vendor/symfony/security/Http/Firewall/SimplePreAuthenticationListener.php line 35

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\Firewall;
  14. use Psr\Log\LoggerInterface;
  15. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  16. use Symfony\Component\EventDispatcher\LegacyEventDispatcherProxy;
  17. use Symfony\Component\HttpFoundation\Request;
  18. use Symfony\Component\HttpFoundation\Response;
  19. use Symfony\Component\HttpKernel\Event\RequestEvent;
  20. use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
  21. use Symfony\Component\Security\Core\Authentication\AuthenticationTrustResolver;
  22. use Symfony\Component\Security\Core\Authentication\AuthenticationTrustResolverInterface;
  23. use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
  24. use Symfony\Component\Security\Core\Authentication\Token\RememberMeToken;
  25. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  26. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  27. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  28. use Symfony\Component\Security\Http\Authentication\AuthenticationFailureHandlerInterface;
  29. use Symfony\Component\Security\Http\Authentication\AuthenticationSuccessHandlerInterface;
  30. use Symfony\Component\Security\Http\Authentication\SimplePreAuthenticatorInterface;
  31. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  32. use Symfony\Component\Security\Http\SecurityEvents;
  33. use Symfony\Component\Security\Http\Session\SessionAuthenticationStrategyInterface;
  35. @trigger_error(sprintf('The "%s" class is deprecated since Symfony 4.2, use Guard instead.'SimplePreAuthenticationListener::class), \E_USER_DEPRECATED);
  37. /**
  38.  * SimplePreAuthenticationListener implements simple proxying to an authenticator.
  39.  *
  40.  * @author Jordi Boggiano <j.boggiano@seld.be>
  41.  *
  42.  * @deprecated since Symfony 4.2, use Guard instead.
  43.  */
  44. class SimplePreAuthenticationListener extends AbstractListener implements ListenerInterface
  45. {
  46.     use LegacyListenerTrait;
  48.     private $tokenStorage;
  49.     private $authenticationManager;
  50.     private $providerKey;
  51.     private $simpleAuthenticator;
  52.     private $logger;
  53.     private $dispatcher;
  54.     private $sessionStrategy;
  55.     private $trustResolver;
  57.     public function __construct(TokenStorageInterface $tokenStorageAuthenticationManagerInterface $authenticationManagerstring $providerKeySimplePreAuthenticatorInterface $simpleAuthenticatorLoggerInterface $logger nullEventDispatcherInterface $dispatcher nullAuthenticationTrustResolverInterface $trustResolver null)
  58.     {
  59.         if (empty($providerKey)) {
  60.             throw new \InvalidArgumentException('$providerKey must not be empty.');
  61.         }
  63.         $this->tokenStorage $tokenStorage;
  64.         $this->authenticationManager $authenticationManager;
  65.         $this->providerKey $providerKey;
  66.         $this->simpleAuthenticator $simpleAuthenticator;
  67.         $this->logger $logger;
  69.         if (null !== $dispatcher && class_exists(LegacyEventDispatcherProxy::class)) {
  70.             $this->dispatcher LegacyEventDispatcherProxy::decorate($dispatcher);
  71.         } else {
  72.             $this->dispatcher $dispatcher;
  73.         }
  75.         $this->trustResolver $trustResolver ?? new AuthenticationTrustResolver(AnonymousToken::class, RememberMeToken::class);
  76.     }
  78.     /**
  79.      * Call this method if your authentication token is stored to a session.
  80.      *
  81.      * @final
  82.      */
  83.     public function setSessionAuthenticationStrategy(SessionAuthenticationStrategyInterface $sessionStrategy)
  84.     {
  85.         $this->sessionStrategy $sessionStrategy;
  86.     }
  88.     public function supports(Request $request): ?bool
  89.     {
  90.         if ((null !== $token $this->tokenStorage->getToken()) && !$this->trustResolver->isAnonymous($token)) {
  91.             return false;
  92.         }
  94.         $token $this->simpleAuthenticator->createToken($request$this->providerKey);
  96.         // allow null to be returned to skip authentication
  97.         if (null === $token) {
  98.             return false;
  99.         }
  101.         $request->attributes->set('_simple_pre_authenticator_token'$token);
  103.         return true;
  104.     }
  106.     /**
  107.      * Handles basic authentication.
  108.      */
  109.     public function authenticate(RequestEvent $event)
  110.     {
  111.         $request $event->getRequest();
  113.         if (null !== $this->logger) {
  114.             $this->logger->info('Attempting SimplePreAuthentication.', ['key' => $this->providerKey'authenticator' => \get_class($this->simpleAuthenticator)]);
  115.         }
  117.         if ((null !== $token $this->tokenStorage->getToken()) && !$this->trustResolver->isAnonymous($token)) {
  118.             $request->attributes->remove('_simple_pre_authenticator_token');
  120.             return;
  121.         }
  123.         try {
  124.             $token $request->attributes->get('_simple_pre_authenticator_token');
  125.             $request->attributes->remove('_simple_pre_authenticator_token');
  127.             $token $this->authenticationManager->authenticate($token);
  129.             $this->migrateSession($request$token);
  131.             $this->tokenStorage->setToken($token);
  133.             if (null !== $this->dispatcher) {
  134.                 $loginEvent = new InteractiveLoginEvent($request$token);
  135.                 $this->dispatcher->dispatch($loginEventSecurityEvents::INTERACTIVE_LOGIN);
  136.             }
  137.         } catch (AuthenticationException $e) {
  138.             $this->tokenStorage->setToken(null);
  140.             if (null !== $this->logger) {
  141.                 $this->logger->info('SimplePreAuthentication request failed.', ['exception' => $e'authenticator' => \get_class($this->simpleAuthenticator)]);
  142.             }
  144.             if ($this->simpleAuthenticator instanceof AuthenticationFailureHandlerInterface) {
  145.                 $response $this->simpleAuthenticator->onAuthenticationFailure($request$e);
  146.                 if ($response instanceof Response) {
  147.                     $event->setResponse($response);
  148.                 } elseif (null !== $response) {
  149.                     throw new \UnexpectedValueException(sprintf('The "%s::onAuthenticationFailure()" method must return null or a Response object.', \get_class($this->simpleAuthenticator)));
  150.                 }
  151.             }
  153.             return;
  154.         }
  156.         if ($this->simpleAuthenticator instanceof AuthenticationSuccessHandlerInterface) {
  157.             $response $this->simpleAuthenticator->onAuthenticationSuccess($request$token);
  158.             if ($response instanceof Response) {
  159.                 $event->setResponse($response);
  160.             } elseif (null !== $response) {
  161.                 throw new \UnexpectedValueException(sprintf('The "%s::onAuthenticationSuccess()" method must return null or a Response object.', \get_class($this->simpleAuthenticator)));
  162.             }
  163.         }
  164.     }
  166.     private function migrateSession(Request $requestTokenInterface $token)
  167.     {
  168.         if (!$this->sessionStrategy || !$request->hasSession() || !$request->hasPreviousSession()) {
  169.             return;
  170.         }
  172.         $this->sessionStrategy->onAuthentication($request$token);
  173.     }
  174. }