[Security] Move default authentication failure handling strategy to seperate class [Security] Update configuration for changes regarding default failure handler [Security] Fixes + add AbstractFactory test for failure handler

author: Alexander <iam.asm89@gmail.com> 2012-06-20 08:50:59 +0200
committer: Alexander <iam.asm89@gmail.com> 2012-07-08 19:59:10 +0200
commit: 2396695756f94bb70b6dd8f097611bd35ef0eb80 (patch)
tree: 7affc8cac1d0338fb1b5cbe609851cfd4dff9020 /Http/Authentication
parent: 7004925db73aaedefcbb58c92d8be68a05926ddd (diff)
download: symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.zip
symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.tar.gz
symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.tar.bz2
2 files changed, 111 insertions, 0 deletions
diff --git a/Http/Authentication/DefaultAuthenticationFailureHandler.php b/Http/Authentication/DefaultAuthenticationFailureHandler.php
new file mode 100644
index 0000000..71a0057
--- /dev/null
+++ b/Http/Authentication/DefaultAuthenticationFailureHandler.php
@@ -0,0 +1,100 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Component\Security\Http\Authentication;
+
+use Symfony\Component\HttpFoundation\Request;
+use Symfony\Component\HttpKernel\HttpKernelInterface;
+use Symfony\Component\HttpKernel\Log\LoggerInterface;
+use Symfony\Component\Security\Core\Exception\AuthenticationException;
+use Symfony\Component\Security\Core\SecurityContextInterface;
+use Symfony\Component\Security\Http\HttpUtils;
+
+/**
+ * Class with the default authentication failure handling logic.
+ *
+ * Can be optionally be extended from by the developer to alter the behaviour
+ * while keeping the default behaviour.
+ *
+ * @author Alexander <iam.asm89@gmail.com>
+ */
+class DefaultAuthenticationFailureHandler implements AuthenticationFailureHandlerInterface
+{
+    /**
+     * @var HttpKernel
+     */
+    private $httpKernel;
+
+    /**
+     * @var HttpUtils
+     */
+    protected $httpUtils;
+
+    /**
+     * @var LoggerInterface
+     */
+    private $logger;
+
+    /**
+     * @var array
+     */
+    protected $options;
+
+    /**
+     * Constructor.
+     *
+     * @param HttpKernelInterface $httpKernel Kernel
+     * @param HttpUtils           $httpUtils  HttpUtils
+     * @param array               $options    Options for processing a successful authentication attempt.
+     * @param LoggerInterface     $logger     Optional logger
+     */
+    public function __construct(HttpKernelInterface $httpKernel, HttpUtils $httpUtils, array $options, LoggerInterface $logger = null)
+    {
+        $this->httpKernel = $httpKernel;
+        $this->httpUtils  = $httpUtils;
+        $this->logger     = $logger;
+
+        $this->options = array_merge(array(
+            'failure_path'                   => null,
+            'failure_forward'                => false,
+            'login_path'                     => '/login',
+        ), $options);
+    }
+
+    /**
+     * {@inheritDoc}
+     */
+    public function onAuthenticationFailure(Request $request, AuthenticationException $exception)
+    {
+        if (null === $this->options['failure_path']) {
+            $this->options['failure_path'] = $this->options['login_path'];
+        }
+
+        if ($this->options['failure_forward']) {
+            if (null !== $this->logger) {
+                $this->logger->debug(sprintf('Forwarding to %s', $this->options['failure_path']));
+            }
+
+            $subRequest = $this->httpUtils->createRequest($request, $this->options['failure_path']);
+            $subRequest->attributes->set(SecurityContextInterface::AUTHENTICATION_ERROR, $exception);
+
+            return $this->httpKernel->handle($subRequest, HttpKernelInterface::SUB_REQUEST);
+        }
+
+        if (null !== $this->logger) {
+            $this->logger->debug(sprintf('Redirecting to %s', $this->options['failure_path']));
+        }
+
+        $request->getSession()->set(SecurityContextInterface::AUTHENTICATION_ERROR, $exception);
+
+        return $this->httpUtils->createRedirectResponse($request, $this->options['failure_path']);
+    }
+}
diff --git a/Http/Authentication/DefaultAuthenticationSuccessHandler.php b/Http/Authentication/DefaultAuthenticationSuccessHandler.php
index 5d414c6..8139786 100644
--- a/Http/Authentication/DefaultAuthenticationSuccessHandler.php
+++ b/Http/Authentication/DefaultAuthenticationSuccessHandler.php
@@ -26,6 +26,16 @@ use Symfony\Component\Security\Http\HttpUtils;
 class DefaultAuthenticationSuccessHandler implements AuthenticationSuccessHandlerInterface
 {
     /**
+     * @var HttpUtils
+     */
+    protected $httpUtils;
+
+    /**
+     * @var array
+     */
+    protected $options;
+
+    /**
      * Constructor.
      *
      * @param HttpUtils $httpUtils HttpUtils
@@ -38,6 +48,7 @@ class DefaultAuthenticationSuccessHandler implements AuthenticationSuccessHandle
         $this->options = array_merge(array(
             'always_use_default_target_path' => false,
             'default_target_path'            => '/',
+            'login_path'                     => '/login',
             'target_path_parameter'          => '_target_path',
             'use_referer'                    => false,
         ), $options);
author	Alexander <iam.asm89@gmail.com>	2012-06-20 08:50:59 +0200
committer	Alexander <iam.asm89@gmail.com>	2012-07-08 19:59:10 +0200
commit	2396695756f94bb70b6dd8f097611bd35ef0eb80 (patch)
tree	7affc8cac1d0338fb1b5cbe609851cfd4dff9020 /Http/Authentication
parent	7004925db73aaedefcbb58c92d8be68a05926ddd (diff)
download	symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.zip symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.tar.gz symfony-security-2396695756f94bb70b6dd8f097611bd35ef0eb80.tar.bz2