Symfony Profiler

<?php
namespace App\Security;
use Symfony\Component\HttpFoundation\RedirectResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Security;
use Symfony\Component\HttpFoundation\JsonResponse;
use Symfony\Component\Security\Http\Authenticator\AbstractLoginFormAuthenticator;
use Symfony\Component\Security\Http\Authenticator\Passport\Credentials\PasswordCredentials;
use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
use Symfony\Component\Security\Http\Authenticator\Passport\Badge\CsrfTokenBadge;
use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
use Symfony\Component\Security\Http\Util\TargetPathTrait;
use Doctrine\ORM\EntityManagerInterface;
use App\Entity\User;
use Symfony\Component\HttpFoundation\Cookie;
use Symfony\Component\Security\Core\Exception\AuthenticationException;
class LoginFormAuthenticator extends AbstractLoginFormAuthenticator
{
use TargetPathTrait;
public const LOGIN_ROUTE = 'app_login';
private UrlGeneratorInterface $urlGenerator;
public function __construct(UrlGeneratorInterface $urlGenerator, EntityManagerInterface $entityManager)
{
$this->urlGenerator = $urlGenerator;
$this->entityManager = $entityManager;
}
public function authenticate(Request $request): PassportInterface
{
$email = $request->request->get('email', '');
$userRepository = $this->entityManager->getRepository(User::class);
$user = $userRepository->findOneBy(['email' => $email]);
if (!$user || !$user->getIsActive()=== 0 ) {
throw new AuthenticationException('User account is inactive.');
}
$request->getSession()->set(Security::LAST_USERNAME, $email);
return new Passport(
new UserBadge($email),
new PasswordCredentials($request->request->get('password', '')),
[
new CsrfTokenBadge('authenticate', $request->get('_csrf_token')),
]
);
}
public function onAuthenticationSuccess(Request $request, TokenInterface $token, string $firewallName): ?Response
{
$email = $request->request->get('email', '');
$userRepository = $this->entityManager->getRepository(User::class);
$user = $userRepository->findOneBy(['email' => $email]);
if($user !== null)
$user->setCount(0);
$this->entityManager->flush();
if ($request->isXmlHttpRequest()) {
return new JsonResponse(["OK" => "Identification réussie"]);
}
if ($targetPath = $this->getTargetPath($request->getSession(), $firewallName)) {
return new RedirectResponse($targetPath);
}
$referer = $request->headers->get('referer');
$referer = str_replace('register', '', $referer);
return new RedirectResponse($referer);
}
public function onAuthenticationFailure(Request $request, AuthenticationException $exception): Response
{
$email = $request->request->get('email', '');
$userRepository = $this->entityManager->getRepository(User::class);
$user = $userRepository->findOneBy(['email' => $email]);
if (!$user) {
return parent::onAuthenticationFailure($request, $exception);
}
$count = $user->getCount() + 1;
$user->setCount($count);
if ($count > 8 && $user->getIsActive()) {
$user->setIsActive(false);
$user->setCount(0);
}
$this->entityManager->flush();
$response = parent::onAuthenticationFailure($request, $exception);
return $response;
}
public function supports(Request $request): bool
{
return $request->attributes->get('_route') === self::LOGIN_ROUTE && $request->isMethod('POST');
}
protected function getLoginUrl(Request $request): string
{
return $this->urlGenerator->generate(self::LOGIN_ROUTE);
}
}

src/Security/LoginFormAuthenticator.php line 39