vendor/symfony/security-http/EventListener/PasswordMigratingListener.php line 37

  1. <?php
  3. /*
  4.  * This file is part of the Symfony package.
  5.  *
  6.  * (c) Fabien Potencier <fabien@symfony.com>
  7.  *
  8.  * For the full copyright and license information, please view the LICENSE
  9.  * file that was distributed with this source code.
  10.  */
  12. namespace Symfony\Component\Security\Http\EventListener;
  14. use Symfony\Component\EventDispatcher\EventSubscriberInterface;
  15. use Symfony\Component\PasswordHasher\Hasher\PasswordHasherFactoryInterface;
  16. use Symfony\Component\Security\Core\User\LegacyPasswordAuthenticatedUserInterface;
  17. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  18. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  19. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\PasswordUpgradeBadge;
  20. use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
  21. use Symfony\Component\Security\Http\Event\LoginSuccessEvent;
  23. /**
  24.  * @author Wouter de Jong <wouter@wouterj.nl>
  25.  *
  26.  * @final
  27.  */
  28. class PasswordMigratingListener implements EventSubscriberInterface
  29. {
  30.     private PasswordHasherFactoryInterface $hasherFactory;
  32.     public function __construct(PasswordHasherFactoryInterface $hasherFactory)
  33.     {
  34.         $this->hasherFactory $hasherFactory;
  35.     }
  37.     public function onLoginSuccess(LoginSuccessEvent $event): void
  38.     {
  39.         $passport $event->getPassport();
  40.         if (!$passport->hasBadge(PasswordUpgradeBadge::class)) {
  41.             return;
  42.         }
  44.         /** @var PasswordUpgradeBadge $badge */
  45.         $badge $passport->getBadge(PasswordUpgradeBadge::class);
  46.         $plaintextPassword $badge->getAndErasePlaintextPassword();
  48.         if ('' === $plaintextPassword) {
  49.             return;
  50.         }
  52.         $user $passport->getUser();
  53.         if (!$user instanceof PasswordAuthenticatedUserInterface || null === $user->getPassword()) {
  54.             return;
  55.         }
  57.         $passwordHasher $this->hasherFactory->getPasswordHasher($user);
  58.         if (!$passwordHasher->needsRehash($user->getPassword())) {
  59.             return;
  60.         }
  62.         $passwordUpgrader $badge->getPasswordUpgrader();
  64.         if (null === $passwordUpgrader) {
  65.             if (!$passport->hasBadge(UserBadge::class)) {
  66.                 return;
  67.             }
  69.             /** @var UserBadge $userBadge */
  70.             $userBadge $passport->getBadge(UserBadge::class);
  71.             $userLoader $userBadge->getUserLoader();
  72.             if (\is_array($userLoader) && $userLoader[0] instanceof PasswordUpgraderInterface) {
  73.                 $passwordUpgrader $userLoader[0];
  74.             } elseif (!$userLoader instanceof \Closure
  75.                 || !($passwordUpgrader = (new \ReflectionFunction($userLoader))->getClosureThis()) instanceof PasswordUpgraderInterface
  76.             ) {
  77.                 return;
  78.             }
  79.         }
  81.         $salt null;
  82.         if ($user instanceof LegacyPasswordAuthenticatedUserInterface) {
  83.             $salt $user->getSalt();
  84.         }
  86.         $passwordUpgrader->upgradePassword($user$passwordHasher->hash($plaintextPassword$salt));
  87.     }
  89.     public static function getSubscribedEvents(): array
  90.     {
  91.         return [LoginSuccessEvent::class => 'onLoginSuccess'];
  92.     }
  93. }