form login : PR review : batch 5

Author: nikophil

src/Maker/MakeAuthenticator.php

@@ -237,7 +237,7 @@ private function generateAuthenticatorClass(array $securityData, string $authent
                 'user_fully_qualified_class_name' => trim($userClassNameDetails->getFullName(), '\\'),
                 'user_class_name' => $userClassNameDetails->getShortName(),
                 'username_field' => $userNameField,
-                'user_needs_encoder' => $this->userNeedsEncoder($securityData, $userClass),
+                'user_needs_encoder' => $this->userClassHasEncoder($securityData, $userClass),
                 'user_is_entity' => $this->doctrineHelper->isClassAMappedEntity($userClass),
             ]
         );
@@ -280,6 +280,8 @@ private function generateFormLoginFiles(string $controllerClass, string $userNam
             'authenticator/login_form.tpl.php',
             [
                 'username_field' => $userNameField,
+                'username_is_email' => false !== stripos($userNameField, 'email'),
+                'username_label' => ucfirst(implode(' ', preg_split('/(?=[A-Z])/', 'oneTwoThree'))),
             ]
         );
     }
@@ -300,22 +302,23 @@ private function generateNextMessage(bool $securityYamlUpdated, string $authenti
         }
 
         if (self::AUTH_TYPE_FORM_LOGIN === $authenticatorType) {
-            $nextTexts[] = sprintf('- You must provide a valid redirection in the method <info>%s::onAuthenticationSuccess()</info>.', $authenticatorClass);
-            $nextTexts[] = '- Review & adapt the login template : <info>/templates/security/login.html.twig</info>.';
+            $nextTexts[] = sprintf('- Finish the redirect "TODO" in the <info>%s::onAuthenticationSuccess()</info> method.', $authenticatorClass);
 
             if (!$this->doctrineHelper->isClassAMappedEntity($userClass)) {
-                $nextTexts[] = sprintf('- Review <info>%s::getUser()</info>, if it match your needs.', $authenticatorClass);
+                $nextTexts[] = sprintf('- Review <info>%s::getUser()</info> to make sure it matches your needs.', $authenticatorClass);
             }
 
-            if (!$this->userNeedsEncoder($securityData, $userClass)) {
-                $nextTexts[] = sprintf('- Check user\'s password in <info>%s::checkCredentials()</info>.', $authenticatorClass);
+            if (!$this->userClassHasEncoder($securityData, $userClass)) {
+                $nextTexts[] = sprintf('- Check the user\'s password in <info>%s::checkCredentials()</info>.', $authenticatorClass);
             }
+
+            $nextTexts[] = '- Review & adapt the login template: <info>templates/security/login.html.twig</info>.';
         }
 
         return $nextTexts;
     }
 
-    private function userNeedsEncoder(array $securityData, string $userClass): bool
+    private function userClassHasEncoder(array $securityData, string $userClass): bool
     {
         $userNeedsEncoder = false;
         if (isset($securityData['security']['encoders']) && $securityData['security']['encoders']) {

src/Resources/skeleton/authenticator/LoginFormAuthenticator.tpl.php

@@ -72,7 +72,7 @@ public function getUser($credentials, UserProviderInterface $userProvider)
     public function checkCredentials($credentials, UserInterface $user)
     {
         <?= $user_needs_encoder ? "return \$this->passwordEncoder->isPasswordValid(\$user, \$credentials['password']);\n"
-        : "// Check the user’s password or other credentials and return true or false
+        : "// Check the user's password or other credentials and return true or false
         // If there are no credentials to check, you can just return true
         throw new \Exception('TODO: check the credentials inside '.__FILE__);\n" ?>
     }
@@ -83,8 +83,8 @@ public function onAuthenticationSuccess(Request $request, TokenInterface $token,
             return new RedirectResponse($targetPath);
         }
 
