Add entry point if one or more authenticators exist on chosen firewall

Author: nikophil

src/Maker/MakeAuthenticator.php

@@ -37,10 +37,13 @@ final class MakeAuthenticator extends AbstractMaker
 
     private $configUpdater;
 
-    public function __construct(FileManager $fileManager, SecurityConfigUpdater $configUpdater)
+    private $generator;
+
+    public function __construct(FileManager $fileManager, SecurityConfigUpdater $configUpdater, Generator $generator)
     {
         $this->fileManager = $fileManager;
         $this->configUpdater = $configUpdater;
+        $this->generator = $generator;
     }
 
     public static function getCommandName(): string
@@ -69,8 +72,12 @@ public function interact(InputInterface $input, ConsoleStyle $io, Command $comma
         $securityData = $manipulator->getData();
 
         $interactiveSecurityHelper = new InteractiveSecurityHelper();
+
         $command->addOption('firewall-name', null, InputOption::VALUE_OPTIONAL, '');
         $interactiveSecurityHelper->guessFirewallName($input, $io, $securityData);
+
+        $command->addOption('entry-point', null, InputOption::VALUE_OPTIONAL);
+        $interactiveSecurityHelper->guessEntryPoint($input, $io, $this->generator, $securityData);
     }
 
     public function generate(InputInterface $input, ConsoleStyle $io, Generator $generator)
@@ -93,6 +100,7 @@ public function generate(InputInterface $input, ConsoleStyle $io, Generator $gen
                 $newYaml = $this->configUpdater->updateForAuthenticator(
                     $this->fileManager->getFileContents($path),
                     $input->getOption('firewall-name'),
+                    $input->getOption('entry-point'),
                     $classNameDetails->getFullName()
                 );
                 $generator->dumpFile($path, $newYaml);

src/Resources/config/makers.xml

@@ -10,6 +10,7 @@
             <service id="maker.maker.make_authenticator" class="Symfony\Bundle\MakerBundle\Maker\MakeAuthenticator">
                 <argument type="service" id="maker.file_manager" />
                 <argument type="service" id="maker.security_config_updater" />
+                <argument type="service" id="maker.generator" />
                 <tag name="maker.command" />
             </service>
 

src/Security/InteractiveSecurityHelper.php

@@ -11,18 +11,25 @@
 
 namespace Symfony\Bundle\MakerBundle\Security;
 
-use Symfony\Bundle\MakerBundle\ConsoleStyle;
+use Symfony\Bundle\MakerBundle\Exception\RuntimeCommandException;
+use Symfony\Bundle\MakerBundle\Generator;
 use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Style\SymfonyStyle;
 
 /**
  * @internal
  */
 final class InteractiveSecurityHelper
 {
-    public function guessFirewallName(InputInterface $input, ConsoleStyle $io, array $securityData)
+    /**
+     * @param InputInterface $input
+     * @param SymfonyStyle   $io
+     * @param array          $securityData
+     */
+    public function guessFirewallName(InputInterface $input, SymfonyStyle $io, array $securityData)
     {
         $firewalls = array_filter(
-            $securityData['security']['firewalls'],
+            $securityData['security']['firewalls'] ?? [],
             function ($item) {
                 return !isset($item['security']) || true === $item['security'];
             }
@@ -41,4 +48,47 @@ function ($item) {
         $firewallName = $io->choice('Which firewall you want to update ?', array_keys($firewalls), key($firewalls));
         $input->setOption('firewall-name', $firewallName);
     }
+
+    /**
+     * @param InputInterface $input
+     * @param SymfonyStyle   $io
+     * @param Generator      $generator
+     * @param array          $securityData
+     */
+    public function guessEntryPoint(InputInterface $input, SymfonyStyle $io, Generator $generator, array $securityData)
+    {
+        $firewallName = $input->getOption('firewall-name');
+        if (!$firewallName) {
+            throw new RuntimeCommandException("Option \"firewall-name\" must be provided.");
+        }
+
+        if (!isset($securityData['security'])) {
+            $securityData['security'] = [];
+        }
+
+        if (!isset($securityData['security']['firewalls'])) {
+            $securityData['security']['firewalls'] = [];
+        }
+
+        $firewalls = $securityData['security']['firewalls'];
+        if (!isset($firewalls[$firewallName])) {
+            throw new RuntimeCommandException("Firewall \"$firewallName\" does not exist");
+        }
+
+        if (!isset($firewalls[$firewallName]['guard'])
+            || !isset($firewalls[$firewallName]['guard']['authenticators'])
+            || !$firewalls[$firewallName]['guard']['authenticators']) {
+            return;
+        }
+
+        $authenticators = $firewalls[$firewallName]['guard']['authenticators'];
+        $classNameDetails = $generator->createClassNameDetails(
+            $input->getArgument('authenticator-class'),
+            'Security\\'
+        );
+        $authenticators[] = $classNameDetails->getFullName();
+
+        $entryPoint = $io->choice('Which authenticator will be the entry point ?', $authenticators, current($authenticators));
+        $input->setOption('entry-point', $entryPoint);
+    }
 }

