UserAuthenticator::supports() - Code Metrics - PiedWeb/CMS - Measure and Improve Code Quality continuously with Scrutinizer

UserAuthenticator::supports() A
last analyzed 2020-12-16 14:37 UTC

↳ Parent: UserAuthenticator

Complexity

Conditions	2
Paths	2

Size

Total Lines	4
Code Lines	2

Duplication

Lines	0
Ratio	0 %

Code Coverage

Tests	0
CRAP Score	6

Importance

Changes	1
Bugs	0	Features	0

Metric	Value
cc	2
eloc	2
c	1
b	0
f	0
nc	2
nop	1
dl	0
loc	4
ccs	0
cts	4
cp	0
crap	6
rs	10

<?php

namespace PiedWeb\CMSBundle\Security;

use Doctrine\ORM\EntityManagerInterface;
use PiedWeb\CMSBundle\Entity\UserInterface as User;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
use Symfony\Component\Security\Core\Security;
use Symfony\Component\Security\Core\User\UserInterface;
use Symfony\Component\Security\Core\User\UserProviderInterface;
use Symfony\Component\Security\Csrf\CsrfToken;
use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
use Symfony\Component\Security\Http\Util\TargetPathTrait;

class UserAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
{
    use TargetPathTrait;

    private $entityManager;
    private $urlGenerator;
    private $csrfTokenManager;
    private $passwordEncoder;

    public function __construct(
        EntityManagerInterface $entityManager,
        UrlGeneratorInterface $urlGenerator,
        CsrfTokenManagerInterface $csrfTokenManager,
        UserPasswordEncoderInterface $passwordEncoder
    ) {
        $this->entityManager = $entityManager;
        $this->urlGenerator = $urlGenerator;
        $this->csrfTokenManager = $csrfTokenManager;
        $this->passwordEncoder = $passwordEncoder;
    }

    public function supports(Request $request)
    {
        return 'piedweb_cms_login' === $request->attributes->get('_route')
            && $request->isMethod('POST');
    }

    public function getCredentials(Request $request)
    {
        $credentials = [
            'email' => $request->request->get('email'),
            'password' => $request->request->get('password'),
            'csrf_token' => $request->request->get('_csrf_token'),
        ];
        $request->getSession()->set(
            Security::LAST_USERNAME,
            $credentials['email']
        );

        return $credentials;
    }

    public function getUser($credentials, UserProviderInterface $userProvider)
    {
        $token = new CsrfToken('authenticate', $credentials['csrf_token']);
        if (! $this->csrfTokenManager->isTokenValid($token)) {
            throw new InvalidCsrfTokenException();
        }

        $user = $this->entityManager->getRepository(User::class)->findOneBy(['email' => $credentials['email']]);

        if (! $user) {
            // fail authentication with a custom error
            throw new CustomUserMessageAuthenticationException('security.login.email_not_found');
        }

        return $user;
    }

    public function checkCredentials($credentials, UserInterface $user)
    {
        return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
    }

    /**
     * Used to upgrade (rehash) the user's password automatically over time.
     */
    public function getPassword($credentials): ?string
    {
        return $credentials['password'];
    }

    public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
    {
        if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
            return new RedirectResponse($targetPath);
        }

        // todo redirect to previous route
        return new RedirectResponse($this->urlGenerator->generate('piedweb_cms_admin_dashboard'));
    }

    protected function getLoginUrl()
    {
        return $this->urlGenerator->generate('piedweb_cms_login');
    }
}


1			<?php
2
3			namespace PiedWeb\CMSBundle\Security;
4
5			use Doctrine\ORM\EntityManagerInterface;
6			use PiedWeb\CMSBundle\Entity\UserInterface as User;
7			use Symfony\Component\HttpFoundation\RedirectResponse;
8			use Symfony\Component\HttpFoundation\Request;
9			use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
10			use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
11			use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
12			use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
13			use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
14			use Symfony\Component\Security\Core\Security;
15			use Symfony\Component\Security\Core\User\UserInterface;
16			use Symfony\Component\Security\Core\User\UserProviderInterface;
17			use Symfony\Component\Security\Csrf\CsrfToken;
18			use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
19			use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
20			use Symfony\Component\Security\Guard\PasswordAuthenticatedInterface;
21			use Symfony\Component\Security\Http\Util\TargetPathTrait;
22
23			class UserAuthenticator extends AbstractFormLoginAuthenticator implements PasswordAuthenticatedInterface
24			{
25			use TargetPathTrait;
26
27			private $entityManager;
28			private $urlGenerator;
29			private $csrfTokenManager;
30			private $passwordEncoder;
31
32			public function __construct(
33			EntityManagerInterface $entityManager,
34			UrlGeneratorInterface $urlGenerator,
35			CsrfTokenManagerInterface $csrfTokenManager,
36			UserPasswordEncoderInterface $passwordEncoder
37			) {
38			$this->entityManager = $entityManager;
39			$this->urlGenerator = $urlGenerator;
40			$this->csrfTokenManager = $csrfTokenManager;
41			$this->passwordEncoder = $passwordEncoder;
42			}
43
44			public function supports(Request $request)
45			{
46			return 'piedweb_cms_login' === $request->attributes->get('_route')
47			&& $request->isMethod('POST');
48			}
49
50			public function getCredentials(Request $request)
51			{
52			$credentials = [
53			'email' => $request->request->get('email'),
54			'password' => $request->request->get('password'),
55			'csrf_token' => $request->request->get('_csrf_token'),
56			];
57			$request->getSession()->set(
58			Security::LAST_USERNAME,
59			$credentials['email']
60			);
61
62			return $credentials;
63			}
64
65			public function getUser($credentials, UserProviderInterface $userProvider)
66			{
67			$token = new CsrfToken('authenticate', $credentials['csrf_token']);
68			if (! $this->csrfTokenManager->isTokenValid($token)) {
69			throw new InvalidCsrfTokenException();
70			}
71
72			$user = $this->entityManager->getRepository(User::class)->findOneBy(['email' => $credentials['email']]);
73
74			if (! $user) {
75			// fail authentication with a custom error
76			throw new CustomUserMessageAuthenticationException('security.login.email_not_found');
77			}
78
79			return $user;
80			}
81
82			public function checkCredentials($credentials, UserInterface $user)
83			{
84			return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
85			}
86
87			/**
88			* Used to upgrade (rehash) the user's password automatically over time.
89			*/
90			public function getPassword($credentials): ?string
91			{
92			return $credentials['password'];
93			}
94
95			public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
96			{
97			if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
98			return new RedirectResponse($targetPath);
99			}
100
101			// todo redirect to previous route
102			return new RedirectResponse($this->urlGenerator->generate('piedweb_cms_admin_dashboard'));
103			}
104
105			protected function getLoginUrl()
106			{
107			return $this->urlGenerator->generate('piedweb_cms_login');
108			}
109			}
110

PiedWeb / CMS

UserAuthenticator::supports() A last analyzed 2020-12-16 14:37 UTC

Complexity

Size

Duplication

Code Coverage

Importance

Duplication Side-by-Side

Filter issues like

UserAuthenticator::supports() A
last analyzed 2020-12-16 14:37 UTC