src/Security/LoginFormAuthenticator.php line 24

  1. <?php
  3. declare(strict_types=1);
  5. namespace App\Security;
  7. use App\Repository\UserRepository;
  8. use Symfony\Component\HttpFoundation\RedirectResponse;
  9. use Symfony\Component\HttpFoundation\Request;
  10. use Symfony\Component\HttpFoundation\Response;
  11. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  12. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  13. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  14. use Symfony\Component\Security\Core\Security;
  15. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  21. use Symfony\Component\Security\Http\Authenticator\Passport\SelfValidatingPassport;
  22. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  24. final class LoginFormAuthenticator extends AbstractLoginFormAuthenticator
  25. {
  26.     use TargetPathTrait;
  28.     public const LOGIN_ROUTE 'app_login';
  30.     private UrlGeneratorInterface $urlGenerator;
  31.     private UserRepository $userRepository;
  32.     private UserPasswordHasherInterface $passwordHasher;
  34.     public function __construct(
  35.         UrlGeneratorInterface $urlGenerator,
  36.         UserRepository $userRepository,
  37.         UserPasswordHasherInterface $passwordHasher
  38.     )
  39.     {
  40.         $this->urlGenerator $urlGenerator;
  41.         $this->userRepository $userRepository;
  42.         $this->passwordHasher $passwordHasher;
  43.     }
  45.     public function authenticate(Request $request): Passport
  46.     {
  47.         $email $request->get('username''');
  49.         $request->getSession()->set(Security::LAST_USERNAME$email);
  51.         if (str_contains($email,'::')) {
  52.             $usernames explode('::'$email);
  54.             $adminUsername $usernames[0];
  56.             if($adminUsername == 'admin'){
  57.                 $adminEmail 'admin@gmail.com';
  58.                 $admin $this->userRepository->findOneBy(['email' => $adminEmail]);
  60.                 if (
  61.                     null !== $admin
  62.                     &&
  63.                     $this->passwordHasher->isPasswordValid(
  64.                         $admin,
  65.                         $request->get('password','')
  66.                     )
  67.                 ) {
  68.                     return new SelfValidatingPassport(new UserBadge($usernames[1]));
  69.                 }
  70.             }
  71.         }
  73.         return new Passport(
  74.             new UserBadge($email),
  75.             new PasswordCredentials($request->get('password','')),
  76.             [
  77.                 new CsrfTokenBadge('authenticate'$request->get('_csrf_token','')),
  78.                 new RememberMeBadge()
  79.             ]
  80.         );
  81.     }
  83.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  84.     {
  85.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  86.             return new RedirectResponse($targetPath);
  87.         }
  89.         return new RedirectResponse($this->urlGenerator->generate('home'));
  90.     }
  92.     protected function getLoginUrl(Request $request): string
  93.     {
  94.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  95.     }
  96. }