-        // e.g. : return new RedirectResponse($this->router->generate('some_route'));
-        throw new \Exception('TODO: provide a valid redirection inside '.__FILE__);
+        // For example : return new RedirectResponse($this->router->generate('some_route'));
+        throw new \Exception('TODO: provide a valid redirect inside '.__FILE__);
     }
 
     protected function getLoginUrl()

src/Resources/skeleton/authenticator/login_form.tpl.php

@@ -9,8 +9,8 @@
     {% endif %}
 
     <h1 class="h3 mb-3 font-weight-normal">Please sign in</h1>
-    <label for="inputEmail" class="sr-only">Email address</label>
-    <input type="email" value="{{ last_username }}" name="<?= $username_field; ?>" id="inputEmail" class="form-control" placeholder="Email address" required autofocus>
+    <label for="input<?= ucfirst($username_field); ?>" class="sr-only"><?= $username_label; ?></label>
+    <input type="<?= $username_is_email ? 'email' : 'text'; ?>" value="{{ last_username }}" name="<?= $username_field; ?>" id="input<?= ucfirst($username_field); ?>" class="form-control" placeholder="<?= $username_label; ?>" required autofocus>
     <label for="inputPassword" class="sr-only">Password</label>
     <input type="password" name="password" id="inputPassword" class="form-control" placeholder="Password" required>
 

tests/fixtures/MakeAuthenticatorLoginFormCustomUsernameField/src/Security/UserProvider.php

@@ -2,20 +2,13 @@
 
 namespace App\Security;
 
-use Symfony\Component\Security\Core\Exception\UnsupportedUserException;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
 class UserProvider implements UserProviderInterface
 {
     /**
-     * Symfony calls this method if you use features like switch_user
-     * or remember_me.
-     *
-     * If you're not using these features, you do not need to implement
-     * this method.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function loadUserByUsername($username)
     {
@@ -25,36 +18,16 @@ public function loadUserByUsername($username)
     }
 
     /**
-     * Refreshes the user after being reloaded from the session.
-     *
-     * When a user is logged in, at the beginning of each request, the
-     * User object is loaded from the session and then this method is
-     * called. Your job is to make sure the user's data is still fresh by,
-     * for example, re-querying for fresh User data.
-     *
-     * If your firewall is "stateless: false" (for a pure API), this
-     * method is not called.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function refreshUser(UserInterface $user)
     {
-        if (!$user instanceof User) {
-            throw new UnsupportedUserException(sprintf('Invalid user class "%s".', get_class($user)));
-        }
-
-        /* @var User $user */
-
-        // Return a User object after making sure its data is "fresh".
-        // Or throw a UsernameNotFoundException if the user no longer exists.
-        throw new \Exception('TODO: fill in refreshUser() inside '.__FILE__);
     }
 
     /**
-     * Tells Symfony to use this provider for this User class.
+     * {@inheritdoc}
      */
     public function supportsClass($class)
     {
-        return User::class === $class;
     }
 }

tests/fixtures/MakeAuthenticatorLoginFormCustomUsernameField/tests/SecurityControllerTest.php

@@ -41,6 +41,6 @@ public function testCommand()
         );
         $client->submit($form);
 
-        $this->assertContains('TODO: provide a valid redirection', $client->getResponse()->getContent());
+        $this->assertContains('TODO: provide a valid redirect', $client->getResponse()->getContent());
     }
 }

tests/fixtures/MakeAuthenticatorLoginFormExistingController/tests/SecurityControllerTest.php

@@ -50,6 +50,6 @@ public function testCommand()
         );
         $client->submit($form);
 
-        $this->assertContains('TODO: provide a valid redirection', $client->getResponse()->getContent());
+        $this->assertContains('TODO: provide a valid redirect', $client->getResponse()->getContent());
     }
 }

tests/fixtures/MakeAuthenticatorLoginFormUserEntity/tests/SecurityControllerTest.php

@@ -59,7 +59,7 @@ public function testCommand()
         );
         $client->submit($form);
 
