PageRenderTime 40ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/vendor/symfony/symfony/src/Symfony/Component/Security/Http/RememberMe/TokenBasedRememberMeServices.php

https://gitlab.com/mohamedchiheb.bida/workshopFOS
PHP | 126 lines | 70 code | 14 blank | 42 comment | 6 complexity | f8bcc527b4c4af46329a904c3e63db9b MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Symfony package.
    5. 

  5.  *
    6. 

  6.  * (c) Fabien Potencier <fabien@symfony.com>
    7. 

  7.  *
    8. 

  8.  * For the full copyright and license information, please view the LICENSE
    9. 

  9.  * file that was distributed with this source code.
    10. 

  10.  */
    11. 

  11. 

  12. namespace Symfony\Component\Security\Http\RememberMe;
    13. 

  13. 

  14. use Symfony\Component\HttpFoundation\Cookie;
    15. 

  15. use Symfony\Component\HttpFoundation\Request;
    16. 

  16. use Symfony\Component\HttpFoundation\Response;
    17. 

  17. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
    18. 

  18. use Symfony\Component\Security\Core\Exception\AuthenticationException;
    19. 

  19. use Symfony\Component\Security\Core\User\UserInterface;
    20. 

  20. use Symfony\Component\Security\Core\Util\StringUtils;
    21. 

  21. 

  22. /**
    23. 

  23.  * Concrete implementation of the RememberMeServicesInterface providing
    24. 

  24.  * remember-me capabilities without requiring a TokenProvider.
    25. 

  25.  *
    26. 

  26.  * @author Johannes M. Schmitt <schmittjoh@gmail.com>
    27. 

  27.  */
    28. 

  28. class TokenBasedRememberMeServices extends AbstractRememberMeServices
    29. 

  29. {
    30. 

  30.     /**
    31. 

  31.      * {@inheritdoc}
    32. 

  32.      */
    33. 

  33.     protected function processAutoLoginCookie(array $cookieParts, Request $request)
    34. 

  34.     {
    35. 

  35.         if (count($cookieParts) !== 4) {
    36. 

  36.             throw new AuthenticationException('The cookie is invalid.');
    37. 

  37.         }
    38. 

  38. 

  39.         list($class, $username, $expires, $hash) = $cookieParts;
    40. 

  40.         if (false === $username = base64_decode($username, true)) {
    41. 

  41.             throw new AuthenticationException('$username contains a character from outside the base64 alphabet.');
    42. 

  42.         }
    43. 

  43.         try {
    44. 

  44.             $user = $this->getUserProvider($class)->loadUserByUsername($username);
    45. 

  45.         } catch (\Exception $e) {
    46. 

  46.             if (!$e instanceof AuthenticationException) {
    47. 

  47.                 $e = new AuthenticationException($e->getMessage(), $e->getCode(), $e);
    48. 

  48.             }
    49. 

  49. 

  50.             throw $e;
    51. 

  51.         }
    52. 

  52. 

  53.         if (!$user instanceof UserInterface) {
    54. 

  54.             throw new \RuntimeException(sprintf('The UserProviderInterface implementation must return an instance of UserInterface, but returned "%s".', get_class($user)));
    55. 

  55.         }
    56. 

  56. 

  57.         if (true !== StringUtils::equals($this->generateCookieHash($class, $username, $expires, $user->getPassword()), $hash)) {
    58. 

  58.             throw new AuthenticationException('The cookie\'s hash is invalid.');
    59. 

  59.         }
    60. 

  60. 

  61.         if ($expires < time()) {
    62. 

  62.             throw new AuthenticationException('The cookie has expired.');
    63. 

  63.         }
    64. 

  64. 

  65.         return $user;
    66. 

  66.     }
    67. 

  67. 

  68.     /**
    69. 

  69.      * {@inheritdoc}
    70. 

  70.      */
    71. 

  71.     protected function onLoginSuccess(Request $request, Response $response, TokenInterface $token)
    72. 

  72.     {
    73. 

  73.         $user = $token->getUser();
    74. 

  74.         $expires = time() + $this->options['lifetime'];
    75. 

  75.         $value = $this->generateCookieValue(get_class($user), $user->getUsername(), $expires, $user->getPassword());
    76. 

  76. 

  77.         $response->headers->setCookie(
    78. 

  78.             new Cookie(
    79. 

  79.                 $this->options['name'],
    80. 

  80.                 $value,
    81. 

  81.                 $expires,
    82. 

  82.                 $this->options['path'],
    83. 

  83.                 $this->options['domain'],
    84. 

  84.                 $this->options['secure'],
    85. 

  85.                 $this->options['httponly']
    86. 

  86.             )
    87. 

  87.         );
    88. 

  88.     }
    89. 

  89. 

  90.     /**
    91. 

  91.      * Generates the cookie value.
    92. 

  92.      *
    93. 

  93.      * @param string $class
    94. 

  94.      * @param string $username The username
    95. 

  95.      * @param int    $expires  The Unix timestamp when the cookie expires
    96. 

  96.      * @param string $password The encoded password
    97. 

  97.      *
    98. 

  98.      * @return string
    99. 

  99.      */
    100. 

  100.     protected function generateCookieValue($class, $username, $expires, $password)
    101. 

  101.     {
    102. 

  102.         // $username is encoded because it might contain COOKIE_DELIMITER,
    103. 

  103.         // we assume other values don't
    104. 

  104.         return $this->encodeCookie(array(
    105. 

  105.             $class,
    106. 

  106.             base64_encode($username),
    107. 

  107.             $expires,
    108. 

  108.             $this->generateCookieHash($class, $username, $expires, $password),
    109. 

  109.         ));
    110. 

  110.     }
    111. 

  111. 

  112.     /**
    113. 

  113.      * Generates a hash for the cookie to ensure it is not being tempered with.
    114. 

  114.      *
    115. 

  115.      * @param string $class
    116. 

  116.      * @param string $username The username
    117. 

  117.      * @param int    $expires  The Unix timestamp when the cookie expires
    118. 

  118.      * @param string $password The encoded password
    119. 

  119.      *
    120. 

  120.      * @return string
    121. 

  121.      */
    122. 

  122.     protected function generateCookieHash($class, $username, $expires, $password)
    123. 

  123.     {
    124. 

  124.         return hash_hmac('sha256', $class.$username.$expires.$password, $this->getKey());
    125. 

  125.     }
    126. 

  126. }
    127. 

  127.