src/Security/MainAuthenticator.php line 59

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\SchoolYear;
  6. use App\Entity\User;
  7. use DateTimeImmutable;
  8. use Doctrine\ORM\EntityManagerInterface;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\Security\Core\Security;
  11. use Symfony\Component\HttpFoundation\Response;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  14. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  15. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  17. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  21. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  22. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  23. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  25. class MainAuthenticator extends AbstractLoginFormAuthenticator
  26. {
  27.     use TargetPathTrait;
  29.     public const LOGIN_ROUTE 'app_login';
  31.     private $urlGenerator;
  32.     private $entityManager;
  33.     private $csrfTokenManager;
  35.     public function __construct(EntityManagerInterface $entityManagerUrlGeneratorInterface $urlGeneratorCsrfTokenManagerInterface $csrfTokenManager)
  36.     {
  37.         $this->entityManager $entityManager;
  38.         $this->urlGenerator $urlGenerator;
  39.         $this->csrfTokenManager $csrfTokenManager;
  40.     }
  43.     public function authenticate(Request $request): PassportInterface
  44.     {
  45.         $username $request->request->get('username''');
  47.         $user $this->entityManager->getRepository(User::class)->findOneBy(['username' => $username]);
  49.         if (!$user) {
  50.             // fail authentication with a custom error
  51.             throw new CustomUserMessageAuthenticationException('Accès interdit, utilisateur inconnu.');
  52.         }
  54.         if (!$user->getIsEnabled()) {
  55.             // fail authentication with a custom error
  56.             throw new CustomUserMessageAuthenticationException('Accès interdit, votre compte est inactif.');
  57.         }
  59.         $request->getSession()->set(Security::LAST_USERNAME$username);
  61.         return new Passport(
  62.             new UserBadge($username),
  63.             new PasswordCredentials($request->request->get('password''')),
  64.             [
  65.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  66.             ]
  67.         );
  68.     }
  70.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  71.     {
  72.         /** @var User $user */
  73.         $user $token->getUser();
  74.         $user->setLastLoginAt(new DateTimeImmutable());
  75.         
  76.         $schoolYear $this->entityManager->getRepository(SchoolYear::class)->findOneBy(['is_ongoing' => 1], []);
  77.         if (null == $user->getSchoolYear()) {
  78.             $user->setSchoolYear($schoolYear);
  79.         }
  81.         try {
  82.             $this->entityManager->flush();
  83.         } catch (\Throwable $th) {
  84.             //throw $th;
  85.         }
  87.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  88.             return new RedirectResponse($targetPath);
  89.         }
  91.         // For example:
  92.         return new RedirectResponse($this->urlGenerator->generate('default'));
  93.         //throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  94.     }
  96.     protected function getLoginUrl(Request $request): string
  97.     {
  98.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  99.     }
  100. }