vendor/symfony/security-http/Firewall/AnonymousAuthenticationListener.php line 22

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\Security\Http\Firewall;
  14. use Psr\Log\LoggerInterface;
  15. use Symfony\Component\HttpFoundation\Request;
  16. use Symfony\Component\HttpKernel\Event\RequestEvent;
  17. use Symfony\Component\Security\Core\Authentication\AuthenticationManagerInterface;
  18. use Symfony\Component\Security\Core\Authentication\Token\AnonymousToken;
  19. use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
  20. use Symfony\Component\Security\Core\Exception\AuthenticationException;
  22. trigger_deprecation('symfony/security-http', '5.3', 'The "%s" class is deprecated, use the new authenticator system instead.', AnonymousAuthenticationListener::class);
  24. // Help opcache.preload discover always-needed symbols
  25. class_exists(AnonymousToken::class);
  27. /**
  28. * AnonymousAuthenticationListener automatically adds a Token if none is
  29. * already present.
  30. *
  31. * @author Fabien Potencier <fabien@symfony.com>
  32. *
  33. * @deprecated since Symfony 5.3, use the new authenticator system instead
  34. */
  35. class AnonymousAuthenticationListener extends AbstractListener
  36. {
  37. private $tokenStorage;
  38. private $secret;
  39. private $authenticationManager;
  40. private $logger;
  42. public function __construct(TokenStorageInterface $tokenStorage, string $secret, ?LoggerInterface $logger = null, ?AuthenticationManagerInterface $authenticationManager = null)
  43. {
  44. $this->tokenStorage = $tokenStorage;
  45. $this->secret = $secret;
  46. $this->authenticationManager = $authenticationManager;
  47. $this->logger = $logger;
  48. }
  50. /**
  51. * {@inheritdoc}
  52. */
  53. public function supports(Request $request): ?bool
  54. {
  55. return null; // always run authenticate() lazily with lazy firewalls
  56. }
  58. /**
  59. * Handles anonymous authentication.
  60. */
  61. public function authenticate(RequestEvent $event)
  62. {
  63. if (null !== $this->tokenStorage->getToken()) {
  64. return;
  65. }
  67. try {
  68. $token = new AnonymousToken($this->secret, 'anon.', []);
  69. if (null !== $this->authenticationManager) {
  70. $token = $this->authenticationManager->authenticate($token);
  71. }
  73. $this->tokenStorage->setToken($token);
  75. if (null !== $this->logger) {
  76. $this->logger->info('Populated the TokenStorage with an anonymous Token.');
  77. }
  78. } catch (AuthenticationException $failed) {
  79. if (null !== $this->logger) {
  80. $this->logger->info('Anonymous authentication failed.', ['exception' => $failed]);
  81. }
  82. }
  83. }
  84. }