service-bundle/Resources/doc/Security.md

### Authentication

Example security configuration:

```yaml
security:
    hide_user_not_found: false
    providers:
        connection:
            entity: { class: App\Entity\Connection, property: clientId }
    firewalls:
        dev:
            pattern: ^/(_(profiler|wdt)|css|images|js)/
            security: false
        simple-connection:
            pattern: ^/simple-connection
            stateless: true
            security: false
        callback:
            pattern: ^/callback
            provider: connection
            stateless: true
            custom_authenticators:
                - RetailCrm\ServiceBundle\Security\CallbackClientAuthenticator
        front:
            pattern: ^/auth
            provider: connection
            stateless: false
            remember_me:
                secret: '%kernel.secret%'
                lifetime: 604800 # 1 week in seconds
                signature_properties: ['clientId']
                always_remember_me: true
            custom_authenticators:
                - RetailCrm\ServiceBundle\Security\FrontApiClientAuthenticator
        main:
            pattern: ^/
            lazy: true

    access_control:
        - { path: ^/front, roles: IS_AUTHENTICATED_REMEMBERED }
        - { path: ^/simple-connection, roles: PUBLIC_ACCESS }
```

Login controller will be called after the authenticator successfully authenticates the user. You can get the authenticated user, generate a token (or whatever you need to return) and return response:

```php

    use App\Entity\User;
    use Symfony\Component\Security\Http\Attribute\CurrentUser;

    class ApiLoginController extends AbstractController
    {
        #[Route('/auth', name: 'auth')]
        public function auth(#[CurrentUser] ?User $user): Response
        {
            $token = ...; // somehow create an API token for $user
 
            return $this->json([
                'user'  => $user->getUserIdentifier(),
                'token' => $token,
            ]);
        }
    }

```

The <code>#[CurrentUser]</code> can only be used in controller arguments to retrieve the authenticated user. In services, you would use getUser().
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`### Authentication`

			`Example security configuration:`

			```yaml
			`security:`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`hide_user_not_found: false`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`providers:`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`connection:`
			`entity: { class: App\Entity\Connection, property: clientId }`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`firewalls:`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`dev:`
			`pattern: ^/(_(profiler\|wdt)\|css\|images\|js)/`
			`security: false`
			`simple-connection:`
			`pattern: ^/simple-connection`
			`stateless: true`
			`security: false`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`callback:`
			`pattern: ^/callback`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`provider: connection`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`stateless: true`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`custom_authenticators:`
			`- RetailCrm\ServiceBundle\Security\CallbackClientAuthenticator`
			`front:`
Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`pattern: ^/auth`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`provider: connection`
			`stateless: false`
			`remember_me:`
			`secret: '%kernel.secret%'`
			`lifetime: 604800 # 1 week in seconds`
Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`signature_properties: ['clientId']`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`always_remember_me: true`
			`custom_authenticators:`
			`- RetailCrm\ServiceBundle\Security\FrontApiClientAuthenticator`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`main:`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`pattern: ^/`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`lazy: true`

			`access_control:`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`- { path: ^/front, roles: IS_AUTHENTICATED_REMEMBERED }`
			`- { path: ^/simple-connection, roles: PUBLIC_ACCESS }`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			```

Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`Login controller will be called after the authenticator successfully authenticates the user. You can get the authenticated user, generate a token (or whatever you need to return) and return response:`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00
			```php

Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`use App\Entity\User;`
			`use Symfony\Component\Security\Http\Attribute\CurrentUser;`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00
Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`class ApiLoginController extends AbstractController`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`{`
Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00			`#[Route('/auth', name: 'auth')]`
			`public function auth(#[CurrentUser] ?User $user): Response`
			`{`
			`$token = ...; // somehow create an API token for $user`

			`return $this->json([`
			`'user' => $user->getUserIdentifier(),`
			`'token' => $token,`
			`]);`
Update aunthenticators 2022-07-19 16:27:00 +03:00			`}`
Message handlers for symfony messenger 2021-03-31 11:00:48 +03:00			`}`

			```
Fix authenticators and dependecy injection 2022-07-21 13:02:32 +03:00
			`The <code>#[CurrentUser]</code> can only be used in controller arguments to retrieve the authenticated user. In services, you would use getUser().`