vendor/sonata-project/user-bundle/src/Action/LoginAction.php line 135

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. /*
  6.  * This file is part of the Sonata Project package.
  7.  *
  8.  * (c) Thomas Rabaix <thomas.rabaix@sonata-project.org>
  9.  *
  10.  * For the full copyright and license information, please view the LICENSE
  11.  * file that was distributed with this source code.
  12.  */
  14. namespace Sonata\UserBundle\Action;
  16. use Sonata\AdminBundle\Admin\Pool;
  17. use Sonata\AdminBundle\Templating\TemplateRegistryInterface;
  18. use Sonata\UserBundle\Model\UserInterface;
  19. use Symfony\Bundle\FrameworkBundle\Templating\EngineInterface;
  20. use Symfony\Component\HttpFoundation\RedirectResponse;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use Symfony\Component\HttpFoundation\Response;
  23. use Symfony\Component\HttpFoundation\Session\Session;
  24. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  25. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  26. use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
  27. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  28. use Symfony\Component\Security\Core\Security;
  29. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  31. final class LoginAction
  32. {
  33.     /**
  34.      * @var EngineInterface
  35.      */
  36.     private $templating;
  38.     /**
  39.      * @var UrlGeneratorInterface
  40.      */
  41.     private $urlGenerator;
  43.     /**
  44.      * @var AuthorizationCheckerInterface
  45.      */
  46.     private $authorizationChecker;
  48.     /**
  49.      * @var Pool
  50.      */
  51.     private $adminPool;
  53.     /**
  54.      * @var TemplateRegistryInterface
  55.      */
  56.     private $templateRegistry;
  58.     /**
  59.      * @var TokenStorageInterface
  60.      */
  61.     private $tokenStorage;
  63.     /**
  64.      * @var Session
  65.      */
  66.     private $session;
  68.     /**
  69.      * @var CsrfTokenManagerInterface
  70.      */
  71.     private $csrfTokenManager;
  73.     public function __construct(
  74.         EngineInterface $templating,
  75.         UrlGeneratorInterface $urlGenerator,
  76.         AuthorizationCheckerInterface $authorizationChecker,
  77.         Pool $adminPool,
  78.         TemplateRegistryInterface $templateRegistry,
  79.         TokenStorageInterface $tokenStorage,
  80.         Session $session
  81.     ) {
  82.         $this->templating $templating;
  83.         $this->urlGenerator $urlGenerator;
  84.         $this->authorizationChecker $authorizationChecker;
  85.         $this->adminPool $adminPool;
  86.         $this->templateRegistry $templateRegistry;
  87.         $this->tokenStorage $tokenStorage;
  88.         $this->session $session;
  89.     }
  91.     public function __invoke(Request $request): Response
  92.     {
  93.         if ($this->isAuthenticated()) {
  94.             $this->session->getFlashBag()->add('sonata_user_error''sonata_user_already_authenticated');
  96.             return new RedirectResponse($this->urlGenerator->generate('sonata_admin_dashboard'));
  97.         }
  99.         $session $request->getSession();
  101.         $authErrorKey Security::AUTHENTICATION_ERROR;
  103.         // get the error if any (works with forward and redirect -- see below)
  104.         if ($request->attributes->has($authErrorKey)) {
  105.             $error $request->attributes->get($authErrorKey);
  106.         } elseif (null !== $session && $session->has($authErrorKey)) {
  107.             $error $session->get($authErrorKey);
  108.             $session->remove($authErrorKey);
  109.         } else {
  110.             $error null;
  111.         }
  113.         if (!$error instanceof AuthenticationException) {
  114.             $error null// The value does not come from the security component.
  115.         }
  117.         if ($this->authorizationChecker->isGranted('ROLE_ADMIN')) {
  118.             $refererUri $request->server->get('HTTP_REFERER');
  119.             $url $refererUri && $refererUri !== $request->getUri() ? $refererUri $this->urlGenerator->generate('sonata_admin_dashboard');
  121.             return new RedirectResponse($url);
  122.         }
  124.         $csrfToken null;
  125.         if ($this->csrfTokenManager) {
  126.             $csrfToken $this->csrfTokenManager->getToken('authenticate')->getValue();
  127.         }
  129.         return $this->templating->renderResponse('@SonataUser/Admin/Security/login.html.twig', [
  130.             'admin_pool' => $this->adminPool,
  131.             'base_template' => $this->templateRegistry->getTemplate('layout'),
  132.             'csrf_token' => $csrfToken,
  133.             'error' => $error,
  134.             'last_username' => (null === $session) ? '' $session->get(Security::LAST_USERNAME),
  135.             'reset_route' => $this->urlGenerator->generate('sonata_user_admin_resetting_request'),
  136.         ]);
  137.     }
  139.     public function setCsrfTokenManager(CsrfTokenManagerInterface $csrfTokenManager): void
  140.     {
  141.         $this->csrfTokenManager $csrfTokenManager;
  142.     }
  144.     private function isAuthenticated(): bool
  145.     {
  146.         $token $this->tokenStorage->getToken();
  148.         if (!$token) {
  149.             return false;
  150.         }
  152.         $user $token->getUser();
  154.         return $user instanceof UserInterface;
  155.     }
  156. }