NotificationsYou must be signed in to change notification settings
Fork9.7k
Star30.8k

Commit9ea32c4

committed

Also use authentication failure/success handlers in FormLoginAuthenticator

1 parent0fe5083 commit9ea32c4Copy full SHA for 9ea32c4

File tree

6 files changed

+36

-49

lines changed

src/Symfony
- Bundle/SecurityBundle
  - DependencyInjection/Security/Factory
    - AbstractFactory.php
    - FormLoginFactory.php
  - Resources/config
    - security_authenticator.xml
- Component/Security/Http
  - Authenticator
    - AbstractLoginFormAuthenticator.php
    - FormLoginAuthenticator.php
  - Tests/Authenticator
    - FormLoginAuthenticatorTest.php

6 files changed

+36

-49

lines changed

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AbstractFactory.php‎`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,7 @@ abstract class AbstractFactory implements SecurityFactoryInterface`
`30`	`30`	`'check_path' =>'/login_check',`
`31`	`31`	`'use_forward' =>false,`
`32`	`32`	`'require_previous_session' =>false,`
	`33`	`+'login_path' =>'/login',`
`33`	`34`	`];`
`34`	`35`
`35`	`36`	`protected$defaultSuccessHandlerOptions = [`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/FormLoginFactory.php‎`

Lines changed: 4 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -100,12 +100,13 @@ public function createEntryPoint(ContainerBuilder $container, string $id, array`
`100`	`100`	`publicfunctioncreateAuthenticator(ContainerBuilder$container,string$id,array$config,string$userProviderId):string`
`101`	`101`	`{`
`102`	`102`	`$authenticatorId ='security.authenticator.form_login.'.$id;`
`103`		`-$defaultOptions =array_merge($this->defaultSuccessHandlerOptions,$this->options);`
`104`		`-$options =array_merge($defaultOptions,array_intersect_key($config,$defaultOptions));`
	`103`	`+$options =array_intersect_key($config,$this->options);`
`105`	`104`	`$container`
`106`	`105`	`->setDefinition($authenticatorId,newChildDefinition('security.authenticator.form_login'))`
`107`	`106`	`->replaceArgument(1,newReference($userProviderId))`
`108`		`- ->replaceArgument(2,$options);`
	`107`	`+ ->replaceArgument(2,newReference($this->createAuthenticationSuccessHandler($container,$id,$config)))`
	`108`	`+ ->replaceArgument(3,newReference($this->createAuthenticationFailureHandler($container,$id,$config)))`
	`109`	`+ ->replaceArgument(4,$options);`
`109`	`110`
`110`	`111`	`return$authenticatorId;`
`111`	`112`	`}`

`‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_authenticator.xml‎`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -95,6 +95,8 @@`
`95`	`95`	`abstract="true">`
`96`	`96`	`<argumenttype="service"id="security.http_utils" />`
`97`	`97`	`<argumenttype="abstract">user provider</argument>`
	`98`	`+ <argumenttype="abstract">authentication success handler</argument>`
	`99`	`+ <argumenttype="abstract">authentication failure handler</argument>`
`98`	`100`	`<argumenttype="abstract">options</argument>`
`99`	`101`	`</service>`
`100`	`102`

`‎src/Symfony/Component/Security/Http/Authenticator/AbstractLoginFormAuthenticator.php‎`

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -30,7 +30,7 @@ abstract class AbstractLoginFormAuthenticator extends AbstractAuthenticator impl`
`30`	`30`	`/**`
`31`	`31`	`* Return the URL to the login page.`
`32`	`32`	`*/`
`33`		`-abstractprotectedfunctiongetLoginUrl():string;`
	`33`	`+abstractprotectedfunctiongetLoginUrl(Request$request):string;`
`34`	`34`
`35`	`35`	`/**`
`36`	`36`	`* Override to change what happens after a bad username/password is submitted.`
`@@ -41,7 +41,7 @@ public function onAuthenticationFailure(Request $request, AuthenticationExceptio`
`41`	`41`	`$request->getSession()->set(Security::AUTHENTICATION_ERROR,$exception);`
`42`	`42`	`}`
`43`	`43`
`44`		`-$url =$this->getLoginUrl();`
	`44`	`+$url =$this->getLoginUrl($request);`
`45`	`45`
`46`	`46`	`returnnewRedirectResponse($url);`
`47`	`47`	`}`
`@@ -52,7 +52,7 @@ public function onAuthenticationFailure(Request $request, AuthenticationExceptio`
`52`	`52`	`*/`
`53`	`53`	`publicfunctionstart(Request$request,AuthenticationException$authException =null):Response`
`54`	`54`	`{`
`55`		`-$url =$this->getLoginUrl();`
	`55`	`+$url =$this->getLoginUrl($request);`
`56`	`56`
`57`	`57`	`returnnewRedirectResponse($url);`
`58`	`58`	`}`