src/Security/SecurityConfigUpdater.php

@@ -48,7 +48,15 @@ public function updateForUserClass(string $yamlSource, UserClassConfiguration $u
         return $contents;
     }
 
-    public function updateForAuthenticator(string $yamlSource, string $firewallName, string $userClass)
+    /**
+     * @param string $yamlSource
+     * @param string $firewallName
+     * @param string $chosenEntryPoint
+     * @param string $authenticatorClass
+     *
+     * @return string
+     */
+    public function updateForAuthenticator(string $yamlSource, string $firewallName, $chosenEntryPoint, string $authenticatorClass)
     {
         $this->manipulator = new YamlSourceManipulator($yamlSource);
 
@@ -74,10 +82,10 @@ public function updateForAuthenticator(string $yamlSource, string $firewallName,
             $firewall['guard']['authenticators'] = [];
         }
 
-        $firewall['guard']['authenticators'][] = $userClass;
+        $firewall['guard']['authenticators'][] = $authenticatorClass;
 
         if (count($firewall['guard']['authenticators']) > 1) {
-            $firewall['guard']['entry_point'] = current($firewall['guard']['authenticators']);
+            $firewall['guard']['entry_point'] = $chosenEntryPoint ?? current($firewall['guard']['authenticators']);
         }
 
         $newData['security']['firewalls'][$firewallName] = $firewall;

tests/Maker/FunctionalTest.php

@@ -342,6 +342,67 @@ function (string $output, string $directory) {
                 ),
         ];
 
+        yield 'auth_empty_existing_authenticator' => [
+            MakerTestDetails::createTest(
+                $this->getMakerInstance(MakeAuthenticator::class),
+                [
+                    // class name
+                    'AppCustomAuthenticator',
+                    1
+                ]
+            )
+                ->addExtraDependencies('security')
+                ->setFixtureFilesPath(__DIR__.'/../fixtures/MakeAuthenticatorExistingAuthenticator')
+                ->setRequiredPhpVersion(70100)
+                ->assert(
+                    function (string $output, string $directory) {
+                        $this->assertContains('Success', $output);
+
+                        $finder = new Finder();
+                        $finder->in($directory.'/src/Security')
+                            ->name('AppCustomAuthenticator.php');
+                        $this->assertCount(1, $finder);
+
+                        $securityConfig = Yaml::parse(file_get_contents("$directory/config/packages/security.yaml"));
+                        $this->assertEquals(
+                            'App\\Security\\AppCustomAuthenticator',
+                            $securityConfig['security']['firewalls']['main']['guard']['entry_point']
+                        );
+                    }
+                ),
+        ];
+
+        yield 'auth_empty_multiple_firewalls_existing_authenticator' => [
+            MakerTestDetails::createTest(
+                $this->getMakerInstance(MakeAuthenticator::class),
+                [
+                    // class name
+                    'AppCustomAuthenticator',
+                    1,
+                    1
+                ]
+            )
+                ->addExtraDependencies('security')
+                ->setFixtureFilesPath(__DIR__.'/../fixtures/MakeAuthenticatorMultipleFirewallsExistingAuthenticator')
+                ->setRequiredPhpVersion(70100)
+                ->assert(
+                    function (string $output, string $directory) {
+                        $this->assertContains('Success', $output);
+
+                        $finder = new Finder();
+                        $finder->in($directory.'/src/Security')
+                            ->name('AppCustomAuthenticator.php');
+                        $this->assertCount(1, $finder);
+
+                        $securityConfig = Yaml::parse(file_get_contents("$directory/config/packages/security.yaml"));
+                        $this->assertEquals(
+                            'App\\Security\\AppCustomAuthenticator',
+                            $securityConfig['security']['firewalls']['second']['guard']['entry_point']
+                        );
+                    }
+                ),
+        ];
+
         yield 'user_security_entity_with_password' => [MakerTestDetails::createTest(
             $this->getMakerInstance(MakeUser::class),
             [

