forked from deblan/gist
authentication done
This commit is contained in:
parent
51d736cb1a
commit
a6f20de8cf
|
|
@ -7,6 +7,7 @@ use Silex\Provider\SessionServiceProvider;
|
|||
use Gist\Security\AuthenticationProvider;
|
||||
use Gist\Security\AuthenticationListener;
|
||||
use Gist\Security\AuthenticationEntryPoint;
|
||||
use Symfony\Component\Security\Http\HttpUtils;
|
||||
|
||||
$app['enable_registration'] = true;
|
||||
$app['enable_login'] = true;
|
||||
|
|
@ -25,26 +26,22 @@ $app['user.provider'] = $app->share(function ($app) {
|
|||
$app->register(new SessionServiceProvider());
|
||||
|
||||
|
||||
$app['security.authentication_listener.factory.form_login'] = $app->protect(function ($name, $options) use ($app) {
|
||||
$app['security.authentication_provider.'.$name.'.form_login'] = $app->share(function ($app) {
|
||||
$app['security.authentication_listener.factory.form'] = $app->protect(function ($name, $options) use ($app) {
|
||||
$app['security.authentication_provider.'.$name.'.form'] = $app->share(function ($app) {
|
||||
return new AuthenticationProvider($app['user.provider']);
|
||||
});
|
||||
|
||||
$app['security.authentication_listener.'.$name.'.form_login'] = $app->share(function ($app) use ($name) {
|
||||
$app['security.authentication_listener.'.$name.'.form'] = $app->share(function ($app) use ($name) {
|
||||
return new AuthenticationListener(
|
||||
$app['security.token_storage'],
|
||||
$app['security.authentication_provider.'.$name.'.form_login']
|
||||
$app['security.authentication_provider.'.$name.'.form']
|
||||
);
|
||||
});
|
||||
|
||||
$app['security.authentication.entry_point.'.$name.'.form_login'] = $app->share(function ($app) use ($name) {
|
||||
return new AuthenticationEntryPoint($app['url_generator']);
|
||||
});
|
||||
|
||||
return [
|
||||
'security.authentication_provider.'.$name.'.form_login',
|
||||
'security.authentication_listener.'.$name.'.form_login',
|
||||
'security.authentication.entry_point.'.$name.'.form_login',
|
||||
'security.authentication_provider.'.$name.'.form',
|
||||
'security.authentication_listener.'.$name.'.form',
|
||||
null,
|
||||
'pre_auth'
|
||||
];
|
||||
});
|
||||
|
|
@ -54,15 +51,16 @@ $app->register(
|
|||
[
|
||||
'security.firewalls' => [
|
||||
'default' => [
|
||||
'pattern' => '^/[a-z]{2}/',
|
||||
'pattern' => '^/',
|
||||
'anonymous' => true,
|
||||
'http' => false,
|
||||
'form_login' => [
|
||||
'login_path' => '/login',
|
||||
'check_path' => '/login_check',
|
||||
'form' => [
|
||||
'login_path' => '_login',
|
||||
'check_path' => '_login_check',
|
||||
'always_use_default_target_path' => true,
|
||||
'default_target_path' => $app['url_generator']->generate('my'),
|
||||
],
|
||||
'logout' => [
|
||||
'logout_path' => '/logout'
|
||||
'path' => '/logout',
|
||||
],
|
||||
'users' => $app->share(function () use ($app) {
|
||||
return $app['user.provider'];
|
||||
|
|
@ -37,8 +37,8 @@ _login:
|
|||
_login_check:
|
||||
path: /login_check
|
||||
|
||||
_logout:
|
||||
path: /logout
|
||||
logout:
|
||||
path: /my/logout
|
||||
|
||||
my:
|
||||
path: /my
|
||||
|
|
|
|||
|
|
@ -94,20 +94,30 @@ class Controller
|
|||
{
|
||||
$app = $this->getApp();
|
||||
|
||||
$securityContext = $app['security'];
|
||||
$securityContext = $app['security.token_storage'];
|
||||
$securityToken = $securityContext->getToken();
|
||||
|
||||
if (!$securityToken) {
|
||||
return null;
|
||||
}
|
||||
|
||||
return $securityToken->getUser();
|
||||
$user = $securityToken->getUser();
|
||||
|
||||
if (!is_object($user)) {
|
||||
return null;
