123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119 |
- <?php
- /*
- * This file is part of the Symfony package.
- *
- * (c) Fabien Potencier <fabien@symfony.com>
- *
- * For the full copyright and license information, please view the LICENSE
- * file that was distributed with this source code.
- */
- namespace Symfony\Component\Security\Core\Authentication;
- use Symfony\Component\Security\Core\Authentication\Provider\AuthenticationProviderInterface;
- use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
- use Symfony\Component\Security\Core\AuthenticationEvents;
- use Symfony\Component\Security\Core\Event\AuthenticationFailureEvent;
- use Symfony\Component\Security\Core\Event\AuthenticationSuccessEvent;
- use Symfony\Component\Security\Core\Exception\AccountStatusException;
- use Symfony\Component\Security\Core\Exception\AuthenticationException;
- use Symfony\Component\Security\Core\Exception\ProviderNotFoundException;
- use Symfony\Contracts\EventDispatcher\EventDispatcherInterface;
- // Help opcache.preload discover always-needed symbols
- class_exists(AuthenticationEvents::class);
- class_exists(AuthenticationFailureEvent::class);
- class_exists(AuthenticationSuccessEvent::class);
- /**
- * AuthenticationProviderManager uses a list of AuthenticationProviderInterface
- * instances to authenticate a Token.
- *
- * @author Fabien Potencier <fabien@symfony.com>
- * @author Johannes M. Schmitt <schmittjoh@gmail.com>
- */
- class AuthenticationProviderManager implements AuthenticationManagerInterface
- {
- private $providers;
- private $eraseCredentials;
- private $eventDispatcher;
- /**
- * @param iterable|AuthenticationProviderInterface[] $providers An iterable with AuthenticationProviderInterface instances as values
- * @param bool $eraseCredentials Whether to erase credentials after authentication or not
- *
- * @throws \InvalidArgumentException
- */
- public function __construct(iterable $providers, bool $eraseCredentials = true)
- {
- if (!$providers) {
- throw new \InvalidArgumentException('You must at least add one authentication provider.');
- }
- $this->providers = $providers;
- $this->eraseCredentials = $eraseCredentials;
- }
- public function setEventDispatcher(EventDispatcherInterface $dispatcher)
- {
- $this->eventDispatcher = $dispatcher;
- }
- /**
- * {@inheritdoc}
- */
- public function authenticate(TokenInterface $token)
- {
- $lastException = null;
- $result = null;
- foreach ($this->providers as $provider) {
- if (!$provider instanceof AuthenticationProviderInterface) {
- throw new \InvalidArgumentException(sprintf('Provider "%s" must implement the AuthenticationProviderInterface.', get_debug_type($provider)));
- }
- if (!$provider->supports($token)) {
- continue;
- }
- try {
- $result = $provider->authenticate($token);
- if (null !== $result) {
- break;
- }
- } catch (AccountStatusException $e) {
- $lastException = $e;
- break;
- } catch (AuthenticationException $e) {
- $lastException = $e;
- }
- }
- if (null !== $result) {
- if (true === $this->eraseCredentials) {
- $result->eraseCredentials();
- }
- if (null !== $this->eventDispatcher) {
- $this->eventDispatcher->dispatch(new AuthenticationSuccessEvent($result), AuthenticationEvents::AUTHENTICATION_SUCCESS);
- }
- return $result;
- }
- if (null === $lastException) {
- $lastException = new ProviderNotFoundException(sprintf('No Authentication Provider found for token of class "%s".', \get_class($token)));
- }
- if (null !== $this->eventDispatcher) {
- $this->eventDispatcher->dispatch(new AuthenticationFailureEvent($token, $lastException), AuthenticationEvents::AUTHENTICATION_FAILURE);
- }
- $lastException->setToken($token);
- throw $lastException;
- }
- }
|