src/Security/AppAuthenticator.php line 23

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use App\Entity\User;
  6. use Doctrine\Persistence\ManagerRegistry;
  7. use Symfony\Component\HttpFoundation\RedirectResponse;
  8. use Symfony\Component\HttpFoundation\Request;
  9. use Symfony\Component\HttpFoundation\Response;
  10. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  11. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  12. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  13. use Symfony\Component\Security\Core\Security;
  14. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  20. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  21. use Symfony\Contracts\Translation\TranslatorInterface;
  23. class AppAuthenticator extends AbstractLoginFormAuthenticator
  24. {
  25.     use TargetPathTrait;
  27.     public const LOGIN_ROUTE 'app_login';
  29.     public function __construct(
  30.         private UrlGeneratorInterface $urlGenerator,
  31.         private ManagerRegistry $registry,
  32.         private TranslatorInterface $translator
  33.     ) {}
  35.     public function authenticate(Request $request): Passport
  36.     {
  37.         $email $request->request->get('email''');
  39.         $request->getSession()->set(Security::LAST_USERNAME$email);
  41.         $user $this->registry->getRepository(User::class)->findOneBy(['email' => $email]);
  43.         if (!$user) {
  44.             throw new CustomUserMessageAuthenticationException($this->translator->trans('login.emailNotFound', [], 'security'));
  45.         }
  47.         if ($user->isVerified() && $user->getIsActive()) {
  48.             return new Passport(
  49.                 new UserBadge($email),
  50.                 new PasswordCredentials($request->request->get('password''')),
  51.                 [
  52.                     new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  53.                     new RememberMeBadge(),
  54.                 ]
  55.             );
  56.         } elseif ($user->isVerified() && !$user->getIsActive()) {
  57.             throw new CustomUserMessageAuthenticationException($this->translator->trans('login.userNotActive', [], 'security'));
  58.         } else {
  59.             throw new CustomUserMessageAuthenticationException($this->translator->trans('login.userNotVerified', [], 'security'));
  60.         }
  61.     }
  63.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  64.     {
  65.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  66.             return new RedirectResponse($targetPath);
  67.         }
  69.         // For example:
  70.         return new RedirectResponse($this->urlGenerator->generate('admin_dashboard'));
  71.     }
  73.     protected function getLoginUrl(Request $request): string
  74.     {
  75.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  76.     }
  77. }