ControleOnline\Security\TokenAuthenticator

Complexity

Total Complexity

11

Size/Duplication

Total Lines	59
Duplicated Lines	0 %

Importance

Changes	15
Bugs	0	Features	0

8 Methods

Rating	Name	Duplication	Size	Complexity
A	getKey()	0	3	1
A	onAuthenticationFailure()	0	3	1
A	authenticate()	0	16	3
A	start()	0	3	1
A	onAuthenticationSuccess()	0	3	1
A	createToken()	0	4	1
A	__construct()	0	3	1
A	supports()	0	4	2

<?php

namespace ControleOnline\Security;

use ControleOnline\Entity\User;
use Doctrine\ORM\EntityManagerInterface;

The type Doctrine\ORM\EntityManagerInterface was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\HttpFoundation\JsonResponse;

The type Symfony\Component\HttpFoundation\JsonResponse was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\HttpFoundation\Request;

The type Symfony\Component\HttpFoundation\Request was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\HttpFoundation\Response;

The type Symfony\Component\HttpFoundation\Response was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;

The type Symfony\Component\Security\Core\Authentication\Token\TokenInterface was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;

The type Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Core\Exception\AuthenticationException;

The type Symfony\Component\Security\Core\Exception\AuthenticationException was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;

The type Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;

The type Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;

The type Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials;

The type Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Http\Authenticator\Passport\Passport;

The type Symfony\Component\Security\Http\Authenticator\Passport\Passport was not found. Maybe you did not declare it correctly or list all dependencies?

use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;

The type Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface was not found. Maybe you did not declare it correctly or list all dependencies?

class TokenAuthenticator extends AbstractAuthenticator implements AuthenticationEntryPointInterface
{
    private $em;

    public function __construct(EntityManagerInterface $em)
    {
        $this->em = $em;
    }

    public function supports(Request $request): ?bool
    {
        $key = $this->getKey($request);
        return $key !== null && !empty(trim($key));
    }

    public function authenticate(Request $request): Passport
    {
        $apiToken = $this->getKey($request);
        if (null === $apiToken)
            throw new CustomUserMessageAuthenticationException('No API token provided');

        return new Passport(
            new UserBadge($apiToken, function ($apiToken) {
                $user = $this->em->getRepository(User::class)->findOneBy(['apiKey' => $apiToken]);
                if (null === $user)
                    throw new CustomUserMessageAuthenticationException('Invalid API token');
                return $user;
            }),
            new CustomCredentials(
                fn($credentials, $user) => true,

The parameter $credentials is not used and could be removed.

The parameter $user is not used and could be removed.

                $apiToken
            )
        );
    }

    public function createToken(Passport $passport, string $firewallName): TokenInterface
    {
        $user = $passport->getUser();
        return new UsernamePasswordToken($user, $firewallName, $user->getRoles());
    }

    public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
    {
        return null;
    }

    public function onAuthenticationFailure(Request $request, AuthenticationException $exception): ?Response
    {
        return new JsonResponse(['message' => 'Authentication failed'], Response::HTTP_UNAUTHORIZED);
    }

    public function start(Request $request, AuthenticationException $authException = null): Response
    {
        return new JsonResponse(['message' => 'Authentication required'], Response::HTTP_UNAUTHORIZED);
    }

    private function getKey(Request $request): ?string
    {
        return $request->headers->get('API-KEY') ?? $request->headers->get('API-TOKEN');
    }
}