vendor/symfony/password-hasher/Hasher/UserPasswordHasher.php line 99

Open in your IDE?
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <[email protected]>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\PasswordHasher\Hasher;
  14. use Symfony\Component\Security\Core\User\LegacyPasswordAuthenticatedUserInterface;
  15. use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface;
  16. use Symfony\Component\Security\Core\User\UserInterface;
  18. /**
  19. * Hashes passwords based on the user and the PasswordHasherFactory.
  20. *
  21. * @author Ariel Ferrandini <[email protected]>
  22. *
  23. * @final
  24. */
  25. class UserPasswordHasher implements UserPasswordHasherInterface
  26. {
  27. private $hasherFactory;
  29. public function __construct(PasswordHasherFactoryInterface $hasherFactory)
  30. {
  31. $this->hasherFactory = $hasherFactory;
  32. }
  34. /**
  35. * @param PasswordAuthenticatedUserInterface $user
  36. */
  37. public function hashPassword($user, string $plainPassword): string
  38. {
  39. if (!$user instanceof PasswordAuthenticatedUserInterface) {
  40. if (!$user instanceof UserInterface) {
  41. throw new \TypeError(sprintf('Expected an instance of "%s" as first argument, but got "%s".', UserInterface::class, get_debug_type($user)));
  42. }
  43. trigger_deprecation('symfony/password-hasher', '5.3', 'The "%s()" method expects a "%s" instance as first argument. Not implementing it in class "%s" is deprecated.', __METHOD__, PasswordAuthenticatedUserInterface::class, get_debug_type($user));
  44. }
  46. $salt = null;
  48. if ($user instanceof LegacyPasswordAuthenticatedUserInterface) {
  49. $salt = $user->getSalt();
  50. } elseif ($user instanceof UserInterface) {
  51. $salt = method_exists($user, 'getSalt') ? $user->getSalt() : null;
  53. if ($salt) {
  54. trigger_deprecation('symfony/password-hasher', '5.3', 'Returning a string from "getSalt()" without implementing the "%s" interface is deprecated, the "%s" class should implement it.', LegacyPasswordAuthenticatedUserInterface::class, get_debug_type($user));
  55. }
  56. }
  58. $hasher = $this->hasherFactory->getPasswordHasher($user);
  60. return $hasher->hash($plainPassword, $salt);
  61. }
  63. /**
  64. * @param PasswordAuthenticatedUserInterface $user
  65. */
  66. public function isPasswordValid($user, string $plainPassword): bool
  67. {
  68. if (!$user instanceof PasswordAuthenticatedUserInterface) {
  69. if (!$user instanceof UserInterface) {
  70. throw new \TypeError(sprintf('Expected an instance of "%s" as first argument, but got "%s".', UserInterface::class, get_debug_type($user)));
  71. }
  72. trigger_deprecation('symfony/password-hasher', '5.3', 'The "%s()" method expects a "%s" instance as first argument. Not implementing it in class "%s" is deprecated.', __METHOD__, PasswordAuthenticatedUserInterface::class, get_debug_type($user));
  73. }
  75. $salt = null;
  77. if ($user instanceof LegacyPasswordAuthenticatedUserInterface) {
  78. $salt = $user->getSalt();
  79. } elseif ($user instanceof UserInterface) {
  80. $salt = $user->getSalt();
  82. if (null !== $salt) {
  83. trigger_deprecation('symfony/password-hasher', '5.3', 'Returning a string from "getSalt()" without implementing the "%s" interface is deprecated, the "%s" class should implement it.', LegacyPasswordAuthenticatedUserInterface::class, get_debug_type($user));
  84. }
  85. }
  87. if (null === $user->getPassword()) {
  88. return false;
  89. }
  91. $hasher = $this->hasherFactory->getPasswordHasher($user);
  93. return $hasher->verify($user->getPassword(), $plainPassword, $salt);
  94. }
  96. /**
  97. * @param PasswordAuthenticatedUserInterface $user
  98. */
  99. public function needsRehash($user): bool
  100. {
  101. if (null === $user->getPassword()) {
  102. return false;
  103. }
  105. if (!$user instanceof PasswordAuthenticatedUserInterface) {
  106. if (!$user instanceof UserInterface) {
  107. throw new \TypeError(sprintf('Expected an instance of "%s" as first argument, but got "%s".', UserInterface::class, get_debug_type($user)));
  108. }
  109. trigger_deprecation('symfony/password-hasher', '5.3', 'The "%s()" method expects a "%s" instance as first argument. Not implementing it in class "%s" is deprecated.', __METHOD__, PasswordAuthenticatedUserInterface::class, get_debug_type($user));
  110. }
  112. $hasher = $this->hasherFactory->getPasswordHasher($user);
  114. return $hasher->needsRehash($user->getPassword());
  115. }
  116. }