src/Security/AdminAuthenticator.php line 37

  1. <?php
  3. namespace App\Security;
  5. use Symfony\Component\HttpFoundation\RedirectResponse;
  6. use Symfony\Component\HttpFoundation\Request;
  7. use Symfony\Component\HttpFoundation\Response;
  8. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  9. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  10. use Symfony\Component\Security\Core\Security;
  11. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  12. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  13. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  14. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  16. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  17. use Twig\Environment;
  19. class AdminAuthenticator extends AbstractLoginFormAuthenticator
  20. {
  21.     use TargetPathTrait;
  23.     private $twig;
  25.     public const LOGIN_ROUTE 'app_login';
  27.     public function __construct(UrlGeneratorInterface $urlGeneratorEnvironment $twig)
  28.     {
  29.         $this->urlGenerator $urlGenerator;
  30.         $this->twig $twig;
  31.     }
  33.     public function authenticate(Request $request): Passport
  34.     {
  35.         $email $request->request->get('email''');
  37.         $request->getSession()->set(Security::LAST_USERNAME$email);
  39.         return new Passport(
  40.             new UserBadge($email),
  41.             new PasswordCredentials($request->request->get('password''')),
  42.             [
  43.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  44.             ]
  45.         );
  46.     }
  48.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  49.     {
  50.         $user $token->getUser();
  52.         /* Clients déconnectés instantanément de l'application */
  53.         if (in_array('ROLE_CLIENT'$user->getRoles())) {
  54.             return new RedirectResponse($this->urlGenerator->generate('app_logout'));
  55.         }
  57.         if ($targetPath $this->getTargetPath($request->getSession(), $firewallName)) {
  58.             return new RedirectResponse($targetPath);
  59.         }
  61.         // For example:
  62.         return new RedirectResponse($this->urlGenerator->generate('admin'));
  63.         // throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
  64.     }
  66.     protected function getLoginUrl(Request $request): string
  67.     {
  68.         return $this->urlGenerator->generate(self::LOGIN_ROUTE);
  69.     }
  70. }