->request->get('password'),
  58.             'csrf_token' => $request->request->get('_csrf_token'),
  59.         ];
  60.         $request->getSession()->set(
  61.             Security::LAST_USERNAME,
  62.             $credentials['email']
  63.         );
  65.         return $credentials;
  66.     }
  68.     public function getUser($credentialsUserProviderInterface $userProvider)
  69.     {
  70.         $token = new CsrfToken('authenticate'$credentials['csrf_token']);
  71.         if (!$this->csrfTokenManager->isTokenValid($token)) {
  72.             throw new InvalidCsrfTokenException();
  73.         }
  75.         $user $this->entityManager->getRepository(User::class)->findOneBy(
  76.             [
  77.                 'email' => $credentials['email'],
  78.             ]
  79.     );
  81.         if (!$user) {
  82.             // fail authentication with a custom error
  83.             throw new CustomUserMessageAuthenticationException('L\'e-mail est introuvable.');
  84.         }
  86.         return $user;
  87.     }
  89.     public function checkCredentials($credentialsUserInterface $user)
  90.     {
  91.         return $this->passwordEncoder->isPasswordValid($user$credentials['password']);
  92.     }
  94.     /**
  95.      * Used to upgrade (rehash) the user's password automatically over time.
  96.      */
  97.     public function getPassword($credentials): ?string
  98.     {
  99.         return $credentials['password'];
  100.     }
  102.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $providerKey)
  103.     {
  104.         if ($targetPath $this->getTargetPath($request->getSession(), $providerKey)) {
  105.             return new RedirectResponse($targetPath);
  106.         }
  108.         return new RedirectResponse($this->urlGenerator->generate('dashboard'));
  109.     }
  111.     public function onAuthenticationFailure(Request $requestAuthenticationException $exception)
  112.     {
  113.         if ($request->hasSession()) {
  114.             $request->getSession()->set(Security::AUTHENTICATION_ERROR, new CustomUserMessageAuthenticationException('Les informations d\'identification sont invalides. '));
  115.         }
  117.         $url $this->getLoginUrl();
  119.         return new RedirectResponse($url);
  120.     }
  122.     protected function getLoginUrl()
  123.     {
  124.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  125.     }
  126. }