vendor/symfony/security-http/EventListener/CheckCredentialsListener.php line 40

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\EventListener;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  16. use Symfony\Component\Security\Core\Exception\BadCredentialsException;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\CustomCredentials;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
  20. use Symfony\Component\Security\Http\Event\CheckPassportEvent;
  22. /**
  23.  * This listeners uses the interfaces of authenticators to
  24.  * determine how to check credentials.
  25.  *
  26.  * @author Wouter de Jong <wouter@driveamber.com>
  27.  *
  28.  * @final
  29.  * @experimental in 5.1
  30.  */
  31. class CheckCredentialsListener implements EventSubscriberInterface
  32. {
  33.     private $encoderFactory;
  35.     public function __construct(EncoderFactoryInterface $encoderFactory)
  36.     {
  37.         $this->encoderFactory $encoderFactory;
  38.     }
  40.     public function checkPassport(CheckPassportEvent $event): void
  41.     {
  42.         $passport $event->getPassport();
  43.         if ($passport instanceof UserPassportInterface && $passport->hasBadge(PasswordCredentials::class)) {
  44.             // Use the password encoder to validate the credentials
  45.             $user $passport->getUser();
  46.             /** @var PasswordCredentials $badge */
  47.             $badge $passport->getBadge(PasswordCredentials::class);
  49.             if ($badge->isResolved()) {
  50.                 return;
  51.             }
  53.             $presentedPassword $badge->getPassword();
  54.             if ('' === $presentedPassword) {
  55.                 throw new BadCredentialsException('The presented password cannot be empty.');
  56.             }
  58.             if (null === $user->getPassword()) {
  59.                 throw new BadCredentialsException('The presented password is invalid.');
  60.             }
  62.             if (!$this->encoderFactory->getEncoder($user)->isPasswordValid($user->getPassword(), $presentedPassword$user->getSalt())) {
  63.                 throw new BadCredentialsException('The presented password is invalid.');
  64.             }
  66.             $badge->markResolved();
  68.             return;
  69.         }
  71.         if ($passport->hasBadge(CustomCredentials::class)) {
  72.             /** @var CustomCredentials $badge */
  73.             $badge $passport->getBadge(CustomCredentials::class);
  74.             if ($badge->isResolved()) {
  75.                 return;
  76.             }
  78.             $badge->executeCustomChecker($passport->getUser());
  80.             return;
  81.         }
  82.     }
  84.     public static function getSubscribedEvents(): array
  85.     {
  86.         return [CheckPassportEvent::class => 'checkPassport'];
  87.     }
  88. }