src/Biz/User/UserProvider.php line 27

Open in your IDE?
  1. <?php
  3. namespace Biz\User;
  5. use AppBundle\Handler\AuthenticationHelper;
  6. use Biz\Role\Util\PermissionBuilder;
  7. use Biz\User\Service\UserService;
  8. use Symfony\Component\DependencyInjection\ContainerInterface;
  9. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  10. use Symfony\Component\Security\Core\Exception\UnsupportedUserException;
  11. use Symfony\Component\Security\Core\Exception\UserNotFoundException;
  12. use Symfony\Component\Security\Core\User\UserInterface;
  13. use Symfony\Component\Security\Core\User\UserProviderInterface;
  14. use Topxia\Service\Common\ServiceKernel;
  16. class UserProvider implements UserProviderInterface
  17. {
  18.     private $container;
  20.     public function __construct(ContainerInterface $container)
  21.     {
  22.         $this->container $container;
  23.     }
  25.     public function loadUserByUsername($username)
  26.     {
  27.         $user $this->getUserService()->getUserByLoginField($username);
  29.         if (empty($user)) {
  30.             throw new UserNotFoundException(sprintf('User "%s" not found.'$username));
  31.         } elseif (isset($user['type']) && 'system' == $user['type']) {
  32.             throw new UserNotFoundException(sprintf('User "%s" not found.'$username));
  33.         }
  35.         $request $this->container->get('request_stack')->getMainRequest();
  37.         $forbidden AuthenticationHelper::checkLoginForbidden($user['id'], $request->getClientIp());
  38.         if ('error' == $forbidden['status']) {
  39.             throw new AuthenticationException($forbidden['message']);
  40.         }
  42.         $forbidden AuthenticationHelper::checkMayday($user$request->request->get('isMayday'0));
  43.         if ('error' == $forbidden['status']) {
  44.             throw new AuthenticationException($forbidden['message']);
  45.         }
  47.         $user $this->getUserService()->getUserWithOrgScopes($user['id']);
  48.         $user['currentIp'] = $request->getClientIp();
  49.         $currentUser = new CurrentUser();
  50.         $currentUser->fromArray($user);
  51.         $currentUser->setPermissions(PermissionBuilder::instance()->findPermissionsByRoles($currentUser->getRoles()));
  52.         $currentUser['isSecure'] = $request->isSecure();
  53.         $biz $this->container->get('biz');
  54.         $biz['user'] = $currentUser;
  55.         ServiceKernel::instance()->setCurrentUser($currentUser);
  57.         return $currentUser;
  58.     }
  60.     public function refreshUser(UserInterface $user)
  61.     {
  62.         if (!$user instanceof CurrentUser) {
  63.             throw new UnsupportedUserException(sprintf('Instances of "%s" are not supported.'get_class($user)));
  64.         }
  66.         return $this->loadUserByUsername($user->getUsername());
  67.     }
  69.     public function supportsClass($class)
  70.     {
  71.         return 'Biz\User\CurrentUser' === $class;
  72.     }
  74.     protected function getRoleService()
  75.     {
  76.         return ServiceKernel::instance()->createService('Role:RoleService');
  77.     }
  79.     /**
  80.      * @return UserService
  81.      */
  82.     protected function getUserService()
  83.     {
  84.         return $this->container->get('biz')->service('User:UserService');
  85.     }
  87.     protected function getOrgService()
  88.     {
  89.         return ServiceKernel::instance()->createService('Org:OrgService');
  90.     }
  91. }