aboutsummaryrefslogblamecommitdiffhomepage
path: root/src/Wallabag/CoreBundle/Security/Validator/WallabagUserPasswordValidator.php
blob: 5206277373e6a6659c11d1990e5fcdf739f6a9ff (plain) (tree) 
d9085c63





75e9d1df

d9085c63







75e9d1df



d9085c63





75e9d1df

d9085c63

75e9d1df

d9085c63












75e9d1df

d9085c63














1
2
3
4
5

6

7
8
9
10
11
12
13

14
15
16

17
18
19
20
21

22

23

24

25
26
27
28
29
30
31
32
33
34
35
36

37

38
39
40
41
42
43
44
45
46
47
48
49
50
51





                                                       
                                                                                       






                                                                        


                                                                                   




                                                               
                                                                                                             
     
                                            











                                                                                          
                                                           













                                                                                                                   
<?php

namespace Wallabag\CoreBundle\Security\Validator;

use Symfony\Component\Security\Core\User\UserInterface;
use Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorageInterface;
use Symfony\Component\Security\Core\Encoder\EncoderFactoryInterface;
use Symfony\Component\Validator\Constraint;
use Symfony\Component\Validator\ConstraintValidator;
use Symfony\Component\Validator\Exception\ConstraintDefinitionException;
use Symfony\Component\Validator\Exception\UnexpectedTypeException;
use Symfony\Component\Security\Core\Validator\Constraints\UserPassword;

/**
 * @see Symfony\Component\Security\Core\Validator\Constraints\UserPasswordValidator
 */
class WallabagUserPasswordValidator extends ConstraintValidator
{
    private $securityContext;
    private $encoderFactory;

    public function __construct(TokenStorageInterface $tokenStorage, EncoderFactoryInterface $encoderFactory)
    {
        $this->tokenStorage = $tokenStorage;
        $this->encoderFactory = $encoderFactory;
    }

    /**
     * {@inheritdoc}
     */
    public function validate($password, Constraint $constraint)
    {
        if (!$constraint instanceof UserPassword) {
            throw new UnexpectedTypeException($constraint, __NAMESPACE__.'\UserPassword');
        }

        $user = $this->tokenStorage->getToken()->getUser();

        if (!$user instanceof UserInterface) {
            throw new ConstraintDefinitionException('The User object must implement the UserInterface interface.');
        }

        // give username, it's used to hash the password
        $encoder = $this->encoderFactory->getEncoder($user);
        $encoder->setUsername($user->getUsername());

        if (!$encoder->isPasswordValid($user->getPassword(), $password, $user->getSalt())) {
            $this->context->addViolation($constraint->message);
        }
    }
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-07 15:33:50 +0000