vendor/symfony/security-http/EventListener/PasswordMigratingListener.php line 45

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\Security\Http\EventListener;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\PasswordHasher\Hasher\PasswordHasherFactoryInterface;
  16. use Symfony\Component\PasswordHasher\PasswordHasherInterface;
  17. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  18. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  21. use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
  22. use Symfony\Component\Security\Http\Event\LoginSuccessEvent;
  24. /**
  25. * @author Wouter de Jong <wouter@wouterj.nl>
  26. *
  27. * @final
  28. */
  29. class PasswordMigratingListener implements EventSubscriberInterface
  30. {
  31. private $hasherFactory;
  33. /**
  34. * @param PasswordHasherFactoryInterface $hasherFactory
  35. */
  36. public function __construct($hasherFactory)
  37. {
  38. if ($hasherFactory instanceof EncoderFactoryInterface) {
  39. trigger_deprecation('symfony/security-core', '5.3', 'Passing a "%s" instance to the "%s" constructor is deprecated, use "%s" instead.', EncoderFactoryInterface::class, __CLASS__, PasswordHasherFactoryInterface::class);
  40. }
  42. $this->hasherFactory = $hasherFactory;
  43. }
  45. public function onLoginSuccess(LoginSuccessEvent $event): void
  46. {
  47. $passport = $event->getPassport();
  48. if (!$passport instanceof UserPassportInterface || !$passport->hasBadge(PasswordUpgradeBadge::class)) {
  49. return;
  50. }
  52. /** @var PasswordUpgradeBadge $badge */
  53. $badge = $passport->getBadge(PasswordUpgradeBadge::class);
  54. $plaintextPassword = $badge->getAndErasePlaintextPassword();
  56. if ('' === $plaintextPassword) {
  57. return;
  58. }
  60. $user = $passport->getUser();
  61. if (null === $user->getPassword()) {
  62. return;
  63. }
  65. $passwordHasher = $this->hasherFactory instanceof EncoderFactoryInterface ? $this->hasherFactory->getEncoder($user) : $this->hasherFactory->getPasswordHasher($user);
  66. if (!$passwordHasher->needsRehash($user->getPassword())) {
  67. return;
  68. }
  70. $passwordUpgrader = $badge->getPasswordUpgrader();
  72. if (null === $passwordUpgrader) {
  73. if (!$passport->hasBadge(UserBadge::class)) {
  74. return;
  75. }
  77. /** @var UserBadge $userBadge */
  78. $userBadge = $passport->getBadge(UserBadge::class);
  79. $userLoader = $userBadge->getUserLoader();
  80. if (\is_array($userLoader) && $userLoader[0] instanceof PasswordUpgraderInterface) {
  81. $passwordUpgrader = $userLoader[0];
  82. } elseif (!$userLoader instanceof \Closure
  83. || !($passwordUpgrader = (new \ReflectionFunction($userLoader))->getClosureThis()) instanceof PasswordUpgraderInterface
  84. ) {
  85. return;
  86. }
  87. }
  89. $passwordUpgrader->upgradePassword($user, $passwordHasher instanceof PasswordHasherInterface ? $passwordHasher->hash($plaintextPassword, $user->getSalt()) : $passwordHasher->encodePassword($plaintextPassword, $user->getSalt()));
  90. }
  92. public static function getSubscribedEvents(): array
  93. {
  94. return [LoginSuccessEvent::class => 'onLoginSuccess'];
  95. }
  96. }