UserSubscriber::onUserSsoAuthentication() - Code Metrics - Inspection of "✨ Kerberos SSO" - Monogramm/MauticLdapAuthBundle - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#10)

unknown

created 2020-05-13 17:12 UTC

UserSubscriber::onUserSsoAuthentication() B

↳ Parent: UserSubscriber

Complexity

Conditions	9
Paths	15

Size

Total Lines	26
Code Lines	19

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
eloc	19
c	0
b	0
f	0
dl	0
loc	26
rs	8.0555
cc	9
nc	15
nop	1

<?php
/**
 * @package     Mautic
 * @copyright   2019 Monogramm. All rights reserved
 * @author      Monogramm
 * @contributor      enguerr
 *
 * @link        https://www.monogramm.io
 * @link        https://www.septeo.fr
 *
 * @license     GNU/AGPLv3 http://www.gnu.org/licenses/agpl.html
 */

namespace MauticPlugin\MauticLdapAuthBundle\EventListener;

use Mautic\CoreBundle\Helper\CoreParametersHelper;
use Mautic\PluginBundle\Integration\AbstractSsoFormIntegration;
use Mautic\UserBundle\Entity\User;
use Mautic\UserBundle\Event\AuthenticationEvent;
use Mautic\UserBundle\UserEvents;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Security\Core\AuthenticationEvents;


/**
 * Class UserSubscriber
 */
class UserSubscriber implements EventSubscriberInterface
{
    /**
     * @var CoreParametersHelper
     */
    private $parametersHelper;

    private $supportedServices = array(
        'LdapAuth',
    );

    public function __construct(CoreParametersHelper $parametersHelper)
    {
        $this->parametersHelper = $parametersHelper;
    }

    /**
     * @return array
     */
    public static function getSubscribedEvents()
    {
        return array(
            UserEvents::USER_FORM_AUTHENTICATION => array('onUserFormAuthentication', 0),
            UserEvents::USER_PRE_AUTHENTICATION  => array('onUserSsoAuthentication', 0),
        );
    }
    /**
     * Authenticate via the form using users defined in LDAP server(s).
     *
     * @param AuthenticationEvent $event
     *
     * @return bool|void
     */
    public function onUserSsoAuthentication(AuthenticationEvent $event)
    {
        $request = Request::createFromGlobals();
        $username = $request->server->get('PHP_AUTH_USER');
        $password = $request->server->get('PHP_AUTH_PW');
        $integration = null;
        $result = false;
        if ($authenticatingService = $event->getAuthenticatingService()) {
            if (in_array($authenticatingService, $this->supportedServices)
                && $integration = $event->getIntegration($authenticatingService)) {
                $result = $this->authenticateService($integration, $username, $password);
            }
        } else {
            foreach ($this->supportedServices as $supportedService) {
                if ($integration = $event->getIntegration($supportedService)) {
                    $authenticatingService = $supportedService;
                    $result = $this->authenticateService($integration, $username, $password);
                    break;
                }
            }
        }

        if ($integration && $result instanceof User) {
            $event->setIsAuthenticated($authenticatingService, $result, $integration->shouldAutoCreateNewUser());
        } elseif ($result instanceof Response) {
            $event->setResponse($result);
        } // else do nothing
    }
    /**
     * Authenticate via the form using users defined in LDAP server(s).
     *
     * @param AuthenticationEvent $event
     *
     * @return bool|void
     */
    public function onUserFormAuthentication(AuthenticationEvent $event)
    {
        $username = $event->getUsername();
        $password = $event->getToken()->getCredentials();

        $integration = null;
        $result = false;
        if ($authenticatingService = $event->getAuthenticatingService()) {
            if (in_array($authenticatingService, $this->supportedServices)
                && $integration = $event->getIntegration($authenticatingService)) {
                $result = $this->authenticateService($integration, $username, $password);
            }
        } else {
            foreach ($this->supportedServices as $supportedService) {
                if ($integration = $event->getIntegration($supportedService)) {
                    $authenticatingService = $supportedService;
                    $result = $this->authenticateService($integration, $username, $password);
                    break;
                }
            }
        }

        if ($integration && $result instanceof User) {
            $event->setIsAuthenticated($authenticatingService, $result, $integration->shouldAutoCreateNewUser());
        } elseif ($result instanceof Response) {
            $event->setResponse($result);
        } // else do nothing
    }

