vendor/symfony/security-http/EventListener/PasswordMigratingListener.php line 37

Open in your IDE?
  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\EventListener;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
  16. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  17. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;
  18. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\UserPassportInterface;
  20. use Symfony\Component\Security\Http\Event\LoginSuccessEvent;
  22. /**
  23.  * @author Wouter de Jong <wouter@wouterj.nl>
  24.  *
  25.  * @final
  26.  * @experimental in 5.2
  27.  */
  28. class PasswordMigratingListener implements EventSubscriberInterface
  29. {
  30.     private $encoderFactory;
  32.     public function __construct(EncoderFactoryInterface $encoderFactory)
  33.     {
  34.         $this->encoderFactory $encoderFactory;
  35.     }
  37.     public function onLoginSuccess(LoginSuccessEvent $event): void
  38.     {
  39.         $passport $event->getPassport();
  40.         if (!$passport instanceof UserPassportInterface || !$passport->hasBadge(PasswordUpgradeBadge::class)) {
  41.             return;
  42.         }
  44.         /** @var PasswordUpgradeBadge $badge */
  45.         $badge $passport->getBadge(PasswordUpgradeBadge::class);
  46.         $plaintextPassword $badge->getAndErasePlaintextPassword();
  48.         if ('' === $plaintextPassword) {
  49.             return;
  50.         }
  52.         $user $passport->getUser();
  53.         $passwordEncoder $this->encoderFactory->getEncoder($user);
  54.         if (!$passwordEncoder->needsRehash($user->getPassword())) {
  55.             return;
  56.         }
  58.         $passwordUpgrader $badge->getPasswordUpgrader();
  60.         if (null === $passwordUpgrader) {
  61.             if (!$passport->hasBadge(UserBadge::class)) {
  62.                 return;
  63.             }
  65.             /** @var UserBadge $userBadge */
  66.             $userBadge $passport->getBadge(UserBadge::class);
  67.             $userLoader $userBadge->getUserLoader();
  68.             if (\is_array($userLoader) && $userLoader[0] instanceof PasswordUpgraderInterface) {
  69.                 $passwordUpgrader $userLoader[0];
  70.             } else {
  71.                 return;
  72.             }
  73.         }
  75.         $passwordUpgrader->upgradePassword($user$passwordEncoder->encodePassword($plaintextPassword$user->getSalt()));
  76.     }
  78.     public static function getSubscribedEvents(): array
  79.     {
  80.         return [LoginSuccessEvent::class => 'onLoginSuccess'];
  81.     }
  82. }