Silex2:覆盖 `DaoAuthenticationProvider` 的 `checkAuthentication` 方法 class
Silex2 : overwrite `checkAuthentication` method of the `DaoAuthenticationProvider` class
使用 Silex 2,我被困了几个小时以找到一种方法来覆盖 DaoAuthenticationProvider class?
的 checkAuthentication 方法
关于上下文:我使用自定义 UserToken.
定义了身份验证侦听器和提供程序
$app['security.authentication_listener.factory.sds'] = $app->protect(function ($name, $options) use ($app) {
// define the authentication provider object
$app['security.authentication_provider.'.$name.'.sds'] = function () use ($app) {
return new CustomAuthenticationProvider($app['user.provider'], $app['security.encoder_factory']);
};
// define the authentication listener object
$app['security.authentication_listener.'.$name.'.sds'] = function () use ($app) {
return new CustomAuthenticationListener($app['security.token_storage'], $app['security.authentication_manager']);
};
return array(
// the authentication provider id
'security.authentication_provider.'.$name.'.sds',
// the authentication listener id
'security.authentication_listener.'.$name.'.sds',
// the entry point id
null,
// the position of the listener in the stack
'pre_auth'
);
});
但我需要自定义 DaoAuthenticationProvider 的 checkAuthentication 当自定义身份验证提供程序返回成功验证的令牌时自动调用。
protected function checkAuthentication(UserInterface $user, UsernamePasswordToken $token)
{
$currentUser = $token->getUser();
if ($currentUser instanceof UserInterface) {
if ($currentUser->getPassword() !== $user->getPassword()) {
throw new BadCredentialsException('The credentials were changed from another session.');
}
} else {
if ('' === ($presentedPassword = $token->getCredentials())) {
throw new BadCredentialsException('The presented password cannot be empty.');
}
if (!$this->encoderFactory->getEncoder($user)->isPasswordValid($user->getPassword(), $presentedPassword, $user->getSalt())) {
throw new BadCredentialsException('The presented password is invalid.');
}
}
}
解决方案
在app.php中这样定义:
$app['security.authentication_provider.dao._proto'] = $app->protect(function ($name) use($app) {
return new \Trilogis\Classes\CustomUserAuthenticationProvider(
$app['security.user_provider.' . $name],
$app['security.user_checker'],
$name,
$app['security.encoder_factory']
);
});
您可以制作自定义身份验证提供程序,您可以从 DaoAuthenticationProvider 扩展它。并在应用程序中重新定义身份验证提供程序定义:
...
$app['security.authentication_provider.sds.dao'] = function() {
return new MyAuthenticationProvider(
$app['security.user_provider.sds'],
$app['security.user_checker'],
'sds',
$app['security.encoder_factory'],
$app['security.hide_user_not_found']
);
};
$app['security.authentication_listener.sds.form'] = function() {
return new CustomAuthenticationListener($app['security.token_storage'], $app['security.authentication_manager']);
};
...
$app->run();
使用 Silex 2,我被困了几个小时以找到一种方法来覆盖 DaoAuthenticationProvider class?
checkAuthentication 方法
关于上下文:我使用自定义 UserToken.
$app['security.authentication_listener.factory.sds'] = $app->protect(function ($name, $options) use ($app) {
// define the authentication provider object
$app['security.authentication_provider.'.$name.'.sds'] = function () use ($app) {
return new CustomAuthenticationProvider($app['user.provider'], $app['security.encoder_factory']);
};
// define the authentication listener object
$app['security.authentication_listener.'.$name.'.sds'] = function () use ($app) {
return new CustomAuthenticationListener($app['security.token_storage'], $app['security.authentication_manager']);
};
return array(
// the authentication provider id
'security.authentication_provider.'.$name.'.sds',
// the authentication listener id
'security.authentication_listener.'.$name.'.sds',
// the entry point id
null,
// the position of the listener in the stack
'pre_auth'
);
});
但我需要自定义 DaoAuthenticationProvider 的 checkAuthentication 当自定义身份验证提供程序返回成功验证的令牌时自动调用。
protected function checkAuthentication(UserInterface $user, UsernamePasswordToken $token)
{
$currentUser = $token->getUser();
if ($currentUser instanceof UserInterface) {
if ($currentUser->getPassword() !== $user->getPassword()) {
throw new BadCredentialsException('The credentials were changed from another session.');
}
} else {
if ('' === ($presentedPassword = $token->getCredentials())) {
throw new BadCredentialsException('The presented password cannot be empty.');
}
if (!$this->encoderFactory->getEncoder($user)->isPasswordValid($user->getPassword(), $presentedPassword, $user->getSalt())) {
throw new BadCredentialsException('The presented password is invalid.');
}
}
}
解决方案
在app.php中这样定义:
$app['security.authentication_provider.dao._proto'] = $app->protect(function ($name) use($app) {
return new \Trilogis\Classes\CustomUserAuthenticationProvider(
$app['security.user_provider.' . $name],
$app['security.user_checker'],
$name,
$app['security.encoder_factory']
);
});
您可以制作自定义身份验证提供程序,您可以从 DaoAuthenticationProvider 扩展它。并在应用程序中重新定义身份验证提供程序定义:
...
$app['security.authentication_provider.sds.dao'] = function() {
return new MyAuthenticationProvider(
$app['security.user_provider.sds'],
$app['security.user_checker'],
'sds',
$app['security.encoder_factory'],
$app['security.hide_user_not_found']
);
};
$app['security.authentication_listener.sds.form'] = function() {
return new CustomAuthenticationListener($app['security.token_storage'], $app['security.authentication_manager']);
};
...
$app->run();