src/Security/LoginFormAuthenticator.php line 52

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Slivki\Security;
  7. use Slivki\Entity\User;
  8. use Slivki\Security\Provider\UserProvider;
  9. use Symfony\Component\HttpFoundation\Cookie;
  10. use Symfony\Component\HttpFoundation\JsonResponse;
  11. use Symfony\Component\HttpFoundation\Request;
  12. use Symfony\Component\HttpFoundation\Response;
  13. use Symfony\Component\HttpKernel\Exception\BadRequestHttpException;
  14. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  15. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  16. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  21. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  22. use Symfony\Component\Security\Http\HttpUtils;
  24. final class LoginFormAuthenticator extends AbstractLoginFormAuthenticator
  25. {
  26.     private HttpUtils $httpUtils;
  27.     private UserProvider $userProvider;
  28.     private string $baseDomain;
  30.     public function __construct(HttpUtils $httpUtilsUserProvider $userProviderstring $baseDomain)
  31.     {
  32.         $this->httpUtils $httpUtils;
  33.         $this->userProvider $userProvider;
  34.         $this->baseDomain $baseDomain;
  35.     }
  37.     protected function getLoginUrl(Request $request): string
  38.     {
  39.         return $this->httpUtils->generateUri($request'login');
  40.     }
  42.     public function supports(Request $request): bool
  43.     {
  44.         return 'login' === $request->attributes->get('_route') && $request->isMethod('POST');
  45.     }
  47.     public function authenticate(Request $request): PassportInterface
  48.     {
  49.         $credentials $this->getCredentials($request);
  51.         return new Passport(
  52.             new UserBadge($credentials['email'], fn (): ?User => $this->userProvider->loadUserByUsername($credentials['email'])),
  53.             new PasswordCredentials($credentials['password']),
  54.             [new RememberMeBadge()],
  55.         );
  56.     }
  58.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  59.     {
  60.         $cookie null;
  61.         if ($token->getUser() instanceof User) {
  62.             $cookie Cookie::create(
  63.                 SlivkiAuthenticator::USER_COOKIE,
  64.                 $token->getUser()->getToken(),
  65.                 time() + 315360000,
  66.                 '/',
  67.                 $this->baseDomain,
  68.             );
  69.         }
  71.         if ($request->isXmlHttpRequest()) {
  72.             $response = new JsonResponse();
  73.             if (null !== $cookie) {
  74.                 $response->headers->setCookie($cookie);
  75.             }
  77.             $response->setData(['result' => true]);
  79.             return $response;
  80.         }
  82.         $response $this->httpUtils->createRedirectResponse($request'homepage'Response::HTTP_FOUND);
  83.         if (null !== $cookie) {
  84.             $response->headers->setCookie($cookie);
  85.         }
  87.         return $response;
  88.     }
  90.     private function getCredentials(Request $request): array
  91.     {
  92.         $credentials = [
  93.             'email' => $request->request->get('email'),
  94.             'password' => (string) $request->request->get('password'),
  95.         ];
  97.         if (!\is_string($credentials['email'])) {
  98.             throw new BadRequestHttpException(sprintf('The key "email" must be a string, "%s" given.', \gettype($credentials['email'])));
  99.         }
  101.         $credentials['email'] = \trim($credentials['email']);
  103.         return $credentials;
  104.     }
  106.     public function start(Request $requestAuthenticationException $authException null): Response
  107.     {
  108.         return $this->httpUtils->createRedirectResponse($request'login'Response::HTTP_FOUND);
  109.     }
  110. }