* * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ namespace Symfony\Component\Security\Core; use Psr\Container\ContainerInterface; use Symfony\Component\Security\Core\Authentication\Token\TokenInterface; use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface; use Symfony\Component\Security\Core\User\UserInterface; /** * Helper class for commonly-needed security tasks. * * @final */ class Security implements AuthorizationCheckerInterface { public const ACCESS_DENIED_ERROR = '_security.403_error'; public const AUTHENTICATION_ERROR = '_security.last_error'; public const LAST_USERNAME = '_security.last_username'; public const MAX_USERNAME_LENGTH = 4096; private $container; public function __construct(ContainerInterface $container) { $this->container = $container; } public function getUser(): ?UserInterface { if (!$token = $this->getToken()) { return null; } $user = $token->getUser(); // @deprecated since Symfony 5.4, $user will always be a UserInterface instance if (!$user instanceof UserInterface) { return null; } return $user; } /** * Checks if the attributes are granted against the current authentication token and optionally supplied subject. * * @param mixed $attributes * @param mixed $subject */ public function isGranted($attributes, $subject = null): bool { return $this->container->get('security.authorization_checker') ->isGranted($attributes, $subject); } public function getToken(): ?TokenInterface { return $this->container->get('security.token_storage')->getToken(); } }