src/Security/SecurityAuthenticator.php line 20

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use Doctrine\ORM\EntityManagerInterface;
  6. use Symfony\Component\HttpFoundation\RedirectResponse;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Symfony\Component\HttpFoundation\Response;
  9. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  10. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  11. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  12. use Symfony\Component\Security\Core\Security;
  13. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  14. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  18. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  20. class SecurityAuthenticator extends AbstractLoginFormAuthenticator
  21. {
  22.     use TargetPathTrait;
  24.     public const LOGIN_ROUTE 'app_login';
  26.     private $urlGenerator;
  27.     private $em;
  29.     public function __construct(UrlGeneratorInterface $urlGeneratorEntityManagerInterface $em)
  30.     {
  31.         $this->urlGenerator $urlGenerator;
  32.         $this->em $em;
  33.     }
  35.     public function authenticate(Request $request): Passport
  36.     {
  37.         $email $request->request->get('email''');
  39.         $request->getSession()->set(Security::LAST_USERNAME$email);
  41.         return new Passport(
  42.             new UserBadge($email),
  43.             new PasswordCredentials($request->request->get('password''')),
  44.             [
  45.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  46.             ]
  47.         );
  48.     }
  50.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  51.     {
  52.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  53.             return new RedirectResponse($targetPath);
  54.         }
  55.         $user $token->getUser();
  56.         if(is_null($user->getCompany()) && !$user->isSuperAdmin()){
  57.             throw new AuthenticationException('Account disabled');
  58.         }
  59.         $user->setLastConnect();
  60.         $this->em->persist($user);
  61.         $this->em->flush();
  62.         if($user->isSuperAdmin()){
  63.             return new RedirectResponse($this->urlGenerator->generate('app_account_company'));
  64.         }
  66.         // For example:
  67.         return new RedirectResponse($this->urlGenerator->generate('app_account_client_list'));
  68. //        throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  69.     }
  71.     protected function getLoginUrl(Request $request): string
  72.     {
  73.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  74.     }
  75. }