src/Security/GoogleAuthenticator.php line 34

  1. <?php
  2. namespace App\Security;
  4. use App\Entity\User// your user entity
  5. use App\Service\UserUpkeep;
  6. use Doctrine\ORM\EntityManagerInterface;
  7. use KnpU\OAuth2ClientBundle\Client\ClientRegistry;
  8. use KnpU\OAuth2ClientBundle\Security\Authenticator\OAuth2Authenticator;
  9. use League\OAuth2\Client\Provider\GoogleUser;
  10. use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
  11. use Symfony\Component\HttpFoundation\RedirectResponse;
  12. use Symfony\Component\HttpFoundation\Request;
  13. use Symfony\Component\HttpFoundation\Response;
  14. use Symfony\Component\PasswordHasher\Hasher\MessageDigestPasswordHasher;
  15. use Symfony\Component\PasswordHasher\Hasher\PasswordHasherFactory;
  16. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasher;
  17. use Symfony\Component\PasswordHasher\Hasher\UserPasswordHasherInterface;
  18. use Symfony\Component\Routing\RouterInterface;
  19. use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
  20. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  21. use Symfony\Component\Security\Core\User\InMemoryUser;
  22. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  23. use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
  24. use Symfony\Component\Security\Http\Authenticator\Passport\SelfValidatingPassport;
  26. class GoogleAuthenticator extends OAuth2Authenticator
  27. {
  28.     private $clientRegistry;
  29.     private $entityManager;
  30.     private $router;
  31.     private $userUpkeep;
  32.     private $userPasswordHasherInterface;
  34.     public function __construct(ClientRegistry $clientRegistryEntityManagerInterface $entityManagerRouterInterface $routerUserUpkeep $userUpkeepUserPasswordHasherInterface $userPasswordHasherInterfaceParameterBagInterface $params)
  35.     {
  36.         $this->clientRegistry $clientRegistry;
  37.         $this->entityManager $entityManager;
  38.         $this->router $router;
  39.         $this->userUpkeep $userUpkeep;
  40.         $this->userPasswordHasherInterface $userPasswordHasherInterface;
  41.         $this->params $params;
  42.     }
  44.     public function supports(Request $request): ?bool
  45.     {
  46.         // continue ONLY if the current ROUTE matches the check ROUTE
  47.         return $request->attributes->get('_route') === 'connect_google_check';
  48.     }
  50.     public function authenticate(Request $request): Passport
  51.     {
  52.         $client $this->clientRegistry->getClient('google_main');
  53.         $accessToken $this->fetchAccessToken($client);
  55.         return new SelfValidatingPassport(
  56.             new UserBadge($accessToken->getToken(), function() use ($accessToken$client) {
  57.                 /** @var GoogleUser $googleUser */
  58.                 $googleUser $client->fetchUserFromToken($accessToken);
  60.                 $email $googleUser->getEmail();
  62.                 // 1) have they logged in with Google before? Easy!
  63.                 $existingUser $this->entityManager->getRepository(User::class)->findOneBy(['googleId' => $googleUser->getId()]);
  65.                 if ($existingUser) {
  66.                     $this->_generateGameToken($existingUser$this->entityManager);
  67.                     return $existingUser;
  68.                 }
  70.                 // 2) do we have a matching user by email?
  71.                 $user $this->entityManager->getRepository(User::class)->findOneBy(['email' => $email]);
  72.                 if($user) {
  73.                     $user->setGoogleId($googleUser->getId());
  74.                     $this->_generateGameToken($user$this->entityManager);
  75.                 } else {
  76.                     // Create a new User
  77.                     $user = new User();
  78.                     $user->setEmail($email);
  79.                     $user->setGoogleId($googleUser->getId());
  80.                     $user->setPassword($this->userPasswordHasherInterface->hashPassword($user$this->_generateRandomString(10)));
  81.                     $this->entityManager->persist($user);
  83.                     $this->userUpkeep->addStartingEquipment($user);
  84.                     $this->userUpkeep->addTemplateStats($user);
  85.                     $this->userUpkeep->addUserGearSlots($user);
  87.                     $this->_generateGameToken($user$this->entityManager);
  89.                     $this->entityManager->flush();
  90.                 }
  92.                 return $user;
  93.             })
  94.         );
  95.     }
  97.     public function onAuthenticationSuccess(Request $requestTokenInterface $tokenstring $firewallName): ?Response
  98.     {
  99.         // change "app_homepage" to some route in your app
  100.         $targetUrl $this->router->generate('default', ['domain' => $this->params->get('app.domain')]);
  102.         return new RedirectResponse($targetUrl);
  104.         // or, on success, let the request continue to be handled by the controller
  105.         //return null;
  106.     }
  108.     public function onAuthenticationFailure(Request $requestAuthenticationException $exception): ?Response
  109.     {
  110.         $message strtr($exception->getMessageKey(), $exception->getMessageData());
  112.         return new Response($messageResponse::HTTP_FORBIDDEN);
  113.     }
  115.     private function _generateRandomString($length 10) {
  116.         $characters '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
  117.         $charactersLength strlen($characters);
  118.         $randomString '';
  119.         for ($i 0$i $length$i++) {
  120.             $randomString .= $characters[rand(0$charactersLength 1)];
  121.         }
  122.         return $randomString;
  123.     }
  125.     private function _generateGameToken(User $userEntityManagerInterface $entityManager) {
  127.         // Set a new game token on login
  128.         $gameToken hash('sha256'$this->_generateRandomString() . $user->getEmail());
  129.         $user->setGameToken($gameToken);
  131.         $this->entityManager->persist($user);
  132.         $this->entityManager->flush();
  133.     }
  135. //    private function _generatePassword(User $user, string $password, UserPasswordHasherInterface $userPasswordHasherInterface) {
  136. //        return $userPasswordHasherInterface->hashPassword(
  137. //                $user,
  138. //                $password
  139. //        );
  140. //    }
  141. }