    /**
     * @param AbstractSsoFormIntegration $integration
     * @param string                     $username
     * @param string                     $password
     *
     * @return bool|RedirectResponse
     */
    private function authenticateService(AbstractSsoFormIntegration $integration, $username, $password)
    {
        $settings = [
            'hostname'      => $this->parametersHelper->getParameter('ldap_auth_host'),
            'port'          => $this->parametersHelper->getParameter('ldap_auth_port', 389),
            'ssl'           => $this->parametersHelper->getParameter('ldap_auth_ssl', false),
            'starttls'      => $this->parametersHelper->getParameter('ldap_auth_starttls', true),
            'version'       => $this->parametersHelper->getParameter('ldap_auth_version', 3),
            // TODO Coming feature: Bind DN
            'bind_dn'       => $this->parametersHelper->getParameter('ldap_auth_bind_dn'),
            'bind_passwd'   => $this->parametersHelper->getParameter('ldap_auth_bind_passwd'),
            'base_dn'       => $this->parametersHelper->getParameter('ldap_auth_base_dn'),
            'user_query'    => $this->parametersHelper->getParameter('ldap_auth_user_query', ''),
            'is_ad'         => $this->parametersHelper->getParameter('ldap_auth_isactivedirectory', false),
            'ad_domain'     => $this->parametersHelper->getParameter('ldap_auth_activedirectory_domain', null),
            'user_key'      => $this->parametersHelper->getParameter('ldap_auth_username_attribute', 'uid'),
            'user_email'    => $this->parametersHelper->getParameter('ldap_auth_email_attribute', 'mail'),
            'user_firstname'=> $this->parametersHelper->getParameter('ldap_auth_firstname_attribute', 'givenName'),
            'user_lastname' => $this->parametersHelper->getParameter('ldap_auth_lastname_attribute', 'sn'),
            'user_fullname' => $this->parametersHelper->getParameter('ldap_auth_fullname_attribute', 'displayName'),
        ];

        $parameters = [
            'login'     => $username,
            'password'  => $password,
        ];

        if ($authenticatedUser = $integration->ssoAuthCallback($settings, $parameters)) {
            return $authenticatedUser;
        }

