vendor/symfony/maker-bundle/src/Maker/MakeUser.php line 251

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony MakerBundle package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Bundle\MakerBundle\Maker;
  14. use Doctrine\Bundle\DoctrineBundle\DoctrineBundle;
  15. use Symfony\Bundle\MakerBundle\ConsoleStyle;
  16. use Symfony\Bundle\MakerBundle\DependencyBuilder;
  17. use Symfony\Bundle\MakerBundle\Doctrine\DoctrineHelper;
  18. use Symfony\Bundle\MakerBundle\Doctrine\EntityClassGenerator;
  19. use Symfony\Bundle\MakerBundle\Doctrine\ORMDependencyBuilder;
  20. use Symfony\Bundle\MakerBundle\Exception\RuntimeCommandException;
  21. use Symfony\Bundle\MakerBundle\FileManager;
  22. use Symfony\Bundle\MakerBundle\Generator;
  23. use Symfony\Bundle\MakerBundle\InputConfiguration;
  24. use Symfony\Bundle\MakerBundle\Security\SecurityConfigUpdater;
  25. use Symfony\Bundle\MakerBundle\Security\UserClassBuilder;
  26. use Symfony\Bundle\MakerBundle\Security\UserClassConfiguration;
  27. use Symfony\Bundle\MakerBundle\Util\ClassSourceManipulator;
  28. use Symfony\Bundle\MakerBundle\Util\YamlManipulationFailedException;
  29. use Symfony\Bundle\MakerBundle\Validator;
  30. use Symfony\Bundle\SecurityBundle\SecurityBundle;
  31. use Symfony\Component\Console\Command\Command;
  32. use Symfony\Component\Console\Input\InputArgument;
  33. use Symfony\Component\Console\Input\InputInterface;
  34. use Symfony\Component\Console\Input\InputOption;
  35. use Symfony\Component\PasswordHasher\Hasher\NativePasswordHasher;
  36. use Symfony\Component\Security\Core\Encoder\Argon2iPasswordEncoder;
  37. use Symfony\Component\Security\Core\Encoder\NativePasswordEncoder;
  38. use Symfony\Component\Security\Core\Exception\UserNotFoundException;
  39. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  40. use Symfony\Component\Security\Core\User\PasswordUpgraderInterface;
  41. use Symfony\Component\Yaml\Yaml;
  43. /**
  44. * @author Ryan Weaver <weaverryan@gmail.com>
  45. *
  46. * @internal
  47. */
  48. final class MakeUser extends AbstractMaker
  49. {
  50. private $fileManager;
  52. private $userClassBuilder;
  54. private $configUpdater;
  56. private $entityClassGenerator;
  58. private $doctrineHelper;
  60. public function __construct(FileManager $fileManager, UserClassBuilder $userClassBuilder, SecurityConfigUpdater $configUpdater, EntityClassGenerator $entityClassGenerator, DoctrineHelper $doctrineHelper)
  61. {
  62. $this->fileManager = $fileManager;
  63. $this->userClassBuilder = $userClassBuilder;
  64. $this->configUpdater = $configUpdater;
  65. $this->entityClassGenerator = $entityClassGenerator;
  66. $this->doctrineHelper = $doctrineHelper;
  67. }
  69. public static function getCommandName(): string
  70. {
  71. return 'make:user';
  72. }
  74. public static function getCommandDescription(): string
  75. {
  76. return 'Creates a new security user class';
  77. }
  79. public function configureCommand(Command $command, InputConfiguration $inputConf)
  80. {
  81. $command
  82. ->addArgument('name', InputArgument::OPTIONAL, 'The name of the security user class (e.g. <fg=yellow>User</>)')
  83. ->addOption('is-entity', null, InputOption::VALUE_NONE, 'Do you want to store user data in the database (via Doctrine)?')
