vendor/symfony/security-guard/Authenticator/GuardBridgeAuthenticator.php line 103

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\Security\Guard\Authenticator;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  17. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  18. use Symfony\Component\Security\Core\Exception\UserNotFoundException;
  19. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  20. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  21. use Symfony\Component\Security\Core\User\UserInterface;
  22. use Symfony\Component\Security\Core\User\UserProviderInterface;
  23. use Symfony\Component\Security\Guard\AuthenticatorInterface as GuardAuthenticatorInterface;
  24. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  25. use Symfony\Component\Security\Http\Authenticator\InteractiveAuthenticatorInterface;
  26. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;
  27. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  28. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  29. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials;
  30. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  31. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  32. use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
  33. use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
  35. trigger_deprecation('symfony/security-guard', '5.3', 'The "%s" class is deprecated, use the new authenticator system instead.', GuardBridgeAuthenticator::class);
  37. /**
  38. * This authenticator is used to bridge Guard authenticators with
  39. * the Symfony Authenticator system.
  40. *
  41. * @author Wouter de Jong <wouter@wouterj.nl>
  42. *
  43. * @deprecated since Symfony 5.3
  44. */
  45. class GuardBridgeAuthenticator implements InteractiveAuthenticatorInterface, AuthenticationEntryPointInterface
  46. {
  47. private $guard;
  48. private $userProvider;
  50. public function __construct(GuardAuthenticatorInterface $guard, UserProviderInterface $userProvider)
  51. {
  52. $this->guard = $guard;
  53. $this->userProvider = $userProvider;
  54. }
  56. public function start(Request $request, ?AuthenticationException $authException = null)
  57. {
  58. return $this->guard->start($request, $authException);
  59. }
  61. public function supports(Request $request): ?bool
  62. {
  63. return $this->guard->supports($request);
  64. }
  66. public function authenticate(Request $request): PassportInterface
  67. {
  68. $credentials = $this->guard->getCredentials($request);
  70. if (null === $credentials) {
  71. throw new \UnexpectedValueException(sprintf('The return value of "%1$s::getCredentials()" must not be null. Return false from "%1$s::supports()" instead.', get_debug_type($this->guard)));
  72. }
  74. // get the user from the GuardAuthenticator
  75. if (class_exists(UserBadge::class)) {
  76. $user = new UserBadge('guard_authenticator_'.md5(serialize($credentials)), function () use ($credentials) { return $this->getUser($credentials); });
  77. } else {
  78. // BC with symfony/security-http:5.1
  79. $user = $this->getUser($credentials);
  80. }
  82. if ($this->guard instanceof PasswordAuthenticatedInterface && !$user instanceof PasswordAuthenticatedUserInterface) {
  83. trigger_deprecation('symfony/security-guard', '5.3', 'Not implementing the "%s" interface in class "%s" while using password-based guard authenticators is deprecated.', PasswordAuthenticatedUserInterface::class, get_debug_type($user));
  84. }
  86. $passport = new Passport($user, new CustomCredentials([$this->guard, 'checkCredentials'], $credentials));
  87. if ($this->userProvider instanceof PasswordUpgraderInterface && $this->guard instanceof PasswordAuthenticatedInterface && (null !== $password = $this->guard->getPassword($credentials))) {
  88. $passport->addBadge(new PasswordUpgradeBadge($password, $this->userProvider));
  89. }
  91. if ($this->guard->supportsRememberMe()) {
  92. $passport->addBadge(new RememberMeBadge());
  93. }
  95. return $passport;
  96. }
  98. public function getGuardAuthenticator(): GuardAuthenticatorInterface
  99. {
  100. return $this->guard;
  101. }
  103. private function getUser($credentials): UserInterface
  104. {
  105. $user = $this->guard->getUser($credentials, $this->userProvider);
  107. if (null === $user) {
  108. throw new UserNotFoundException(sprintf('Null returned from "%s::getUser()".', get_debug_type($this->guard)));
  109. }
  111. if (!$user instanceof UserInterface) {
  112. throw new \UnexpectedValueException(sprintf('The "%s::getUser()" method must return a UserInterface. You returned "%s".', get_debug_type($this->guard), get_debug_type($user)));
  113. }
  115. return $user;
  116. }
  118. public function createAuthenticatedToken(PassportInterface $passport, string $firewallName): TokenInterface
  119. {
  120. if (!$passport instanceof UserPassportInterface) {
  121. throw new \LogicException(sprintf('"%s" does not support non-user passports.', __CLASS__));
  122. }
  124. return $this->guard->createAuthenticatedToken($passport->getUser(), $firewallName);
  125. }
  127. public function createToken(Passport $passport, string $firewallName): TokenInterface
  128. {
  129. return $this->guard->createAuthenticatedToken($passport->getUser(), $firewallName);
  130. }
  132. public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
  133. {
  134. return $this->guard->onAuthenticationSuccess($request, $token, $firewallName);
  135. }
  137. public function onAuthenticationFailure(Request $request, AuthenticationException $exception): ?Response
  138. {
  139. return $this->guard->onAuthenticationFailure($request, $exception);
  140. }
  142. public function isInteractive(): bool
  143. {
  144. // the GuardAuthenticationHandler always dispatches the InteractiveLoginEvent
  145. return true;
  146. }
  147. }