src/Security/LoginFormAuthenticator.php line 23

  1. <?php
  3. namespace App\Security;
  5. use App\Entity\User;
  6. use App\Repository\UserRepository;
  7. use Doctrine\ORM\EntityManagerInterface;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  12. use Symfony\Component\Routing\RouterInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Exception\AccessDeniedException;
  15. use Symfony\Component\Security\Core\Security;
  16. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  21. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  23. class LoginFormAuthenticator extends AbstractLoginFormAuthenticator
  24. {
  25.     use TargetPathTrait;
  27.     public const LOGIN_ROUTE 'app_login';
  28.     public const SUCCESS_ROUTE 'dashboard';
  30.     public function __construct(private EntityManagerInterface $manager, private RouterInterface $router, private UrlGeneratorInterface $urlGenerator, private UserRepository $userRepository)
  31.     {
  32.     }
  34.     public function authenticate(Request $request): Passport
  35.     {
  36.         $username $request->request->get('username''');
  38.         $request->getSession()->set(Security::LAST_USERNAME$username);
  39.         // Retrieve the authenticated user
  40.         $user $this->userRepository->findByEmailOrUsername($request->request->get('username'''));
  41.         if ($user) {
  43.             // Check if the user has the denied roles
  44.             if (in_array('ROLE_LECTURER'$user->getRoles()) || in_array('ROLE_STUDENT'$user->getRoles()) || in_array('ROLE_AGENT'$user->getRoles())) {
  45.                 throw new AccessDeniedException('Permission denied!');
  46.             }
  47.         }
  48.         return new Passport(
  49.             new UserBadge($username, function ($username) {
  50.                 return $this->userRepository->findByEmailOrUsername($username);
  51.             }),
  52.             new PasswordCredentials($request->request->get('password''')),
  53.             [
  54.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  55.             ]
  56.         );
  58.     }
  60.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  61.     {
  62. //        if ($targetPath = $this->getTargetPath($request->getSession(), $firewallName)) {
  63. //            return new RedirectResponse($targetPath);
  64. //        }
  65.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  66.             return new RedirectResponse($targetPath);
  67.         }
  68.         return new RedirectResponse(self::SUCCESS_ROUTE);
  69.         // For example:
  70.         // return new RedirectResponse($this->urlGenerator->generate('some_route'));
  71. //        throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  72.     }
  74.     protected function getLoginUrl(Request $request): string
  75.     {
  76.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  77.     }
  79.     /*
  80.      * @param $user
  81.      * @param TokenInterface $token
  82.      * @param Request $request
  83.      */
  84. //    private function getRoutesForUser(User $user, TokenInterface $token, Request $request): void
  85. //    {
  86. //        $this->setUserLastLogin($user);
  87. //
  88. //        $roles = $token->getUser()->getRoles();
  89. //
  90. //        $routes = ['app_login'];
  91. //
  92. //        foreach ($roles as $role) {
  93. //            $result = $this->lienSecuriseRepository->findRoutesForRoleAndUser($role);
  94. //
  95. //            foreach ($result as $value) {
  96. //                $routes[] = $value['routeName'];
  97. //            }
  98. //        }
  99. //
  100. //        $request->getSession()->set('routes', $routes);
  101. //    }
  102. //
  103. //    private function setUserLastLogin(User $user)
  104. //    {
  105. //        // set last login
  106. //        $user->setLastLogin(new \DateTime());
  107. //        $this->manager->flush();
  108. //
  109. //    }
  110. }