src/Security/Authenticator.php line 38

  1. <?php
  4. namespace App\Security;
  7. use App\Controller\ServiziController;
  8. use App\Entity\Carrello;
  9. use App\Entity\User;
  10. use App\Model\Carrello\FunzioniCarrello;
  11. use Doctrine\ORM\EntityManagerInterface;
  12. use Symfony\Component\HttpFoundation\RedirectResponse;
  13. use Symfony\Component\HttpFoundation\Request;
  14. use Symfony\Component\HttpFoundation\Response;
  15. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  16. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  17. use Symfony\Component\Routing\RouterInterface;
  18. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  19. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  20. use Symfony\Component\Security\Core\Exception\CustomUserMessageAuthenticationException;
  21. use Symfony\Component\Security\Core\Exception\InvalidCsrfTokenException;
  22. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  23. use Symfony\Component\Security\Core\User\UserInterface;
  24. use Symfony\Component\Security\Core\User\UserProviderInterface;
  25. use Symfony\Component\Security\Csrf\CsrfToken;
  26. use Symfony\Component\Security\Csrf\CsrfTokenManagerInterface;
  27. use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
  28. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
  29. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  30. use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
  31. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  32. use Symfony\Component\Security\Http\Util\TargetPathTrait;
  34. /**
  35.  * Class Authenticator
  36.  * @package App\Security
  37.  */
  38. class Authenticator extends AbstractLoginFormAuthenticator
  39. {
  40.     use TargetPathTrait;
  42.     private $entityManager;
  43.     private $urlGenerator;
  44.     private $csrfTokenManager;
  45.     private $passwordHasher;
  46.     private $logger;
  47.     private $router;
  48.     private $tokenStorage;
  49.     private $servizi;
  51.     public function __construct(EntityManagerInterface $entityManagerUrlGeneratorInterface $urlGeneratorCsrfTokenManagerInterface $csrfTokenManagerUserPasswordHasherInterface $passwordHasherRouterInterface $routerTokenStorageInterface $tokenStorageServiziController $servizi)
  52.     {
  53.         $this->entityManager $entityManager;
  54.         $this->urlGenerator $urlGenerator;
  55.         $this->csrfTokenManager $csrfTokenManager;
  56.         $this->passwordHasher $passwordHasher;
  57.         $this->router $router;
  58.         $this->tokenStorage $tokenStorage;
  59.         $this->servizi $servizi;
  60.     }
  62.     public function supports(Request $request): bool
  63.     {
  64.         return 'home_login' === $request->attributes->get('_route')
  65.             && $request->isMethod('POST');
  66.     }
  68.     /**
  69.      * Used to upgrade (rehash) the user's password automatically over time.
  70.      */
  71.     public function getPassword($credentials): ?string
  72.     {
  73.         return $credentials['password'];
  74.     }
  76.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  77.     {
  78.         /*
  79.             $url = $this->router->generate('accedi_autenticazione_2_fattori');
  80.             return new RedirectResponse($url);
  81.         */
  82.         $this->servizi->logger->emergency('onAuthenticationSuccess');
  83.         /** @var User $userLoggato */
  84.         $userLoggato $token->getUser();
  85.         if($userLoggato) {
  86.             //Verifico se c'era un carrello memorizzato e lo associo all'utente che ha effettuato il login
  87.             if($userLoggato->getTwofactorSharedSecret() && $userLoggato->getTwofactorSharedSecret() != '' && $userLoggato->getTwofactorSharedSecret() != null){
  88.                 $request->getSession()->set("2factRequested"1);
  89.                 $request->getSession()->save();
  90.             }else{
  91.                 $em $this->servizi->doctrine->getManager();
  92.                 $userLoggato->setLastLogin(new \Datetime());
  93.                 $em->persist($userLoggato);
  94.                 $em->flush();
  95.             }
  97.             $secret '';
  98.             if ($this->tokenStorage->getToken()->hasAttribute('secret'))
  99.                 $secret $this->tokenStorage->getToken()->getAttribute('secret');
  100.             if ($secret != '') {
  101.                 $carrello $this->servizi->doctrine->getRepository(Carrello::class)->findOneBy(array('secret' => $secret));
  102.                 $funzioniCarrello = new FunzioniCarrello($this->servizi->doctrine$this->servizi->impostazioni$this->servizi);
  103.                 $funzioniCarrello->SpostaERicalcolaCarrello($carrello$userLoggatonull$userLoggato->getAgente() ? $userLoggato null);
  104.             }
  105.         }
  106.         return new RedirectResponse($this->router->generate('homepage'));
  107.         /*if ($targetPath = $this->getTargetPath($request->getSession(), $providerKey)) {
  108.             return new RedirectResponse($targetPath);
  109.         }
  110.         return new RedirectResponse($this->router->generate('homepage'));*/
  111.     }
  113.     protected function getLoginUrl(Request $request): string
  114.     {
  115.         return $this->urlGenerator->generate('home_login');
  116.     }
  118.     public function authenticate(Request $request): Passport
  119.     {
  120.         $password $request->request->get('password');
  121.         $username $request->request->get('username');
  122.         $csrfToken $request->request->get('csrf_token');
  124.         // ... validate no parameter is empty
  126.         return new Passport(
  127.             new UserBadge($username),
  128.             new PasswordCredentials($password),
  129.             [new CsrfTokenBadge('authenticate'$csrfToken)]
  130.         );
  131.     }
  132. }