welcome back to dyb-tech
This commit is contained in:
Daniel Guzman
+158
@@ -0,0 +1,158 @@
|
||||
<?php
|
||||
|
||||
namespace Lexik\Bundle\JWTAuthenticationBundle\Security\Authentication\Provider;
|
||||
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Event\JWTAuthenticatedEvent;
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Events;
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Exception\JWTDecodeFailureException;
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Security\Authentication\Token\JWTUserToken;
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Security\Authenticator\JWTAuthenticator;
|
||||
use Lexik\Bundle\JWTAuthenticationBundle\Services\JWTManagerInterface;
|
||||
use Symfony\Component\Security\Core\Authentication\Provider\AuthenticationProviderInterface;
|
||||
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
|
||||
use Symfony\Component\Security\Core\Exception\AuthenticationException;
|
||||
use Symfony\Component\Security\Core\User\UserInterface;
|
||||
use Symfony\Component\Security\Core\User\UserProviderInterface;
|
||||
use Symfony\Contracts\EventDispatcher\EventDispatcherInterface;
|
||||
|
||||
/**
|
||||
* JWTProvider.
|
||||
*
|
||||
* @author Nicolas Cabot <n.cabot@lexik.fr>
|
||||
*
|
||||
* @deprecated since 2.0, will be removed in 3.0. See
|
||||
* {@link JWTAuthenticator} instead
|
||||
*/
|
||||
class JWTProvider implements AuthenticationProviderInterface
|
||||
{
|
||||
/**
|
||||
* @var UserProviderInterface
|
||||
*/
|
||||
protected $userProvider;
|
||||
|
||||
/**
|
||||
* @var JWTManagerInterface
|
||||
*/
|
||||
protected $jwtManager;
|
||||
|
||||
/**
|
||||
* @var EventDispatcherInterface
|
||||
*/
|
||||
protected $dispatcher;
|
||||
|
||||
/**
|
||||
* @var string
|
||||
*/
|
||||
protected $userIdentityField;
|
||||
|
||||
/**
|
||||
* @var string
|
||||
*/
|
||||
private $userIdClaim;
|
||||
|
||||
/**
|
||||
* @param string $userIdClaim
|
||||
*/
|
||||
public function __construct(
|
||||
UserProviderInterface $userProvider,
|
||||
JWTManagerInterface $jwtManager,
|
||||
EventDispatcherInterface $dispatcher,
|
||||
$userIdClaim
|
||||
) {
|
||||
@trigger_error(sprintf('The "%s" class is deprecated since version 2.0 and will be removed in 3.0. See "%s" instead.', self::class, JWTTokenAuthenticator::class), E_USER_DEPRECATED);
|
||||
|
||||
$this->userProvider = $userProvider;
|
||||
$this->jwtManager = $jwtManager;
|
||||
$this->dispatcher = $dispatcher;
|
||||
$this->userIdentityField = 'username';
|
||||
$this->userIdClaim = $userIdClaim;
|
||||
}
|
||||
|
||||
/**
|
||||
* {@inheritdoc}
|
||||
*/
|
||||
public function authenticate(TokenInterface $token)
|
||||
{
|
||||
try {
|
||||
if (!$payload = $this->jwtManager->decode($token)) {
|
||||
throw $this->createAuthenticationException();
|
||||
}
|
||||
} catch (JWTDecodeFailureException $e) {
|
||||
throw $this->createAuthenticationException($e);
|
||||
}
|
||||
|
||||
$user = $this->getUserFromPayload($payload);
|
||||
|
||||
$authToken = new JWTUserToken($user->getRoles());
|
||||
$authToken->setUser($user);
|
||||
$authToken->setRawToken($token->getCredentials());
|
||||
|
||||
$event = new JWTAuthenticatedEvent($payload, $authToken);
|
||||
$this->dispatcher->dispatch($event, Events::JWT_AUTHENTICATED);
|
||||
|
||||
return $authToken;
|
||||
}
|
||||
|
||||
/**
|
||||
* Load user from payload, using username by default.
|
||||
* Override this to load by another property.
|
||||
*
|
||||
* @return UserInterface
|
||||
*/
|
||||
protected function getUserFromPayload(array $payload)
|
||||
{
|
||||
if (!isset($payload[$this->userIdClaim])) {
|
||||
throw $this->createAuthenticationException();
|
||||
}
|
||||
|
||||
if (method_exists($this->userProvider, 'loadUserByIdentifier')) {
|
||||
return $this->userProvider->loadUserByIdentifier($payload[$this->userIdClaim]);
|
||||
}
|
||||
|
||||
return $this->userProvider->loadUserByUsername($payload[$this->userIdClaim]);
|
||||
}
|
||||
|
||||
/**
|
||||
* {@inheritdoc}
|
||||
*/
|
||||
public function supports(TokenInterface $token)
|
||||
{
|
||||
return $token instanceof JWTUserToken;
|
||||
}
|
||||
|
||||
/**
|
||||
* @return string
|
||||
*/
|
||||
public function getUserIdentityField()
|
||||
{
|
||||
return $this->userIdentityField;
|
||||
}
|
||||
|
||||
/**
|
||||
* @param string $userIdentityField
|
||||
*/
|
||||
public function setUserIdentityField($userIdentityField)
|
||||
{
|
||||
$this->userIdentityField = $userIdentityField;
|
||||
}
|
||||
|
||||
/**
|
||||
* @return string
|
||||
*/
|
||||
public function getUserIdClaim()
|
||||
{
|
||||
return $this->userIdClaim;
|
||||
}
|
||||
|
||||
/**
|
||||
* @param JWTDecodeFailureException $previous
|
||||
*
|
||||
* @return AuthenticationException
|
||||
*/
|
||||
private function createAuthenticationException(JWTDecodeFailureException $previous = null)
|
||||
{
|
||||
$message = (null === $previous) ? 'Invalid JWT Token' : $previous->getMessage();
|
||||
|
||||
return new AuthenticationException($message, 401, $previous);
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user