tests/Security/InteractiveSecurityHelperTest.php

@@ -0,0 +1,175 @@
+<?php
+
+namespace Symfony\Bundle\MakerBundle\Tests\Security;
+
+use PHPUnit\Framework\TestCase;
+use Symfony\Bundle\MakerBundle\Generator;
+use Symfony\Bundle\MakerBundle\Security\InteractiveSecurityHelper;
+use Symfony\Bundle\MakerBundle\Util\ClassNameDetails;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Style\SymfonyStyle;
+
+class InteractiveSecurityHelperTest extends TestCase
+{
+    /**
+     * @dataProvider getFirewallNameTests
+     *
+     * @param array  $securityData
+     * @param string $expectedFirewallName
+     * @param bool   $multipleValues
+     */
+    public function testGuessFirewallName(array $securityData, string $expectedFirewallName, $multipleValues = false)
+    {
+        /** @var InputInterface|\PHPUnit_Framework_MockObject_MockObject $input */
+        $input = $this->createMock(InputInterface::class);
+        $input->expects($this->once())
+            ->method('setOption')
+            ->with('firewall-name', $expectedFirewallName);
+
+        /** @var SymfonyStyle|\PHPUnit_Framework_MockObject_MockObject $io */
+        $io = $this->createMock(SymfonyStyle::class);
+        $io->expects($this->exactly(false === $multipleValues ? 0 : 1))
+            ->method('choice')
+            ->willReturn($expectedFirewallName);
+
+        $helper = new InteractiveSecurityHelper();
+        $helper->guessFirewallName($input, $io, $securityData);
+    }
+
+    public function getFirewallNameTests()
+    {
+        yield 'empty_security' => [
+            [],
+            'main',
+        ];
+
+        yield 'no_firewall' => [
+            ['security' => ['firewalls' => []]],
+            'main',
+        ];
+
+        yield 'no_secured_firewall' => [
+            ['security' => ['firewalls' => ['dev' => ['security' => false]]]],
+            'main',
+        ];
+
+        yield 'main_firewall' => [
+            ['security' => ['firewalls' => ['dev' => ['security' => false], 'main' => null]]],
+            'main',
+        ];
+
+        yield 'foo_firewall' => [
+            ['security' => ['firewalls' => ['dev' => ['security' => false], 'foo' => null]]],
+            'foo',
+        ];
+
+        yield 'foo_bar_firewalls_1' => [
+            ['security' => ['firewalls' => ['dev' => ['security' => false], 'foo' => null, 'bar' => null]]],
+            'foo',
+            true,
+        ];
+
+        yield 'foo_bar_firewalls_2' => [
+            ['security' => ['firewalls' => ['dev' => ['security' => false], 'foo' => null, 'bar' => null]]],
+            'bar',
+            true,
+        ];
+    }
+
+    /**
+     * @expectedException \Symfony\Bundle\MakerBundle\Exception\RuntimeCommandException
+     */
+    public function testGuessEntryPointWithNoFirewallNameThrowsException()
+    {
+        /** @var InputInterface|\PHPUnit_Framework_MockObject_MockObject $input */
+        $input = $this->createMock(InputInterface::class);
+
+        /** @var SymfonyStyle|\PHPUnit_Framework_MockObject_MockObject $io */
+        $io = $this->createMock(SymfonyStyle::class);
+
+        /** @var Generator|\PHPUnit_Framework_MockObject_MockObject $generator */
+        $generator = $this->createMock(Generator::class);
