Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Issue #3444978 by catch, Berdir: UserAuth BC layer is not working for modules that use it to provide email based logins

merge-requests/7963/head
Dave Long 2024-05-08 10:22:38 +01:00
parent 32b8344b7f
commit 26208e91c0
No known key found for this signature in database
GPG Key ID: ED52AE211E142771
4 changed files with 104 additions and 36 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
core/modules/user/src/Form/UserLoginForm.php
View File

@ -232,10 +232,10 @@ class UserLoginForm extends FormBase {
if ($this->userAuth instanceof UserAuthenticationInterface) {
$form_state->set('uid', $this->userAuth->authenticateAccount($account, $password) ? $account->id() : FALSE);
}
else {
$uid = $this->userAuth->authenticate($form_state->getValue('name'), $password);
$form_state->set('uid', $uid);
}
}
elseif (!$this->userAuth instanceof UserAuthenticationInterface) {
$uid = $this->userAuth->authenticate($form_state->getValue('name'), $password);
$form_state->set('uid', $uid);
}
}
}

42
core/modules/user/src/UserAuth.php
View File

@ -8,7 +8,7 @@ use Drupal\Core\Password\PasswordInterface;
/**
* Validates user authentication credentials.
*/
class UserAuth implements UserAuthInterface, UserAuthenticationInterface {
class UserAuth implements UserAuthInterface {
/**
* The entity type manager.
@ -33,6 +33,7 @@ class UserAuth implements UserAuthInterface, UserAuthenticationInterface {
* The password service.
*/
public function __construct(EntityTypeManagerInterface $entity_type_manager, PasswordInterface $password_checker) {
@trigger_error(__CLASS__ . ' is deprecated in drupal:10.3.0 and will be removed from drupal:12.0.0. Implement \Drupal\user\UserAuthenticationInterface instead. See https://www.drupal.org/node/3411040');
$this->entityTypeManager = $entity_type_manager;
$this->passwordChecker = $password_checker;
}
@ -48,41 +49,20 @@ class UserAuth implements UserAuthInterface, UserAuthenticationInterface {
$account_search = $this->entityTypeManager->getStorage('user')->loadByProperties(['name' => $username]);
if ($account = reset($account_search)) {
if ($this->authenticateAccount($account, $password)) {
if ($this->passwordChecker->check($password, $account->getPassword())) {
// Successful authentication.
$uid = $account->id();
// Update user to new password scheme if needed.
if ($this->passwordChecker->needsRehash($account->getPassword())) {
$account->setPassword($password);
$account->save();
}
}
}
}
return $uid;
}
/**
* {@inheritdoc}
*/
public function lookupAccount($identifier): UserInterface|false {
if (!empty($identifier)) {
$account_search = $this->entityTypeManager->getStorage('user')->loadByProperties(['name' => $identifier]);
if ($account = reset($account_search)) {
return $account;
}
}
return FALSE;
}
/**
* {@inheritdoc}
*/
public function authenticateAccount(UserInterface $account, #[\SensitiveParameter] string $password): bool {
if ($this->passwordChecker->check($password, $account->getPassword())) {
// Update user to new password scheme if needed.
if ($this->passwordChecker->needsRehash($account->getPassword())) {
$account->setPassword($password);
$account->save();
}
return TRUE;
}
return FALSE;
}
}

88
core/modules/user/src/UserAuthentication.php Normal file
View File

@ -0,0 +1,88 @@
<?php
namespace Drupal\user;
use Drupal\Core\Entity\EntityTypeManagerInterface;
use Drupal\Core\Password\PasswordInterface;
/**
* Validates user authentication credentials.
*/
class UserAuthentication implements UserAuthInterface, UserAuthenticationInterface {
/**
* The entity type manager.
*
* @var \Drupal\Core\Entity\EntityTypeManagerInterface
*/
protected $entityTypeManager;
/**
* The password hashing service.
*
* @var \Drupal\Core\Password\PasswordInterface
*/
protected $passwordChecker;
/**
* Constructs a UserAuth object.
*
* @param \Drupal\Core\Entity\EntityTypeManagerInterface $entity_type_manager
* The entity type manager.
* @param \Drupal\Core\Password\PasswordInterface $password_checker
* The password service.
*/
public function __construct(EntityTypeManagerInterface $entity_type_manager, PasswordInterface $password_checker) {
$this->entityTypeManager = $entity_type_manager;
$this->passwordChecker = $password_checker;
}
/**
* {@inheritdoc}
*/
public function authenticate($username, #[\SensitiveParameter] $password) {
@trigger_error(__METHOD__ . ' is deprecated in drupal:10.3.0 and will be removed from drupal:12.0.0. Implement \Drupal\user\UserAuthenticationInterface instead. See https://www.drupal.org/node/3411040');
$uid = FALSE;
if (!empty($username) && strlen($password) > 0) {
$account_search = $this->entityTypeManager->getStorage('user')->loadByProperties(['name' => $username]);
if ($account = reset($account_search)) {
if ($this->authenticateAccount($account, $password)) {
$uid = $account->id();
}
}
}
return $uid;
}
/**
* {@inheritdoc}
*/
public function lookupAccount($identifier): UserInterface|false {
if (!empty($identifier)) {
$account_search = $this->entityTypeManager->getStorage('user')->loadByProperties(['name' => $identifier]);
if ($account = reset($account_search)) {
return $account;
}
}
return FALSE;
}
/**
* {@inheritdoc}
*/
public function authenticateAccount(UserInterface $account, #[\SensitiveParameter] string $password): bool {
if ($this->passwordChecker->check($password, $account->getPassword())) {
// Update user to new password scheme if needed.
if ($this->passwordChecker->needsRehash($account->getPassword())) {
$account->setPassword($password);
$account->save();
}
return TRUE;
}
return FALSE;
}
}

2
core/modules/user/user.services.yml
View File

@ -43,7 +43,7 @@ services:
tags:
- { name: theme_negotiator, priority: -40 }
user.auth:
class: Drupal\user\UserAuth
class: Drupal\user\UserAuthentication
arguments: ['@entity_type.manager', '@password']
Drupal\user\UserAuthInterface: '@user.auth'
user.permissions: