<?php
/*
* This file is part of the Symfony package.
*
* (c) Fabien Potencier <[email protected]>
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
namespace Symfony\Component\Security\Core;
use Psr\Container\ContainerInterface;
use Symfony\Component\Security\Core\Authentication\Token\TokenInterface;
use Symfony\Component\Security\Core\Authorization\AuthorizationCheckerInterface;
use Symfony\Component\Security\Core\User\UserInterface;
/**
* Helper class for commonly-needed security tasks.
*
* @final
*/
class Security implements AuthorizationCheckerInterface
{
public const ACCESS_DENIED_ERROR = '_security.403_error';
public const AUTHENTICATION_ERROR = '_security.last_error';
public const LAST_USERNAME = '_security.last_username';
public const MAX_USERNAME_LENGTH = 4096;
private $container;
public function __construct(ContainerInterface $container)
{
$this->container = $container;
}
public function getUser(): ?UserInterface
{
if (!$token = $this->getToken()) {
return null;
}
$user = $token->getUser();
// @deprecated since Symfony 5.4, $user will always be a UserInterface instance
if (!$user instanceof UserInterface) {
return null;
}
return $user;
}
/**
* Checks if the attributes are granted against the current authentication token and optionally supplied subject.
*
* @param mixed $attributes
* @param mixed $subject
*/
public function isGranted($attributes, $subject = null): bool
{
return $this->container->get('security.authorization_checker')
->isGranted($attributes, $subject);
}
public function getToken(): ?TokenInterface
{
return $this->container->get('security.token_storage')->getToken();
}
}