src/Security/CustomAuthenticator.php line 21

  1. <?php
  3. namespace App\Security;
  5. use App\Entity\Permission;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use Symfony\Bundle\SecurityBundle\Security;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  14. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  19. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  21. class CustomAuthenticator extends AbstractLoginFormAuthenticator
  22. {
  23.     use TargetPathTrait;
  25.     public const LOGIN_ROUTE 'app_login';
  27.     public function __construct(private UrlGeneratorInterface $urlGenerator, private EntityManagerInterface $entityManager)
  28.     {
  29.     }
  31.     public function authenticate(Request $request): Passport
  32.     {
  33.         $login $request->request->get('login''');
  35.         $request->getSession()->set(Security::LAST_USERNAME$login);
  37.         return new Passport(
  38.             new UserBadge($login, function($userIdentifier) {
  39.                 // optionally pass a callback to load the User manually
  40.                 $user $this->entityManager->getRepository(Permission::class)->findOneBy(['login' => $userIdentifier,'hasAccess'=>true]);
  41.                 if (!$user) {
  42.                     throw new CustomUserMessageAuthenticationException('Désolé, nom d\'utilisateur ou mot de passe non reconnu');
  43.                 }
  44.                 return $user;
  45.             }),
  46.             new PasswordCredentials($request->request->get('password''')),
  47.             [
  48.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  49.             ]
  50.         );
  51.     }
  53.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  54.     {
  55.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  56.             return new RedirectResponse($targetPath);
  57.         }
  59.         // For example:
  60.         return new RedirectResponse($this->urlGenerator->generate('app_default'));
  61.     }
  63.     protected function getLoginUrl(Request $request): string
  64.     {
  65.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  66.     }
  67. }