[Security] Support loading UserBadge directly from accessToken

Jeroeny · nicolas-grekas · commit 7cbffdff4807 · 2022-11-24T14:34:45.000+01:00
diff --git a/DependencyInjection/Security/Factory/AccessTokenFactory.php b/DependencyInjection/Security/Factory/AccessTokenFactory.php
@@ -79,9 +79,9 @@ public function createAuthenticator(ContainerBuilder $container, string $firewal
 
         $container
             ->setDefinition($authenticatorId, new ChildDefinition('security.authenticator.access_token'))
-            ->replaceArgument(0, $userProvider)
-            ->replaceArgument(1, new Reference($config['token_handler']))
-            ->replaceArgument(2, new Reference($extractorId))
+            ->replaceArgument(0, new Reference($config['token_handler']))
+            ->replaceArgument(1, new Reference($extractorId))
+            ->replaceArgument(2, $userProvider)
             ->replaceArgument(3, $successHandler)
             ->replaceArgument(4, $failureHandler)
             ->replaceArgument(5, $config['realm'])
diff --git a/Resources/config/security_authenticator_access_token.php b/Resources/config/security_authenticator_access_token.php
@@ -26,12 +26,12 @@
         ->set('security.authenticator.access_token', AccessTokenAuthenticator::class)
             ->abstract()
             ->args([
-                abstract_arg('user provider'),
                 abstract_arg('access token handler'),
                 abstract_arg('access token extractor'),
                 null,
                 null,
                 null,
+                null,
             ])
             ->call('setTranslator', [service('translator')->ignoreOnInvalid()])
 
diff --git a/Tests/Functional/Bundle/AccessTokenBundle/Security/Handler/AccessTokenHandler.php b/Tests/Functional/Bundle/AccessTokenBundle/Security/Handler/AccessTokenHandler.php
@@ -13,17 +13,18 @@
 
 use Symfony\Component\Security\Core\Exception\BadCredentialsException;
 use Symfony\Component\Security\Http\AccessToken\AccessTokenHandlerInterface;
+use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
 
 class AccessTokenHandler implements AccessTokenHandlerInterface
 {
     public function __construct()
     {
     }
 
-    public function getUserIdentifierFrom(string $accessToken): string
+    public function getUserBadgeFrom(string $accessToken): UserBadge
     {
         return match ($accessToken) {
-            'VALID_ACCESS_TOKEN' => 'dunglas',
+            'VALID_ACCESS_TOKEN' => new UserBadge('dunglas'),
             default => throw new BadCredentialsException('Invalid credentials.'),
         };
     }

Original file line number	Diff line number	Diff line change
`@@ -13,17 +13,18 @@`
`13`	`13`
`14`	`14`	`use Symfony\Component\Security\Core\Exception\BadCredentialsException;`
`15`	`15`	`use Symfony\Component\Security\Http\AccessToken\AccessTokenHandlerInterface;`
	`16`	`+use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;`
`16`	`17`
`17`	`18`	`class AccessTokenHandler implements AccessTokenHandlerInterface`
`18`	`19`	`{`
`19`	`20`	`public function __construct()`
`20`	`21`	`{`
`21`	`22`	`}`
`22`	`23`
`23`		`- public function getUserIdentifierFrom(string $accessToken): string`
	`24`	`+ public function getUserBadgeFrom(string $accessToken): UserBadge`
`24`	`25`	`{`
`25`	`26`	`return match ($accessToken) {`
`26`		`- 'VALID_ACCESS_TOKEN' => 'dunglas',`
	`27`	`+ 'VALID_ACCESS_TOKEN' => new UserBadge('dunglas'),`
`27`	`28`	`default => throw new BadCredentialsException('Invalid credentials.'),`
`28`	`29`	`};`
`29`	`30`	`}`