  84. ->addOption('identity-property-name', null, InputOption::VALUE_REQUIRED, 'Enter a property name that will be the unique "display" name for the user (e.g. <comment>email, username, uuid</comment>)')
  85. ->addOption('with-password', null, InputOption::VALUE_NONE, 'Will this app be responsible for checking the password? Choose <comment>No</comment> if the password is actually checked by some other system (e.g. a single sign-on server)')
  86. ->addOption('use-argon2', null, InputOption::VALUE_NONE, 'Use the Argon2i password encoder? (deprecated)')
  87. ->setHelp(file_get_contents(__DIR__.'/../Resources/help/MakeUser.txt'));
  89. $inputConf->setArgumentAsNonInteractive('name');
  90. }
  92. public function interact(InputInterface $input, ConsoleStyle $io, Command $command)
  93. {
  94. if (null === $input->getArgument('name')) {
  95. $name = $io->ask(
  96. $command->getDefinition()->getArgument('name')->getDescription(),
  97. 'User'
  98. );
  99. $input->setArgument('name', $name);
  100. }
  102. $userIsEntity = $io->confirm(
  103. 'Do you want to store user data in the database (via Doctrine)?',
  104. class_exists(DoctrineBundle::class)
  105. );
  106. if ($userIsEntity) {
  107. $dependencies = new DependencyBuilder();
  108. ORMDependencyBuilder::buildDependencies($dependencies);
  110. $missingPackagesMessage = $dependencies->getMissingPackagesMessage(self::getCommandName(), 'Doctrine must be installed to store user data in the database');
  111. if ($missingPackagesMessage) {
  112. throw new RuntimeCommandException($missingPackagesMessage);
  113. }
  114. }
  115. $input->setOption('is-entity', $userIsEntity);
  117. $identityFieldName = $io->ask('Enter a property name that will be the unique "display" name for the user (e.g. <comment>email, username, uuid</comment>)', 'email', [Validator::class, 'validatePropertyName']);
  118. $input->setOption('identity-property-name', $identityFieldName);
  120. $io->text('Will this app need to hash/check user passwords? Choose <comment>No</comment> if passwords are not needed or will be checked/hashed by some other system (e.g. a single sign-on server).');
  121. $userWillHavePassword = $io->confirm('Does this app need to hash/check user passwords?');
  122. $input->setOption('with-password', $userWillHavePassword);
  124. $symfonyGte53 = class_exists(NativePasswordHasher::class);
  125. if ($symfonyGte53) {
  126. return;
  127. }
  129. if ($userWillHavePassword && !class_exists(NativePasswordEncoder::class) && Argon2iPasswordEncoder::isSupported()) {
  130. $io->writeln('The newer <comment>Argon2i</comment> password hasher requires PHP 7.2, libsodium or paragonie/sodium_compat. Your system DOES support this algorithm.');
  131. $io->writeln('You should use <comment>Argon2i</comment> unless your production system will not support it.');
  132. $useArgon2Encoder = $io->confirm('Use <comment>Argon2i</comment> as your password hasher (bcrypt will be used otherwise)?');
  133. $input->setOption('use-argon2', $useArgon2Encoder);
  134. }
  135. }
  137. public function generate(InputInterface $input, ConsoleStyle $io, Generator $generator)
  138. {
  139. $userClassConfiguration = new UserClassConfiguration(
  140. $input->getOption('is-entity'),
  141. $input->getOption('identity-property-name'),
  142. $input->getOption('with-password')
  143. );
  144. if ($input->getOption('use-argon2')) {
  145. @trigger_error('The "--use-argon2" option is deprecated since MakerBundle 1.12.', \E_USER_DEPRECATED);
  146. $userClassConfiguration->useArgon2(true);
  147. }
  149. $userClassNameDetails = $generator->createClassNameDetails(
  150. $input->getArgument('name'),
  151. $userClassConfiguration->isEntity() ? 'Entity\\' : 'Security\\'
  152. );
  154. // A) Generate the User class
  155. if ($userClassConfiguration->isEntity()) {
  156. $classPath = $this->entityClassGenerator->generateEntityClass(
  157. $userClassNameDetails,
  158. false, // api resource
  159. $userClassConfiguration->hasPassword() && interface_exists(PasswordUpgraderInterface::class) // security user