`‎src/Symfony/Component/Security/Http/Authenticator/FormLoginAuthenticator.php‎`

Lines changed: 19 additions & 42 deletions

Original file line number	Diff line number	Diff line change
`@@ -16,13 +16,15 @@`
`16`	`16`	`useSymfony\Component\HttpKernel\Exception\BadRequestHttpException;`
`17`	`17`	`useSymfony\Component\Security\Core\Authentication\Token\TokenInterface;`
`18`	`18`	`useSymfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;`
	`19`	`+useSymfony\Component\Security\Core\Exception\AuthenticationException;`
`19`	`20`	`useSymfony\Component\Security\Core\Exception\BadCredentialsException;`
`20`	`21`	`useSymfony\Component\Security\Core\Security;`
`21`	`22`	`useSymfony\Component\Security\Core\User\UserInterface;`
`22`	`23`	`useSymfony\Component\Security\Core\User\UserProviderInterface;`
	`24`	`+useSymfony\Component\Security\Http\Authentication\AuthenticationFailureHandlerInterface;`
	`25`	`+useSymfony\Component\Security\Http\Authentication\AuthenticationSuccessHandlerInterface;`
`23`	`26`	`useSymfony\Component\Security\Http\HttpUtils;`
`24`	`27`	`useSymfony\Component\Security\Http\ParameterBagUtils;`
`25`		`-useSymfony\Component\Security\Http\Util\TargetPathTrait;`
`26`	`28`
`27`	`29`	`/**`
`28`	`30`	`* @author Wouter de Jong <wouter@wouterj.nl>`
`@@ -33,34 +35,32 @@`
`33`	`35`	`*/`
`34`	`36`	`class FormLoginAuthenticatorextends AbstractLoginFormAuthenticatorimplements PasswordAuthenticatedInterface, CsrfProtectedAuthenticatorInterface`
`35`	`37`	`{`
`36`		`-use TargetPathTrait;`
`37`		`-`
`38`		`-private$options;`
`39`	`38`	`private$httpUtils;`
`40`	`39`	`private$userProvider;`
	`40`	`+private$successHandler;`
	`41`	`+private$failureHandler;`
	`42`	`+private$options;`
`41`	`43`
`42`		`-publicfunction__construct(HttpUtils$httpUtils,UserProviderInterface$userProvider,array$options)`
	`44`	`+publicfunction__construct(HttpUtils$httpUtils,UserProviderInterface$userProvider,AuthenticationSuccessHandlerInterface$successHandler,AuthenticationFailureHandlerInterface$failureHandler,array$options)`
`43`	`45`	`{`
`44`	`46`	`$this->httpUtils =$httpUtils;`
	`47`	`+$this->userProvider =$userProvider;`
	`48`	`+$this->successHandler =$successHandler;`
	`49`	`+$this->failureHandler =$failureHandler;`
`45`	`50`	`$this->options =array_merge([`
`46`	`51`	`'username_parameter' =>'_username',`
`47`	`52`	`'password_parameter' =>'_password',`
`48`		`-'csrf_parameter' =>'_csrf_token',`
`49`		`-'csrf_token_id' =>'authenticate',`
	`53`	`+'check_path' =>'/login_check',`
`50`	`54`	`'post_only' =>true,`
`51`	`55`
`52`		`-'always_use_default_target_path' =>false,`
`53`		`-'default_target_path' =>'/',`
`54`		`-'login_path' =>'/login',`
`55`		`-'target_path_parameter' =>'_target_path',`
`56`		`-'use_referer' =>false,`
	`56`	`+'csrf_parameter' =>'_csrf_token',`
	`57`	`+'csrf_token_id' =>'authenticate',`
`57`	`58`	`],$options);`
`58`		`-$this->userProvider =$userProvider;`
`59`	`59`	`}`
`60`	`60`
`61`		`-protectedfunctiongetLoginUrl():string`
	`61`	`+protectedfunctiongetLoginUrl(Request$request):string`
`62`	`62`	`{`
`63`		`-return$this->options['login_path'];`
	`63`	`+return$this->httpUtils->generateUri($request,$this->options['login_path']);`
`64`	`64`	`}`
`65`	`65`
`66`	`66`	`publicfunctionsupports(Request$request):bool`
`@@ -122,36 +122,13 @@ public function createAuthenticatedToken(UserInterface $user, $providerKey): Tok`
`122`	`122`	`returnnewUsernamePasswordToken($user,null,$providerKey,$user->getRoles());`
`123`	`123`	`}`
`124`	`124`
`125`		`-publicfunctiononAuthenticationSuccess(Request$request,TokenInterface$token,string$providerKey):Response`
	`125`	`+publicfunctiononAuthenticationSuccess(Request$request,TokenInterface$token,string$providerKey):?Response`
`126`	`126`	`{`
`127`		`-return$this->httpUtils->createRedirectResponse($request,$this->determineTargetUrl($request,$providerKey));`
	`127`	`+return$this->successHandler->onAuthenticationSuccess($request,$token);`
`128`	`128`	`}`
`129`	`129`
`130`		`-privatefunctiondetermineTargetUrl(Request$request,string$providerKey)`
	`130`	`+publicfunctiononAuthenticationFailure(Request$request,AuthenticationException$exception):Response`
`131`	`131`	`{`
`132`		`-if ($this->options['always_use_default_target_path']) {`
`133`		`-return$this->options['default_target_path'];`
`134`		`- }`
`135`		`-`
`136`		`-if ($targetUrl = ParameterBagUtils::getRequestParameterValue($request,$this->options['target_path_parameter'])) {`
`137`		`-return$targetUrl;`
`138`		`- }`
`139`		`-`
`140`		`-if ($targetUrl =$this->getTargetPath($request->getSession(),$providerKey)) {`
`141`		`-$this->removeTargetPath($request->getSession(),$providerKey);`
`142`		`-`
`143`		`-return$targetUrl;`
`144`		`- }`
`145`		`-`
`146`		`-if ($this->options['use_referer'] &&$targetUrl =$request->headers->get('Referer')) {`
`147`		`-if (false !==$pos =strpos($targetUrl,'?')) {`
`148`		`-$targetUrl =substr($targetUrl,0,$pos);`
`149`		`- }`
`150`		`-if ($targetUrl &&$targetUrl !==$this->httpUtils->generateUri($request,$this->options['login_path'])) {`
`151`		`-return$targetUrl;`
`152`		`- }`
`153`		`- }`
`154`		`-`
`155`		`-return$this->options['default_target_path'];`
	`132`	`+return$this->failureHandler->onAuthenticationFailure($request,$exception);`
`156`	`133`	`}`
`157`	`134`	`}`