|
||||
}
|
||||
|
||||
return $user;
|
||||
}
|
||||
|
||||
public function render($template, array $params)
|
||||
public function render($template, array $params = null)
|
||||
{
|
||||
$app = $this->getApp();
|
||||
|
||||
if (null === $params) {
|
||||
$params = [];
|
||||
}
|
||||
|
||||
if (!isset($params['user'])) {
|
||||
$params['user'] = $this->getUser();
|
||||
}
|
||||
|
|
|
|||
|
|
@ -7,6 +7,7 @@ use Gist\Model\User;
|
|||
use Gist\Form\UserRegisterForm;
|
||||
use Gist\Form\UserLoginForm;
|
||||
use Symfony\Component\HttpFoundation\Response;
|
||||
use Symfony\Component\Security\Core\SecurityContext;
|
||||
|
||||
/**
|
||||
* Class LoginController
|
||||
|
|
|
|||
|
|
@ -13,5 +13,7 @@ class MyController extends Controller
|
|||
public function myAction(Request $request)
|
||||
{
|
||||
$app = $this->getApp();
|
||||
|
||||
return $this->render('My/my.html.twig');
|
||||
}
|
||||
}
|
||||
|
|
|
|||
5
src/Gist/Resources/views/My/my.html.twig
Normal file
5
src/Gist/Resources/views/My/my.html.twig
Normal file
|
|
@ -0,0 +1,5 @@
|
|||
{% extends 'base.html.twig' %}
|
||||
|
||||
{% block body %}
|
||||
foo
|
||||
{% endblock %}
|
||||
|
|
@ -37,14 +37,14 @@
|
|||
</a>
|
||||
</li>
|
||||
|
||||
{% if user != 'anon.' %}
|
||||
{% if user %}
|
||||
<li>
|
||||
<a href="{{ path('my') }}">
|
||||
{{ 'app.menu.my.my.title'|trans }}
|
||||
</a>
|
||||
</li>
|
||||
<li>
|
||||
<a href="{{ path('_logout') }}">
|
||||
<a href="{{ path('logout') }}">
|
||||
{{ 'app.menu.my.logout.title'|trans }}
|
||||
</a>
|
||||
</li>
|
||||
|
|
|
|||
|
|
@ -1,41 +0,0 @@
|
|||
<?php
|
||||
|
||||
namespace Gist\Security;
|
||||
|
||||
use Symfony\Component\HttpFoundation\Request;
|
||||
use Symfony\Component\Security\Core\Exception\AuthenticationException;
|
||||
use Symfony\Component\HttpFoundation\RedirectResponse;
|
||||
use Symfony\Component\Routing\Generator\UrlGenerator;
|
||||
use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
|
||||
|
||||
/**
|
||||
* Class AuthenticationEntryPoint
|
||||
* @author Simon Vieille <simon@deblan.fr>
|
||||
*/
|
||||
class AuthenticationEntryPoint implements AuthenticationEntryPointInterface
|
||||
{
|
||||
protected $urlGenerator;
|
||||
|
||||
public function __construct(UrlGenerator $urlGenerator)
|
||||
{
|
||||
$this->urlGenerator = $urlGenerator;
|
||||
}
|
||||
|
||||
public function start(Request $request, AuthenticationException $authException = null)
|
||||
{
|
||||
if ($request->isXmlHttpRequest()) {
|
||||
$response = new Response(json_encode([]), 401);
|
||||
$response->headers->set('Content-Type', 'application/json');
|
||||
|
||||
return $response;
|
||||
}
|
||||
|
||||
if ($authException->getMessage() !== 'Full authentication is required to access this resource.') {
|
||||
$params = ['error' => 1];
|
||||
} else {
|
||||
$params = [];
|
||||
}
|
||||
|
||||
return new RedirectResponse($this->urlGenerator->generate('_login', $params));
|
||||
}
|
||||
}
|
||||
|
|
@ -7,8 +7,10 @@ use Symfony\Component\HttpKernel\Event\GetResponseEvent;
|
|||
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
|
||||
use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
|
||||
use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
|
||||
use Symfony\Component\Security\Http\HttpUtils;
|
||||
use Symfony\Component\HttpFoundation\RedirectResponse;
|
||||
use Symfony\Component\Routing\Generator\UrlGenerator;
|
||||
use Symfony\Component\HttpFoundation\Request;
|
||||
|
||||
/**
|
||||
* Class AuthenticationListener
|
||||
|
|
|
|||
Loading…
Reference in a new issue