  160. );
  161. } else {
  162. $classPath = $generator->generateClass($userClassNameDetails->getFullName(), 'Class.tpl.php');
  163. }
  164. // need to write changes early so we can modify the contents below
  165. $generator->writeChanges();
  167. $useAttributesForDoctrineMapping = $userClassConfiguration->isEntity() && ($this->doctrineHelper->isDoctrineSupportingAttributes()) && $this->doctrineHelper->doesClassUsesAttributes($userClassNameDetails->getFullName());
  169. // B) Implement UserInterface
  170. $manipulator = new ClassSourceManipulator(
  171. $this->fileManager->getFileContents($classPath),
  172. true,
  173. !$useAttributesForDoctrineMapping,
  174. true,
  175. $useAttributesForDoctrineMapping
  176. );
  178. $manipulator->setIo($io);
  180. $this->userClassBuilder->addUserInterfaceImplementation($manipulator, $userClassConfiguration);
  182. $generator->dumpFile($classPath, $manipulator->getSourceCode());
  184. // C) Generate a custom user provider, if necessary
  185. if (!$userClassConfiguration->isEntity()) {
  186. $userClassConfiguration->setUserProviderClass($generator->getRootNamespace().'\\Security\\UserProvider');
  187. $customProviderPath = $generator->generateClass(
  188. $userClassConfiguration->getUserProviderClass(),
  189. 'security/UserProvider.tpl.php',
  190. [
  191. 'uses_user_identifier' => class_exists(UserNotFoundException::class),
  192. 'user_short_name' => $userClassNameDetails->getShortName(),
  193. 'use_legacy_password_upgrader_type' => !interface_exists(PasswordAuthenticatedUserInterface::class),
  194. ]
  195. );
  196. }
  198. // D) Update security.yaml
  199. $securityYamlUpdated = false;
  200. $path = 'config/packages/security.yaml';
  201. if ($this->fileManager->fileExists($path)) {
  202. try {
  203. $newYaml = $this->configUpdater->updateForUserClass(
  204. $this->fileManager->getFileContents($path),
  205. $userClassConfiguration,
  206. $userClassNameDetails->getFullName()
  207. );
  208. $generator->dumpFile($path, $newYaml);
  209. $securityYamlUpdated = true;
  210. } catch (YamlManipulationFailedException $e) {
  211. }
  212. }
  214. $generator->writeChanges();
  216. $this->writeSuccessMessage($io);
  218. $io->text('Next Steps:');
  219. $nextSteps = [
  220. sprintf('Review your new <info>%s</info> class.', $userClassNameDetails->getFullName()),
  221. ];
  222. if ($userClassConfiguration->isEntity()) {
  223. $nextSteps[] = sprintf(
  224. 'Use <comment>make:entity</comment> to add more fields to your <info>%s</info> entity and then run <comment>make:migration</comment>.',
  225. $userClassNameDetails->getShortName()
  226. );
  227. } else {
  228. $nextSteps[] = sprintf(
  229. 'Open <info>%s</info> to finish implementing your user provider.',
  230. $this->fileManager->relativizePath($customProviderPath)
  231. );
  232. }
  234. if (!$securityYamlUpdated) {
  235. $yamlExample = $this->configUpdater->updateForUserClass(
  236. 'security: {}',
  237. $userClassConfiguration,
  238. $userClassNameDetails->getFullName()
  239. );
  240. $nextSteps[] = "Your <info>security.yaml</info> could not be updated automatically. You'll need to add the following config manually:\n\n".$yamlExample;
  241. }
  243. $nextSteps[] = 'Create a way to authenticate! See https://symfony.com/doc/current/security.html';
  245. $nextSteps = array_map(function ($step) {
  246. return sprintf(' - %s', $step);
  247. }, $nextSteps);
  248. $io->text($nextSteps);
  249. }
  251. public function configureDependencies(DependencyBuilder $dependencies, InputInterface $input = null)
  252. {
  253. // checking for SecurityBundle guarantees security.yaml is present
  254. $dependencies->addClassDependency(
  255. SecurityBundle::class,
  256. 'security'
  257. );
  259. // needed to update the YAML files
  260. $dependencies->addClassDependency(
  261. Yaml::class,
  262. 'yaml'
  263. );
  265. if (null !== $input && $input->getOption('is-entity')) {
  266. ORMDependencyBuilder::buildDependencies($dependencies);
  267. }
  268. }
  269. }