maj: sémantique, révision vérification ppassword

2022-12-14 16:38:46 +01:00
parent 52ecbae0c5
commit 441c0f563c
28 changed files with 314 additions and 207 deletions
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@ -2,11 +2,16 @@ security:
    enable_authenticator_manager: true
    # https://symfony.com/doc/current/security.html#registering-the-user-hashing-passwords
    password_hashers:
-        Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface: 'auto'
+        app_hasher:
+                # the service ID of your custom hasher (the FQCN using the default services.yaml)
+            id: 'App\Security\Hasher\PasswordEncoder'
+        # App\Entity\User: 'sha256'
+        # Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface:
+        #     algorithm: 'sha256'
    # https://symfony.com/doc/current/security.html#loading-the-user-the-user-provider
    providers:
        pdo_user_provider:
-            id: App\Security\PdoUserProvider
+            id: App\Security\SQLLoginUserProvider
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
@ -16,7 +21,7 @@ security:
            stateless: false
            provider: pdo_user_provider
            custom_authenticators:
-                - App\Security\PdoUserAuthenticator
+                - App\Security\SQLLoginUserAuthenticator

            entry_point: form_login
            form_login:
--- a/config/packages/twig.yaml
+++ b/config/packages/twig.yaml
@ -1,9 +1,9 @@
 twig:
+    globals:
+        locales: "%app.supported_locales%"
    default_path: '%kernel.project_dir%/templates'
    form_themes:
        - 'bootstrap_5_layout.html.twig'
-    globals:
-        locales: "%app.supported_locales%"
 when@test:
    twig:
        strict_variables: true
--- a/config/pdo_configuration/pdo.yaml
+++ b/config/pdo_configuration/pdo.yaml
@ -1,8 +0,0 @@
-pdo: 
-  column_login_name: email
-  column_password_name: password
-  table_name: usager
-  data_to_fetch:
-    - email
-    - lastname
-    - firstname
--- a/config/services.yaml
+++ b/config/services.yaml
@ -24,6 +24,9 @@ parameters:
    env(APP_LOCALES): "fr,en"
    locales: '%env(APP_LOCALES)%'
    app.supported_locales: ~
+
+    env(PEPPER): "257d62c24cd352c21b51c26dba678c8ff05011a89022aec106185bf67c69aa8b"
+    pepper: '%env(resolve:PEPPER)%'
 services:
    # default configuration for services in *this* file
    _defaults:
@ -39,11 +42,11 @@ services:
            - '../src/Entity/'
            - '../src/Kernel.php'
    
-    App\Security\PdoUserAuthenticator:
+    App\Security\SQLLoginUserAuthenticator:
        arguments:
            $baseUrl: '%base_url%'

-    App\Pdo\PdoRequest:
+    App\SQLLogin\SQLLoginRequest:
        arguments:
            $config: []
            $dsn: "%database.dsn%"
@ -58,5 +61,10 @@ services:
    App\EventListener\LocaleSubscriber:
        arguments:
            $defaultLocale: "%default_locale%"
+
+    App\Security\Hasher\PasswordEncoder:
+        arguments:
+            $pepper: '%pepper%'
+            $hashAlgo: '%hashAlgo%'
    # add more service definitions when explicit configuration is needed
    # please note that last definitions always *replace* previous ones
--- a/config/sql_login_configuration/sql_login.yaml
+++ b/config/sql_login_configuration/sql_login.yaml
@ -0,0 +1,9 @@
+sql_login: 
+  login_column_name: email
+  password_column_name: password
+  salt_column_name: salt
+  table_name: usager
+  data_to_fetch:
+    - email
+    - lastname
+    - firstname