vendor/pimcore/customer-management-framework-bundle/src/Security/Authentication/LoginManager.php line 116

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. /**
  6.  * Pimcore
  7.  *
  8.  * This source file is available under two different licenses:
  9.  * - GNU General Public License version 3 (GPLv3)
  10.  * - Pimcore Commercial License (PCL)
  11.  * Full copyright and license information is available in
  12.  * LICENSE.md which is distributed with this source code.
  13.  *
  14.  *  @copyright  Copyright (c) Pimcore GmbH (http://www.pimcore.org)
  15.  *  @license    http://www.pimcore.org/license     GPLv3 and PCL
  16.  */
  18. namespace CustomerManagementFrameworkBundle\Security\Authentication;
  20. use Pimcore\Http\RequestHelper;
  21. use Symfony\Bundle\SecurityBundle\Security\FirewallConfig;
  22. use Symfony\Bundle\SecurityBundle\Security\FirewallMap;
  23. use Symfony\Component\DependencyInjection\ContainerInterface;
  24. use Symfony\Component\HttpFoundation\Request;
  25. use Symfony\Component\HttpFoundation\Response;
  26. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  27. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  28. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  29. use Symfony\Component\Security\Core\User\UserCheckerInterface;
  30. use Symfony\Component\Security\Core\User\UserInterface;
  31. use Symfony\Component\Security\Http\RememberMe\RememberMeServicesInterface;
  32. use Symfony\Component\Security\Http\Session\SessionAuthenticationStrategyInterface;
  34. /**
  35.  * Handles manual user logins (e.g. from registration). The logic implemented here basically
  36.  * resembles to LoginManager in FOSUserBundle, but resolves firewall config, user checkers and
  37.  * remember me services dynamically from the firewall config instead of wiring it toghether via
  38.  * compiler passes as we don't have a config defining which firewall to use in CMF.
  39.  */
  40. class LoginManager implements LoginManagerInterface
  41. {
  42.     /**
  43.      * @var RequestHelper
  44.      */
  45.     private $requestHelper;
  47.     /**
  48.      * @var FirewallMap
  49.      */
  50.     private $firewallMap;
  52.     /**
  53.      * @var SessionAuthenticationStrategyInterface
  54.      */
  55.     private $sessionStrategy;
  57.     /**
  58.      * @var TokenStorageInterface
  59.      */
  60.     private $tokenStorage;
  62.     /**
  63.      * @var UserCheckerInterface
  64.      */
  65.     private $defaultUserChecker;
  67.     /**
  68.      * @var ContainerInterface
  69.      */
  70.     private $container;
  72.     public function __construct(
  73.         RequestHelper $requestHelper,
  74.         FirewallMap $firewallMap,
  75.         SessionAuthenticationStrategyInterface $sessionStrategy,
  76.         TokenStorageInterface $tokenStorage,
  77.         UserCheckerInterface $defaultUserChecker,
  78.         ContainerInterface $container
  79.     ) {
  80.         $this->firewallMap $firewallMap;
  81.         $this->requestHelper $requestHelper;
  82.         $this->sessionStrategy $sessionStrategy;
  83.         $this->tokenStorage $tokenStorage;
  84.         $this->defaultUserChecker $defaultUserChecker;
  85.         $this->container $container;
  86.     }
  88.     /**
  89.      * @inheritdoc
  90.      */
  91.     public function login(UserInterface $userRequest $request nullResponse $response null)
  92.     {
  93.         if (null === $request) {
  94.             $request $this->requestHelper->getCurrentRequest();
  95.         }
  97.         $firewallConfig $this->firewallMap->getFirewallConfig($request);
  98.         $userChecker $this->getUserChecker($firewallConfig);
  99.         $rememberMeService $this->getRememberMeService($firewallConfig);
  101.         $userChecker->checkPreAuth($user);
  103.         $token $this->createToken($firewallConfig->getName(), $user);
  105.         $this->sessionStrategy->onAuthentication($request$token);
  107.         if (null !== $response && null !== $rememberMeService) {
  108.             $rememberMeService->loginSuccess($request$response$token);
  109.         }
  111.         $this->tokenStorage->setToken($token);
  112.     }
  114.     private function createToken(string $firewallNameUserInterface $user): TokenInterface
  115.     {
  116.         return new UsernamePasswordToken($usernull$firewallName$user->getRoles());
  117.     }
  119.     private function getUserChecker(FirewallConfig $config): UserCheckerInterface
  120.     {
  121.         if ($this->container->has($config->getUserChecker())) {
  122.             /** @var UserCheckerInterface $userChecker */
  123.             $userChecker $this->container->get($config->getUserChecker());
  125.             return $userChecker;
  126.         }
  128.         return $this->defaultUserChecker;
  129.     }
  131.     /**
  132.      * @param FirewallConfig $config
  133.      *
  134.      * @return RememberMeServicesInterface|null
  135.      */
  136.     private function getRememberMeService(FirewallConfig $config)
  137.     {
  138.         $definitions = [
  139.             'security.authentication.rememberme.services.persistent.' $config->getName(),
  140.             'security.authentication.rememberme.services.simplehash.' $config->getName()
  141.         ];
  143.         foreach ($definitions as $definition) {
  144.             if ($this->container->has($definition)) {
  145.                 /** @var RememberMeServicesInterface $rememberMeService */
  146.                 $rememberMeService $this->container->get($definition);
  148.                 return $rememberMeService;
  149.             }
  150.         }
  152.         return null;
  153.     }
  154. }