src/Security/LoginFormAuthenticator.php line 64

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\User;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Symfony\Component\HttpFoundation\RedirectResponse;
  8. use Symfony\Component\HttpFoundation\Request;
  9. use Symfony\Component\Routing\RouterInterface;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
  12. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  13. use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
  14. use Symfony\Component\Security\Core\Security;
  15. use Symfony\Component\Security\Core\User\UserInterface;
  16. use Symfony\Component\Security\Core\User\UserProviderInterface;
  17. use Symfony\Component\Security\Csrf\CsrfToken;
  18. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  19. use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
  20. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  22. class LoginFormAuthenticator extends AbstractFormLoginAuthenticator
  23. {
  24.     use TargetPathTrait;
  26.     private $entityManager;
  27.     private $router;
  28.     private $csrfTokenManager;
  29.     private $passwordEncoder;
  31.     public function __construct(EntityManagerInterface $entityManagerRouterInterface $routerCsrfTokenManagerInterface $csrfTokenManagerUserPasswordEncoderInterface $passwordEncoder)
  32.     {
  33.         $this->entityManager $entityManager;
  34.         $this->router $router;
  35.         $this->csrfTokenManager $csrfTokenManager;
  36.         $this->passwordEncoder $passwordEncoder;
  37.     }
  39.     public function supports(Request $request)
  40.     {
  41.         return 'security_login' === $request->attributes->get('_route')
  42.             && $request->isMethod('POST');
  43.     }
  45.     public function getCredentials(Request $request)
  46.     {
  47.         $credentials = [
  48.             'username' => $request->request->get('username'),
  49.             'password' => $request->request->get('password'),
  50.             'csrf_token' => $request->request->get('_csrf_token'),
  51.         ];
  52.         $request->getSession()->set(
  53.             Security::LAST_USERNAME,
  54.             $credentials['username']
  55.         );
  57.         return $credentials;
  58.     }
  60.     public function getUser($credentialsUserProviderInterface $userProvider)
  61.     {
  62.         $token = new CsrfToken('authenticate'$credentials['csrf_token']);
  63.         if (!$this->csrfTokenManager->isTokenValid($token)) {
  64.             throw new InvalidCsrfTokenException();
  65.         }
  67.         $user_result $this->entityManager->getRepository(User::class)->findByUsernameOrEmail($credentials['username']);
  69.         if(empty($user_result)) {
  70.             throw new CustomUserMessageAuthenticationException("Cette adresse email est invalide.");
  71.         }
  73.         return $user_result[0];
  74.     }
  76.     public function checkCredentials($credentialsUserInterface $user)
  77.     {
  78.         if($user->isActive() == false) {
  79.             throw new CustomUserMessageAuthenticationException("Ce compte est dĂ©sactivĂ©");
  80.         }
  82.         return $this->passwordEncoder->isPasswordValid($user$credentials['password']);
  83.     }
  85.     public function onAuthenticationSuccess(Request $requestTokenInterface $token$providerKey)
  86.     {
  87. //        if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
  88. //            return new RedirectResponse($targetPath);
  89. //        }
  91.         return new RedirectResponse($this->router->generate('security_dispatch_by_role'));
  92.     }
  94.     protected function getLoginUrl()
  95.     {
  96.         return $this->router->generate('security_login');
  97.     }
  98. }