src/Security/LoginFormAuthenticator.php line 25

Open in your IDE?
  1. <?php
  3. namespace App\Security;
  5. use Symfony\Component\HttpFoundation\RedirectResponse;
  6. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  7. use Symfony\Component\HttpFoundation\Request;
  8. use Symfony\Component\HttpFoundation\Response;
  9. use Symfony\Component\HttpFoundation\JsonResponse;
  10. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  11. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  12. use Symfony\Component\Security\Core\Security;
  13. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  14. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  15. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\RememberMeBadge;
  16. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  19. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  20. use Doctrine\Persistence\ManagerRegistry;
  21. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  22. use App\Entity\Slave\User;
  23. use App\Service\CompanyService;
  25. class LoginFormAuthenticator extends AbstractLoginFormAuthenticator
  26. {
  27.     use TargetPathTrait;
  29.     public const LOGIN_CHECK_ROUTE 'login_check';
  30.     public const LOGIN_ROUTE 'login';
  31.     public const LOGIN_REDIRECT_ROUTE 'login_redirect';
  32.     public const ADMIN_ROUTE 'admin_index';
  33.     public const USER_ROUTE 'user_index';
  35.     private UrlGeneratorInterface $urlGenerator;
  36.     private ManagerRegistry $mr;
  37.     private ParameterBagInterface $params;
  39.     public function __construct(UrlGeneratorInterface $urlGeneratorManagerRegistry $managerRegistryParameterBagInterface $params)
  40.     {
  41.         $this->urlGenerator $urlGenerator;
  42.         $this->mr $managerRegistry;
  43.         $this->params $params;
  44.     }
  46.     public function supports(Request $request): bool
  47.     {
  48.         return self::LOGIN_CHECK_ROUTE === $request->attributes->get('_route') && $request->isMethod('POST');
  49.     }
  51.     public function authenticate(Request $request): Passport
  52.     {
  53.         $email $request->request->get('email''');
  54.         $code $request->request->get('code''');
  55.         if($code == null && isset($_COOKIE["eposm_company_code"]))
  56.             $code $_COOKIE["eposm_company_code"];
  58.         $request->getSession()->set('companyCode'$code);
  59.         $request->getSession()->set(Security::LAST_USERNAME$email);
  60.         if($email != "admin"){
  61.             if($code != null){
  62.                 $emMaster $this->mr->getManager('master');
  63.                 $company $emMaster->getRepository('App\Entity\Master\Company')->findOneByCode($code);
  64.                 setcookie("eposm_company_code"$codetime() + 1209600"/");
  65.                 $request->getSession()->set('companyId'$company->getId());
  66.                 $em CompanyService::getSlaveManagerByCompany($this->mr$this->params$company);
  67.                 $userBadge = new UserBadge($email);
  68.             }
  69.             else{
  70.                 $userBadge = new UserBadge($email, function() { return false; });
  71.                 forceLogout();
  72.                 return $this->urlGenerator->generate(self::LOGIN_REDIRECT_ROUTE);
  73.             }
  74.         }
  75.         else {
  76.             $userBadge = new UserBadge($email);
  77.         }
  78.         return new Passport(
  79.             $userBadge,
  80.             new PasswordCredentials($request->request->get('password''')),
  81.             [
  82.                 new CsrfTokenBadge('authenticate'$request->request->get('_csrf_token')),
  83.                 new RememberMeBadge(),
  84.             ]
  85.         );
  86.     }
  88.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  89.     {
  90.         if($token->getUser() instanceof User){
  91.             if($token->getUser()->getRole() == "ROLE_USER")
  92.                 return new RedirectResponse($this->urlGenerator->generate(self::USER_ROUTE));
  93.             else
  94.                 return new RedirectResponse($this->urlGenerator->generate(self::LOGIN_ROUTE, array('companyCode' => $request->getSession()->get('companyCode'))));
  95.         }
  96.         else{
  97.             if(in_array("ROLE_ADMIN"$token->getUser()->getRoles()))
  98.                 return new RedirectResponse($this->urlGenerator->generate(self::ADMIN_ROUTE));
  99.         }
  100.         return $this->urlGenerator->generate(self::LOGIN_ROUTE, array('companyCode' => $request->getSession()->get('companyCode')));
  101.     }
  103.     protected function getLoginUrl(Request $request): string
  104.     {
  105.         return $this->urlGenerator->generate(self::LOGIN_ROUTE, array('companyCode' => $request->getSession()->get('companyCode')));
  106.     }
  108.     protected function forceLogout(): void
  109.     {
  110.         $logoutEvent = new LogoutEvent($this->requestStack->getCurrentRequest(), $this->tokenStorage->getToken());
  111.         $this->eventDispatcher->dispatch($logoutEvent);
  112.         $this->tokenStorage->setToken(null);
  113.         $response = new Response();
  114.         $response->headers->clearCookie('REMEMBERME');
  115.         $response->send();
  116.     }
  117. }