vendor/symfony/symfony/src/Symfony/Component/Security/Http/Firewall/SimplePreAuthenticationListener.php line 36

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\Firewall;
  14. use Psr\Log\LoggerInterface;
  15. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  16. use Symfony\Component\HttpFoundation\Request;
  17. use Symfony\Component\HttpFoundation\Response;
  18. use Symfony\Component\HttpKernel\Event\GetResponseEvent;
  19. use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
  20. use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
  21. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  22. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  23. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  24. use Symfony\Component\Security\Http\Authentication\AuthenticationFailureHandlerInterface;
  25. use Symfony\Component\Security\Http\Authentication\AuthenticationSuccessHandlerInterface;
  26. use Symfony\Component\Security\Http\Authentication\SimplePreAuthenticatorInterface;
  27. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  28. use Symfony\Component\Security\Http\SecurityEvents;
  29. use Symfony\Component\Security\Http\Session\SessionAuthenticationStrategyInterface;
  31. /**
  32.  * SimplePreAuthenticationListener implements simple proxying to an authenticator.
  33.  *
  34.  * @author Jordi Boggiano <j.boggiano@seld.be>
  35.  */
  36. class SimplePreAuthenticationListener implements ListenerInterface
  37. {
  38.     private $tokenStorage;
  39.     private $authenticationManager;
  40.     private $providerKey;
  41.     private $simpleAuthenticator;
  42.     private $logger;
  43.     private $dispatcher;
  44.     private $sessionStrategy;
  46.     /**
  47.      * @param TokenStorageInterface           $tokenStorage          A TokenStorageInterface instance
  48.      * @param AuthenticationManagerInterface  $authenticationManager An AuthenticationManagerInterface instance
  49.      * @param string                          $providerKey
  50.      * @param SimplePreAuthenticatorInterface $simpleAuthenticator   A SimplePreAuthenticatorInterface instance
  51.      * @param LoggerInterface|null            $logger                A LoggerInterface instance
  52.      * @param EventDispatcherInterface|null   $dispatcher            An EventDispatcherInterface instance
  53.      */
  54.     public function __construct(TokenStorageInterface $tokenStorageAuthenticationManagerInterface $authenticationManager$providerKeySimplePreAuthenticatorInterface $simpleAuthenticatorLoggerInterface $logger nullEventDispatcherInterface $dispatcher null)
  55.     {
  56.         if (empty($providerKey)) {
  57.             throw new \InvalidArgumentException('$providerKey must not be empty.');
  58.         }
  60.         $this->tokenStorage $tokenStorage;
  61.         $this->authenticationManager $authenticationManager;
  62.         $this->providerKey $providerKey;
  63.         $this->simpleAuthenticator $simpleAuthenticator;
  64.         $this->logger $logger;
  65.         $this->dispatcher $dispatcher;
  66.     }
  68.     /**
  69.      * Call this method if your authentication token is stored to a session.
  70.      *
  71.      * @final
  72.      */
  73.     public function setSessionAuthenticationStrategy(SessionAuthenticationStrategyInterface $sessionStrategy)
  74.     {
  75.         $this->sessionStrategy $sessionStrategy;
  76.     }
  78.     /**
  79.      * Handles basic authentication.
  80.      */
  81.     public function handle(GetResponseEvent $event)
  82.     {
  83.         $request $event->getRequest();
  85.         if (null !== $this->logger) {
  86.             $this->logger->info('Attempting SimplePreAuthentication.', ['key' => $this->providerKey'authenticator' => \get_class($this->simpleAuthenticator)]);
  87.         }
  89.         if (null !== $this->tokenStorage->getToken() && !$this->tokenStorage->getToken() instanceof AnonymousToken) {
  90.             return;
  91.         }
  93.         try {
  94.             $token $this->simpleAuthenticator->createToken($request$this->providerKey);
  96.             // allow null to be returned to skip authentication
  97.             if (null === $token) {
  98.                 return;
  99.             }
  101.             $token $this->authenticationManager->authenticate($token);
  103.             $this->migrateSession($request$token);
  105.             $this->tokenStorage->setToken($token);
  107.             if (null !== $this->dispatcher) {
  108.                 $loginEvent = new InteractiveLoginEvent($request$token);
  109.                 $this->dispatcher->dispatch(SecurityEvents::INTERACTIVE_LOGIN$loginEvent);
  110.             }
  111.         } catch (AuthenticationException $e) {
  112.             $this->tokenStorage->setToken(null);
  114.             if (null !== $this->logger) {
  115.                 $this->logger->info('SimplePreAuthentication request failed.', ['exception' => $e'authenticator' => \get_class($this->simpleAuthenticator)]);
  116.             }
  118.             if ($this->simpleAuthenticator instanceof AuthenticationFailureHandlerInterface) {
  119.                 $response $this->simpleAuthenticator->onAuthenticationFailure($request$e);
  120.                 if ($response instanceof Response) {
  121.                     $event->setResponse($response);
  122.                 } elseif (null !== $response) {
  123.                     throw new \UnexpectedValueException(sprintf('The %s::onAuthenticationFailure method must return null or a Response object', \get_class($this->simpleAuthenticator)));
  124.                 }
  125.             }
  127.             return;
  128.         }
  130.         if ($this->simpleAuthenticator instanceof AuthenticationSuccessHandlerInterface) {
  131.             $response $this->simpleAuthenticator->onAuthenticationSuccess($request$token);
  132.             if ($response instanceof Response) {
  133.                 $event->setResponse($response);
  134.             } elseif (null !== $response) {
  135.                 throw new \UnexpectedValueException(sprintf('The %s::onAuthenticationSuccess method must return null or a Response object', \get_class($this->simpleAuthenticator)));
  136.             }
  137.         }
  138.     }
  140.     private function migrateSession(Request $requestTokenInterface $token)
  141.     {
  142.         if (!$this->sessionStrategy || !$request->hasSession() || !$request->hasPreviousSession()) {
  143.             return;
  144.         }
  146.         $this->sessionStrategy->onAuthentication($request$token);
  147.     }
  148. }