src/Security/SecurityAuthenticator.php line 23

  1. <?php
  3. namespace App\Security;
  5. use App\Entity\Main\Administrator;
  6. use App\Repository\AdministratorRepository;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  9. use Symfony\Component\HttpFoundation\RedirectResponse;
  10. use Symfony\Component\HttpFoundation\Request;
  11. use Symfony\Component\HttpFoundation\Response;
  12. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  15. use Symfony\Component\Security\Core\Security;
  16. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  21. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  23. final class SecurityAuthenticator extends AbstractLoginFormAuthenticator
  24. {
  25.     use TargetPathTrait;
  27.     public const LOGIN_ROUTE 'login';
  29.     public function __construct(
  30.         private UrlGeneratorInterface $urlGenerator,
  31.         private ParameterBagInterface $parameterBag,
  32.         private AdministratorRepository $userRepository,
  33.         private EntityManagerInterface $manager
  34.     ) {
  35.     }
  37.     public function authenticate(Request $request): Passport
  38.     {
  39.         $username $request->request->get('email''');
  40.         $password $request->request->get('password''');
  41.         assert(is_string($username) && is_string($password));
  43.         $request->getSession()->set(Security::LAST_USERNAME$username);
  45.         /** @var string $token */
  46.         $token $request->get('_csrf_token');
  48.         return new Passport(
  49.             new UserBadge($username),
  50.             new PasswordCredentials($password),
  51.             [
  52.                 new CsrfTokenBadge('authenticate'$token),
  53.             ]
  54.         );
  55.     }
  57.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  58.     {
  59.         $user $token->getUser();
  60.         if (!$user instanceof Administrator) {
  61.             throw new \RuntimeException('Invalid user class '.($user $user::class : 'null'));
  62.         }
  64.         if ('ROLE_CONTENT_MANAGER' === $user->getRole()) {
  65.             return new RedirectResponse($this->urlGenerator->generate('admin_app_market_content_news_list'));
  66.         }
  68.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  69.             return new RedirectResponse($targetPath);
  70.         }
  72.         return new RedirectResponse($this->urlGenerator->generate('sonata_admin_dashboard'));
  73.     }
  75.     /**
  76.      * Override to change what happens after a bad username/password is submitted.
  77.      */
  78.     public function onAuthenticationFailure(Request $requestAuthenticationException $exception): Response
  79.     {
  80.         if ($request->hasSession()) {
  81.             $request->getSession()->set(Security::AUTHENTICATION_ERROR$exception);
  82.         }
  84.         $url $this->getLoginUrl($request);
  86.         return new RedirectResponse($url);
  87.     }
  89.     protected function getLoginUrl(Request $request): string
  90.     {
  91.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  92.     }
  93. }