-        $this->assertContains('TODO: provide a valid redirection', $client->getResponse()->getContent());
+        $this->assertContains('TODO: provide a valid redirect', $client->getResponse()->getContent());
         $this->assertNotNull($token = $client->getContainer()->get('security.token_storage')->getToken());
         $this->assertInstanceOf(User::class, $token->getUser());
     }

tests/fixtures/MakeAuthenticatorLoginFormUserNotEntity/src/Security/UserProvider.php

@@ -2,21 +2,13 @@
 
 namespace App\Security;
 
-use Symfony\Component\Security\Core\Exception\UnsupportedUserException;
-use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
 class UserProvider implements UserProviderInterface
 {
     /**
-     * Symfony calls this method if you use features like switch_user
-     * or remember_me.
-     *
-     * If you're not using these features, you do not need to implement
-     * this method.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function loadUserByUsername($username)
     {
@@ -26,36 +18,16 @@ public function loadUserByUsername($username)
     }
 
     /**
-     * Refreshes the user after being reloaded from the session.
-     *
-     * When a user is logged in, at the beginning of each request, the
-     * User object is loaded from the session and then this method is
-     * called. Your job is to make sure the user's data is still fresh by,
-     * for example, re-querying for fresh User data.
-     *
-     * If your firewall is "stateless: false" (for a pure API), this
-     * method is not called.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function refreshUser(UserInterface $user)
     {
-        if (!$user instanceof User) {
-            throw new UnsupportedUserException(sprintf('Invalid user class "%s".', get_class($user)));
-        }
-
-        /* @var User $user */
-
-        // Return a User object after making sure its data is "fresh".
-        // Or throw a UsernameNotFoundException if the user no longer exists.
-        throw new \Exception('TODO: fill in refreshUser() inside '.__FILE__);
     }
 
     /**
-     * Tells Symfony to use this provider for this User class.
+     * {@inheritdoc}
      */
     public function supportsClass($class)
     {
-        return User::class === $class;
     }
 }

tests/fixtures/MakeAuthenticatorLoginFormUserNotEntity/tests/SecurityControllerTest.php

@@ -41,6 +41,6 @@ public function testCommand()
         );
         $client->submit($form);
 
-        $this->assertContains('TODO: provide a valid redirection', $client->getResponse()->getContent());
+        $this->assertContains('TODO: provide a valid redirect', $client->getResponse()->getContent());
     }
 }

tests/fixtures/MakeAuthenticatorLoginFormUserNotEntityNoEncoder/src/Security/UserProvider.php

@@ -2,21 +2,13 @@
 
 namespace App\Security;
 
-use Symfony\Component\Security\Core\Exception\UnsupportedUserException;
-use Symfony\Component\Security\Core\Exception\UsernameNotFoundException;
 use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
 class UserProvider implements UserProviderInterface
 {
     /**
-     * Symfony calls this method if you use features like switch_user
-     * or remember_me.
-     *
-     * If you're not using these features, you do not need to implement
-     * this method.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function loadUserByUsername($username)
     {
@@ -26,36 +18,16 @@ public function loadUserByUsername($username)
     }
 
     /**
-     * Refreshes the user after being reloaded from the session.
-     *
-     * When a user is logged in, at the beginning of each request, the
-     * User object is loaded from the session and then this method is
-     * called. Your job is to make sure the user's data is still fresh by,
-     * for example, re-querying for fresh User data.
-     *
-     * If your firewall is "stateless: false" (for a pure API), this
-     * method is not called.
-     *
-     * @return UserInterface
+     * {@inheritdoc}
      */
     public function refreshUser(UserInterface $user)
     {
-        if (!$user instanceof User) {
-            throw new UnsupportedUserException(sprintf('Invalid user class "%s".', get_class($user)));
-        }
-
-        /* @var User $user */
-
-        // Return a User object after making sure its data is "fresh".
-        // Or throw a UsernameNotFoundException if the user no longer exists.
-        throw new \Exception('TODO: fill in refreshUser() inside '.__FILE__);
     }
 
     /**
-     * Tells Symfony to use this provider for this User class.
+     * {@inheritdoc}
      */
     public function supportsClass($class)
     {
-        return User::class === $class;
     }
 }