`‎src/Symfony/Component/Security/Http/Tests/Authenticator/FormLoginAuthenticatorTest.php‎`

Lines changed: 7 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -17,17 +17,23 @@`
`17`	`17`	`useSymfony\Component\Security\Core\Exception\BadCredentialsException;`
`18`	`18`	`useSymfony\Component\Security\Core\Security;`
`19`	`19`	`useSymfony\Component\Security\Core\User\UserProviderInterface;`
	`20`	`+useSymfony\Component\Security\Http\Authentication\AuthenticationFailureHandlerInterface;`
	`21`	`+useSymfony\Component\Security\Http\Authentication\AuthenticationSuccessHandlerInterface;`
`20`	`22`	`useSymfony\Component\Security\Http\Authenticator\FormLoginAuthenticator;`
`21`	`23`	`useSymfony\Component\Security\Http\HttpUtils;`
`22`	`24`
`23`	`25`	`class FormLoginAuthenticatorTestextends TestCase`
`24`	`26`	`{`
`25`	`27`	`private$userProvider;`
	`28`	`+private$successHandler;`
	`29`	`+private$failureHandler;`
`26`	`30`	`private$authenticator;`
`27`	`31`
`28`	`32`	`protectedfunctionsetUp():void`
`29`	`33`	`{`
`30`	`34`	`$this->userProvider =$this->createMock(UserProviderInterface::class);`
	`35`	`+$this->successHandler =$this->createMock(AuthenticationSuccessHandlerInterface::class);`
	`36`	`+$this->failureHandler =$this->createMock(AuthenticationFailureHandlerInterface::class);`
`31`	`37`	`}`
`32`	`38`
`33`	`39`	`/**`
`@@ -123,7 +129,7 @@ public function postOnlyDataProvider()`
`123`	`129`
`124`	`130`	`privatefunctionsetUpAuthenticator(array$options = [])`
`125`	`131`	`{`
`126`		`-$this->authenticator =newFormLoginAuthenticator(newHttpUtils(),$this->userProvider,$options);`
	`132`	`+$this->authenticator =newFormLoginAuthenticator(newHttpUtils(),$this->userProvider,$this->successHandler,$this->failureHandler,$options);`
`127`	`133`	`}`
`128`	`134`
`129`	`135`	`privatefunctioncreateSession()`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit9ea32c4

File tree

6 files changed

6 files changed

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/AbstractFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/DependencyInjection/Security/Factory/FormLoginFactory.php‎`

`‎src/Symfony/Bundle/SecurityBundle/Resources/config/security_authenticator.xml‎`

`‎src/Symfony/Component/Security/Http/Authenticator/AbstractLoginFormAuthenticator.php‎`

`‎src/Symfony/Component/Security/Http/Authenticator/FormLoginAuthenticator.php‎`

`‎src/Symfony/Component/Security/Http/Tests/Authenticator/FormLoginAuthenticatorTest.php‎`

0 commit comments