src/Security/UserAuthenticator.php line 21

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use Symfony\Component\HttpFoundation\Request;
  6. use Symfony\Component\Security\Core\Security;
  7. use Symfony\Component\HttpFoundation\Response;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  10. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  11. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  12. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  13. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  14. use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  16. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  19. //Connexion qui prend en compte la hiérarchie des roles 
  21. class UserAuthenticator extends AbstractLoginFormAuthenticator
  22. {
  23.     use TargetPathTrait;
  25.     public const LOGIN_ROUTE 'app_login';
  28.     //Appel du service security pour les rôles
  30.     private Security $security;
  32.     public function __construct(private UrlGeneratorInterface $urlGeneratorSecurity $security)
  33.     {
  35.         //INJECTION du service security et urlGenerator dans le constructeur 
  37.         $this->security $security;
  38.         $this->urlGenerator $urlGenerator;
  39.     }
  41.     public function authenticate(Request $request): Passport
  42.     {
  43.         $email $request->request->get('email''');
  45.         $request->getSession()->set(Security::LAST_USERNAME$email);
  47.         return new Passport(
  48.             new UserBadge($email),
  49.             new PasswordCredentials($request->request->get('password''')),
  50.             [
  51.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  52.             ]
  53.         );
  54.     }
  56.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  57.     {
  58.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  59.             return new RedirectResponse($targetPath);
  60.         }
  62.         // Vérifies directement avec la méthode isGranted() du composant Security
  64.         /* ROLE_SUPER_ADMIN et ROLE_ADMIN sont rediriger respectivement avec leur controlleur 
  65.         menant à la même vue back_admin/index.html.twig */
  66.         
  67.         if ($this->security->isGranted("ROLE_SUPER_ADMIN")) {
  68.             return new RedirectResponse($this->urlGenerator->generate('app_accueil'));
  69.         }
  72.         elseif ($this->security->isGranted("ROLE_ADMIN")) {
  73.             return new RedirectResponse($this->urlGenerator->generate('app_accueil'));
  74.         }
  76.         //Sinon redirige le ROLE_USER vers la page test app_register
  77.         
  78.         return new RedirectResponse($this->urlGenerator->generate('app_accueil'));
  79.     }
  81.         /* For example:
  82.            return new RedirectResponse($this->urlGenerator->generate('app_login'));
  83.            throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  84.         }*/
  86.     protected function getLoginUrl(Request $request): string
  87.     {
  88.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  89.     }
  90. }