2011-01-25 19:28:26 +00:00
|
|
|
<?php
|
|
|
|
|
2011-05-31 09:57:06 +01:00
|
|
|
/*
|
|
|
|
* This file is part of the Symfony framework.
|
|
|
|
*
|
|
|
|
* (c) Fabien Potencier <fabien@symfony.com>
|
|
|
|
*
|
|
|
|
* This source file is subject to the MIT license that is bundled
|
|
|
|
* with this source code in the file LICENSE.
|
|
|
|
*/
|
|
|
|
|
2011-01-26 20:34:11 +00:00
|
|
|
namespace Symfony\Component\Security\Http\Session;
|
2011-01-25 19:28:26 +00:00
|
|
|
|
2011-01-26 20:34:11 +00:00
|
|
|
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
|
2011-01-25 19:28:26 +00:00
|
|
|
use Symfony\Component\HttpFoundation\Request;
|
|
|
|
|
2011-01-27 07:34:19 +00:00
|
|
|
/**
|
|
|
|
* The default session strategy implementation.
|
|
|
|
*
|
|
|
|
* Supports the following strategies:
|
|
|
|
* NONE: the session is not changed
|
|
|
|
* MIGRATE: the session id is updated, attributes are kept
|
|
|
|
* INVALIDATE: the session id is updated, attributes are lost
|
|
|
|
*
|
|
|
|
* @author Johannes M. Schmitt <schmittjoh@gmail.com>
|
|
|
|
*/
|
2011-01-25 19:28:26 +00:00
|
|
|
class SessionAuthenticationStrategy implements SessionAuthenticationStrategyInterface
|
|
|
|
{
|
|
|
|
const NONE = 'none';
|
|
|
|
const MIGRATE = 'migrate';
|
|
|
|
const INVALIDATE = 'invalidate';
|
|
|
|
|
2011-03-07 17:17:46 +00:00
|
|
|
private $strategy;
|
2011-01-25 19:28:26 +00:00
|
|
|
|
|
|
|
public function __construct($strategy)
|
|
|
|
{
|
|
|
|
$this->strategy = $strategy;
|
|
|
|
}
|
|
|
|
|
2011-01-27 07:34:19 +00:00
|
|
|
/**
|
|
|
|
* {@inheritDoc}
|
|
|
|
*/
|
2011-01-25 19:28:26 +00:00
|
|
|
public function onAuthentication(Request $request, TokenInterface $token)
|
|
|
|
{
|
|
|
|
switch ($this->strategy) {
|
|
|
|
case self::NONE:
|
|
|
|
return;
|
|
|
|
|
|
|
|
case self::MIGRATE:
|
|
|
|
$request->getSession()->migrate();
|
2011-06-08 11:12:55 +01:00
|
|
|
|
2011-01-26 20:34:11 +00:00
|
|
|
return;
|
2011-01-25 19:28:26 +00:00
|
|
|
|
|
|
|
case self::INVALIDATE:
|
|
|
|
$request->getSession()->invalidate();
|
2011-06-08 11:12:55 +01:00
|
|
|
|
2011-01-26 20:34:11 +00:00
|
|
|
return;
|
2011-01-25 19:28:26 +00:00
|
|
|
|
|
|
|
default:
|
|
|
|
throw new \RuntimeException(sprintf('Invalid session authentication strategy "%s"', $this->strategy));
|
|
|
|
}
|
|
|
|
}
|
2011-06-08 11:16:48 +01:00
|
|
|
}
|