vendor/symfony/security-guard/Authenticator/GuardBridgeAuthenticator.php line 35

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <[email protected]>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\Security\Guard\Authenticator;
  14. use Symfony\Component\HttpFoundation\Request;
  15. use Symfony\Component\HttpFoundation\Response;
  16. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  17. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  18. use Symfony\Component\Security\Core\Exception\UserNotFoundException;
  19. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  20. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  21. use Symfony\Component\Security\Core\User\UserInterface;
  22. use Symfony\Component\Security\Core\User\UserProviderInterface;
  23. use Symfony\Component\Security\Guard\AuthenticatorInterface as GuardAuthenticatorInterface;
  24. use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
  25. use Symfony\Component\Security\Http\Authenticator\InteractiveAuthenticatorInterface;
  26. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;
  27. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  28. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  29. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials;
  30. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  31. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  32. use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
  33. use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
  35. trigger_deprecation('symfony/security-guard', '5.3', 'The "%s" class is deprecated, use the new authenticator system instead.', GuardBridgeAuthenticator::class);
  37. /**
  38. * This authenticator is used to bridge Guard authenticators with
  39. * the Symfony Authenticator system.
  40. *
  41. * @author Wouter de Jong <[email protected]>
  42. *
  43. * @deprecated since Symfony 5.3
  44. */
  45. class GuardBridgeAuthenticator implements InteractiveAuthenticatorInterface, AuthenticationEntryPointInterface
  46. {
  47. private $guard;
  48. private $userProvider;
  50. public function __construct(GuardAuthenticatorInterface $guard, UserProviderInterface $userProvider)
  51. {
  52. $this->guard = $guard;
  53. $this->userProvider = $userProvider;
  54. }
  56. public function start(Request $request, ?AuthenticationException $authException = null)
  57. {
  58. return $this->guard->start($request, $authException);
  59. }
  61. public function supports(Request $request): ?bool
  62. {
  63. return $this->guard->supports($request);
  64. }
  66. public function authenticate(Request $request): PassportInterface
  67. {
  68. $credentials = $this->guard->getCredentials($request);
  70. if (null === $credentials) {
  71. throw new \UnexpectedValueException(sprintf('The return value of "%1$s::getCredentials()" must not be null. Return false from "%1$s::supports()" instead.', get_debug_type($this->guard)));
  72. }
  74. // get the user from the GuardAuthenticator
  75. if (class_exists(UserBadge::class)) {
  76. if (is_object(($credentials)) && method_exists($credentials, 'toArray')) {
  77. $credentialsSignature = $credentials->toArray();
  78. } else {
  79. $credentialsSignature = $credentials;
  80. }
  82. $user = new UserBadge('guard_authenticator_'.md5(serialize($credentialsSignature)), function () use ($credentials) { return $this->getUser($credentials); });
  83. } else {
  84. // BC with symfony/security-http:5.1
  85. $user = $this->getUser($credentials);
  86. }
  88. if ($this->guard instanceof PasswordAuthenticatedInterface && !$user instanceof PasswordAuthenticatedUserInterface) {
  89. trigger_deprecation('symfony/security-guard', '5.3', 'Not implementing the "%s" interface in class "%s" while using password-based guard authenticators is deprecated.', PasswordAuthenticatedUserInterface::class, get_debug_type($user));
  90. }
  92. $passport = new Passport($user, new CustomCredentials([$this->guard, 'checkCredentials'], $credentials));
  93. if ($this->userProvider instanceof PasswordUpgraderInterface && $this->guard instanceof PasswordAuthenticatedInterface && (null !== $password = $this->guard->getPassword($credentials))) {
  94. $passport->addBadge(new PasswordUpgradeBadge($password, $this->userProvider));
  95. }
  97. if ($this->guard->supportsRememberMe()) {
  98. $passport->addBadge(new RememberMeBadge());
  99. }
  101. return $passport;
  102. }
  104. public function getGuardAuthenticator(): GuardAuthenticatorInterface
  105. {
  106. return $this->guard;
  107. }
  109. private function getUser($credentials): UserInterface
  110. {
  111. $user = $this->guard->getUser($credentials, $this->userProvider);
  113. if (null === $user) {
  114. throw new UserNotFoundException(sprintf('Null returned from "%s::getUser()".', get_debug_type($this->guard)));
  115. }
  117. if (!$user instanceof UserInterface) {
  118. throw new \UnexpectedValueException(sprintf('The "%s::getUser()" method must return a UserInterface. You returned "%s".', get_debug_type($this->guard), get_debug_type($user)));
  119. }
  121. return $user;
  122. }
  124. public function createAuthenticatedToken(PassportInterface $passport, string $firewallName): TokenInterface
  125. {
  126. if (!$passport instanceof UserPassportInterface) {
  127. throw new \LogicException(sprintf('"%s" does not support non-user passports.', __CLASS__));
  128. }
  130. return $this->guard->createAuthenticatedToken($passport->getUser(), $firewallName);
  131. }
  133. public function createToken(Passport $passport, string $firewallName): TokenInterface
  134. {
  135. return $this->guard->createAuthenticatedToken($passport->getUser(), $firewallName);
  136. }
  138. public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
  139. {
  140. return $this->guard->onAuthenticationSuccess($request, $token, $firewallName);
  141. }
  143. public function onAuthenticationFailure(Request $request, AuthenticationException $exception): ?Response
  144. {
  145. return $this->guard->onAuthenticationFailure($request, $exception);
  146. }
  148. public function isInteractive(): bool
  149. {
  150. // the GuardAuthenticationHandler always dispatches the InteractiveLoginEvent
  151. return true;
  152. }
  153. }