        return false;
    }
}


1			<?php
2			/**
3			* @package Mautic
4			* @copyright 2019 Monogramm. All rights reserved
5			* @author Monogramm
6			* @contributor enguerr
7			*
8			* @link https://www.monogramm.io
9			* @link https://www.septeo.fr
10			*
11			* @license GNU/AGPLv3 http://www.gnu.org/licenses/agpl.html
12			*/
13
14			namespace MauticPlugin\MauticLdapAuthBundle\EventListener;
15
16			use Mautic\CoreBundle\Helper\CoreParametersHelper;
17			use Mautic\PluginBundle\Integration\AbstractSsoFormIntegration;
18			use Mautic\UserBundle\Entity\User;
19			use Mautic\UserBundle\Event\AuthenticationEvent;
20			use Mautic\UserBundle\UserEvents;
21			use Symfony\Component\EventDispatcher\EventSubscriberInterface;
22			use Symfony\Component\HttpFoundation\RedirectResponse;
23			use Symfony\Component\HttpFoundation\Request;
24			use Symfony\Component\HttpFoundation\Response;
25			use Symfony\Component\Security\Core\AuthenticationEvents;
26
27
28			/**
29			* Class UserSubscriber
30			*/
31			class UserSubscriber implements EventSubscriberInterface
32			{
33			/**
34			* @var CoreParametersHelper
35			*/
36			private $parametersHelper;
37
38			private $supportedServices = array(
39			'LdapAuth',
40			);
41
42			public function __construct(CoreParametersHelper $parametersHelper)
43			{
44			$this->parametersHelper = $parametersHelper;
45			}
46
47			/**
48			* @return array
49			*/
50			public static function getSubscribedEvents()
51			{
52			return array(
53			UserEvents::USER_FORM_AUTHENTICATION => array('onUserFormAuthentication', 0),
54			UserEvents::USER_PRE_AUTHENTICATION => array('onUserSsoAuthentication', 0),
55			);
56			}
57			/**
58			* Authenticate via the form using users defined in LDAP server(s).
59			*
60			* @param AuthenticationEvent $event
61			*
62			* @return bool\|void
63			*/
64			public function onUserSsoAuthentication(AuthenticationEvent $event)
65			{
66			$request = Request::createFromGlobals();
67			$username = $request->server->get('PHP_AUTH_USER');
68			$password = $request->server->get('PHP_AUTH_PW');
69			$integration = null;
70			$result = false;
71			if ($authenticatingService = $event->getAuthenticatingService()) {
72			if (in_array($authenticatingService, $this->supportedServices)
73			&& $integration = $event->getIntegration($authenticatingService)) {
74			$result = $this->authenticateService($integration, $username, $password);
75			}
76			} else {
77			foreach ($this->supportedServices as $supportedService) {
78			if ($integration = $event->getIntegration($supportedService)) {
79			$authenticatingService = $supportedService;
80			$result = $this->authenticateService($integration, $username, $password);
81			break;
82			}
83			}
84			}
85
86			if ($integration && $result instanceof User) {
87			$event->setIsAuthenticated($authenticatingService, $result, $integration->shouldAutoCreateNewUser());
88			} elseif ($result instanceof Response) {
89			$event->setResponse($result);
90			} // else do nothing
91			}
92			/**
93			* Authenticate via the form using users defined in LDAP server(s).
94			*
95			* @param AuthenticationEvent $event
96			*
97			* @return bool\|void
98			*/
99			public function onUserFormAuthentication(AuthenticationEvent $event)
100			{
101			$username = $event->getUsername();
102			$password = $event->getToken()->getCredentials();
103
104			$integration = null;
105			$result = false;
106			if ($authenticatingService = $event->getAuthenticatingService()) {
107			if (in_array($authenticatingService, $this->supportedServices)
108			&& $integration = $event->getIntegration($authenticatingService)) {
109			$result = $this->authenticateService($integration, $username, $password);
110			}
111			} else {
112			foreach ($this->supportedServices as $supportedService) {
113			if ($integration = $event->getIntegration($supportedService)) {
114			$authenticatingService = $supportedService;
115			$result = $this->authenticateService($integration, $username, $password);
116			break;
117			}
118			}
119			}
120
121			if ($integration && $result instanceof User) {
122			$event->setIsAuthenticated($authenticatingService, $result, $integration->shouldAutoCreateNewUser());
123			} elseif ($result instanceof Response) {
124			$event->setResponse($result);
125			} // else do nothing
126			}
127
128			/**
129			* @param AbstractSsoFormIntegration $integration
130			* @param string $username
131			* @param string $password
132			*
133			* @return bool\|RedirectResponse
134			*/
135			private function authenticateService(AbstractSsoFormIntegration $integration, $username, $password)
136			{
137			$settings = [
138			'hostname' => $this->parametersHelper->getParameter('ldap_auth_host'),
139			'port' => $this->parametersHelper->getParameter('ldap_auth_port', 389),
140			'ssl' => $this->parametersHelper->getParameter('ldap_auth_ssl', false),
141			'starttls' => $this->parametersHelper->getParameter('ldap_auth_starttls', true),
142			'version' => $this->parametersHelper->getParameter('ldap_auth_version', 3),
143			// TODO Coming feature: Bind DN
144			'bind_dn' => $this->parametersHelper->getParameter('ldap_auth_bind_dn'),
145			'bind_passwd' => $this->parametersHelper->getParameter('ldap_auth_bind_passwd'),
146			'base_dn' => $this->parametersHelper->getParameter('ldap_auth_base_dn'),
147			'user_query' => $this->parametersHelper->getParameter('ldap_auth_user_query', ''),
148			'is_ad' => $this->parametersHelper->getParameter('ldap_auth_isactivedirectory', false),
149			'ad_domain' => $this->parametersHelper->getParameter('ldap_auth_activedirectory_domain', null),
150			'user_key' => $this->parametersHelper->getParameter('ldap_auth_username_attribute', 'uid'),
151			'user_email' => $this->parametersHelper->getParameter('ldap_auth_email_attribute', 'mail'),
152			'user_firstname'=> $this->parametersHelper->getParameter('ldap_auth_firstname_attribute', 'givenName'),
153			'user_lastname' => $this->parametersHelper->getParameter('ldap_auth_lastname_attribute', 'sn'),
154			'user_fullname' => $this->parametersHelper->getParameter('ldap_auth_fullname_attribute', 'displayName'),
155			];
156
157			$parameters = [
158			'login' => $username,
159			'password' => $password,
160			];
161
162			if ($authenticatedUser = $integration->ssoAuthCallback($settings, $parameters)) {
163			return $authenticatedUser;
164			}
165
166			return false;
167			}
168			}
169

Monogramm / MauticLdapAuthBundle

Pull Request — master (#10)

UserSubscriber::onUserSsoAuthentication() B

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like