+
+        $helper = new InteractiveSecurityHelper();
+        $helper->guessEntryPoint($input, $io, $generator, []);
+    }
+
+    /**
+     * @expectedException \Symfony\Bundle\MakerBundle\Exception\RuntimeCommandException
+     */
+    public function testGuessEntryPointWithNonExistingFirewallThrowsException()
+    {
+        /** @var InputInterface|\PHPUnit_Framework_MockObject_MockObject $input */
+        $input = $this->createMock(InputInterface::class);
+        $input->expects($this->once())
+            ->method('getOption')
+            ->with('firewall-name')
+            ->willReturn('foo');
+
+        /** @var SymfonyStyle|\PHPUnit_Framework_MockObject_MockObject $io */
+        $io = $this->createMock(SymfonyStyle::class);
+
+        /** @var Generator|\PHPUnit_Framework_MockObject_MockObject $generator */
+        $generator = $this->createMock(Generator::class);
+
+        $helper = new InteractiveSecurityHelper();
+        $helper->guessEntryPoint($input, $io, $generator, []);
+    }
+
+    /**
+     * @dataProvider getEntryPointTests
+     */
+    public function testGuestEntryPoint(array $securityData, string $firewallName, bool $multipleAuthenticators = false)
+    {
+        /** @var InputInterface|\PHPUnit_Framework_MockObject_MockObject $input */
+        $input = $this->createMock(InputInterface::class);
+        $input->expects($this->once())
+            ->method('getOption')
+            ->with('firewall-name')
+            ->willReturn($firewallName);
+
+        $input->expects($this->exactly(false === $multipleAuthenticators ? 0 : 1))
+            ->method('getArgument')
+            ->with('authenticator-class')
+            ->willReturn('NewAuthenticator');
+
+
+        /** @var SymfonyStyle|\PHPUnit_Framework_MockObject_MockObject $io */
+        $io = $this->createMock(SymfonyStyle::class);
+        $io->expects($this->exactly(false === $multipleAuthenticators ? 0 : 1))
+            ->method('choice');
+
+        /** @var Generator|\PHPUnit_Framework_MockObject_MockObject $generator */
+        $generator = $this->createMock(Generator::class);
+        $generator->expects($this->exactly(false === $multipleAuthenticators ? 0 : 1))
+            ->method('createClassNameDetails')
+            ->willReturn(new ClassNameDetails('App\\Security\\NewAuthenticator', 'App\\Security'));
+
+        $helper = new InteractiveSecurityHelper();
+        $helper->guessEntryPoint($input, $io, $generator, $securityData);
+    }
+
+    public function getEntryPointTests()
+    {
+        yield 'no_guard' => [
+            ['security' => ['firewalls' => ['main' => []]]],
+            'main'
+        ];
+
+        yield 'no_authenticators_key' => [
+            ['security' => ['firewalls' => ['main' => ['guard' => []]]]],
+            'main'
+        ];
+
+        yield 'no_authenticator' => [
+            ['security' => ['firewalls' => ['main' => ['guard' => ['authenticators' => []]]]]],
+            'main'
+        ];
+
+        yield 'one_authenticator' => [
+            ['security' => ['firewalls' => ['main' => ['guard' => ['authenticators' => ['App\\Security\\Authenticator']]]]]],
+            'main',
+            true
+        ];
+    }
+}