FormAuthenticator::start() - Code Metrics - julienj/twity - Measure and Improve Code Quality continuously with Scrutinizer

FormAuthenticator::start() A
last analyzed 2020-04-29 16:42 UTC

↳ Parent: FormAuthenticator

Complexity

Conditions	2
Paths	2

Size

Total Lines	7
Code Lines	3

Duplication

Lines	0
Ratio	0 %

Importance

Changes	2
Bugs	0	Features	0

Metric	Value
cc	2
eloc	3
c	2
b	0
f	0
nc	2
nop	2
dl	0
loc	7
rs	10

<?php

namespace App\Security;

use Symfony\Component\HttpFoundation\JsonResponse;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\RouterInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
use Symfony\Component\Security\Core\Exception\AuthenticationException;
use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
use Symfony\Component\Security\Core\Security;
use Symfony\Component\Security\Core\User\UserInterface;
use Symfony\Component\Security\Core\User\UserProviderInterface;
use Symfony\Component\Security\Csrf\CsrfToken;
use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
use Symfony\Component\Security\Http\Util\TargetPathTrait;

class FormAuthenticator extends AbstractFormLoginAuthenticator
{
    use TargetPathTrait;

    private $router;
    private $csrfTokenManager;
    private $passwordEncoder;

    public function __construct(RouterInterface $router, CsrfTokenManagerInterface $csrfTokenManager, UserPasswordEncoderInterface $passwordEncoder)
    {
        $this->router = $router;
        $this->csrfTokenManager = $csrfTokenManager;
        $this->passwordEncoder = $passwordEncoder;
    }

    public function supports(Request $request)
    {
        return 'login' === $request->attributes->get('_route')
            && $request->isMethod('POST');
    }

    public function getCredentials(Request $request)
    {
        $credentials = [
            'username' => $request->request->get('username'),
            'password' => $request->request->get('password'),
            'csrf_token' => $request->request->get('_csrf_token'),
        ];
        $request->getSession()->set(
            Security::LAST_USERNAME,
            $credentials['username']
        );

        return $credentials;
    }

    public function getUser($credentials, UserProviderInterface $userProvider)
    {
        $token = new CsrfToken('authenticate', $credentials['csrf_token']);
        if (!$this->csrfTokenManager->isTokenValid($token)) {
            throw new InvalidCsrfTokenException();
        }

        // Load / create our user however you need.
        // You can do this by calling the user provider, or with custom logic here.
        $user = $userProvider->loadUserByUsername($credentials['username']);

        if (!$user) {

            // fail authentication with a custom error
            throw new CustomUserMessageAuthenticationException('Username could not be found.');
        }

        return $user;
    }

    public function checkCredentials($credentials, UserInterface $user)
    {
        return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
    }

    public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
    {
        return new RedirectResponse($this->router->generate('home'));
    }

    public function start(Request $request, AuthenticationException $authException = null)
    {
        if ('json' === $request->getRequestFormat()) {
            return new JsonResponse(['error' => 401], Response::HTTP_UNAUTHORIZED);
        }

        return parent::start($request, $authException);
    }

    protected function getLoginUrl()
    {
        return $this->router->generate('login');
    }
}


1			<?php
2
3			namespace App\Security;
4
5			use Symfony\Component\HttpFoundation\JsonResponse;
6			use Symfony\Component\HttpFoundation\RedirectResponse;
7			use Symfony\Component\HttpFoundation\Request;
8			use Symfony\Component\HttpFoundation\Response;
9			use Symfony\Component\Routing\RouterInterface;
10			use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
11			use Symfony\Component\Security\Core\Encoder\UserPasswordEncoderInterface;
12			use Symfony\Component\Security\Core\Exception\AuthenticationException;
13			use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
14			use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
15			use Symfony\Component\Security\Core\Security;
16			use Symfony\Component\Security\Core\User\UserInterface;
17			use Symfony\Component\Security\Core\User\UserProviderInterface;
18			use Symfony\Component\Security\Csrf\CsrfToken;
19			use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
20			use Symfony\Component\Security\Guard\Authenticator\AbstractFormLoginAuthenticator;
21			use Symfony\Component\Security\Http\Util\TargetPathTrait;
22
23			class FormAuthenticator extends AbstractFormLoginAuthenticator
24			{
25			use TargetPathTrait;
26
27			private $router;
28			private $csrfTokenManager;
29			private $passwordEncoder;
30
31			public function __construct(RouterInterface $router, CsrfTokenManagerInterface $csrfTokenManager, UserPasswordEncoderInterface $passwordEncoder)
32			{
33			$this->router = $router;
34			$this->csrfTokenManager = $csrfTokenManager;
35			$this->passwordEncoder = $passwordEncoder;
36			}
37
38			public function supports(Request $request)
39			{
40			return 'login' === $request->attributes->get('_route')
41			&& $request->isMethod('POST');
42			}
43
44			public function getCredentials(Request $request)
45			{
46			$credentials = [
47			'username' => $request->request->get('username'),
48			'password' => $request->request->get('password'),
49			'csrf_token' => $request->request->get('_csrf_token'),
50			];
51			$request->getSession()->set(
52			Security::LAST_USERNAME,
53			$credentials['username']
54			);
55
56			return $credentials;
57			}
58
59			public function getUser($credentials, UserProviderInterface $userProvider)
60			{
61			$token = new CsrfToken('authenticate', $credentials['csrf_token']);
62			if (!$this->csrfTokenManager->isTokenValid($token)) {
63			throw new InvalidCsrfTokenException();
64			}
65
66			// Load / create our user however you need.
67			// You can do this by calling the user provider, or with custom logic here.
68			$user = $userProvider->loadUserByUsername($credentials['username']);
69
70			if (!$user) {
			0 ignored issues – show introduced 2019-01-27 14:49 UTC by Report Bug Copy Issue Report `$user` is of type `Symfony\Component\Security\Core\User\UserInterface`, thus it always evaluated to `true`. Loading history...
71			// fail authentication with a custom error
72			throw new CustomUserMessageAuthenticationException('Username could not be found.');
73			}
74
75			return $user;
76			}
77
78			public function checkCredentials($credentials, UserInterface $user)
79			{
80			return $this->passwordEncoder->isPasswordValid($user, $credentials['password']);
81			}
82
83			public function onAuthenticationSuccess(Request $request, TokenInterface $token, $providerKey)
84			{
85			return new RedirectResponse($this->router->generate('home'));
86			}
87
88			public function start(Request $request, AuthenticationException $authException = null)
89			{
90			if ('json' === $request->getRequestFormat()) {
91			return new JsonResponse(['error' => 401], Response::HTTP_UNAUTHORIZED);
92			}
93
94			return parent::start($request, $authException);
95			}
96
97			protected function getLoginUrl()
98			{
99			return $this->router->generate('login');
100			}
101			}
102

julienj / twity

FormAuthenticator::start() A last analyzed 2020-04-29 16:42 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

FormAuthenticator::start() A
last analyzed 2020-04-29 16:42 UTC