eZ\Publish\Core\REST\Server\Controller\SessionController::createSessionAction PHP Method

SessionController Class Documentation Usage Examples Of eZ\Publish\Core\REST\Server\Controller\SessionController::createSessionAction Datei anzeigen Open project: ezsystems/ezpublish-kernel

createSessionAction() public method

Creates a new session based on the credentials provided as POST parameters.

public createSessionAction ( Request $request ) : UserSession \| eZ\Publish\Core\REST\Server\Values\Conflict
$request	Symfony\Component\HttpFoundation\Request
return	eZ\Publish\Core\REST\Server\Values\UserSession \| eZ\Publish\Core\REST\Server\Values\Conflict

    public function createSessionAction(Request $request)
    {
        /** @var $sessionInput \eZ\Publish\Core\REST\Server\Values\SessionInput */
        $sessionInput = $this->inputDispatcher->parse(new Message(array('Content-Type' => $request->headers->get('Content-Type')), $request->getContent()));
        $request->attributes->set('username', $sessionInput->login);
        $request->attributes->set('password', $sessionInput->password);
        try {
            $session = $request->getSession();
            if ($session->isStarted() && $this->hasStoredCsrfToken()) {
                $this->checkCsrfToken($request);
            }
            $token = $this->authenticator->authenticate($request);
            $csrfToken = $this->getCsrfToken();
            return new Values\UserSession($token->getUser()->getAPIUser(), $session->getName(), $session->getId(), $csrfToken, !$token->hasAttribute('isFromSession'));
        } catch (Exceptions\UserConflictException $e) {
            // Already logged in with another user, this will be converted to HTTP status 409
            return new Values\Conflict();
        } catch (AuthenticationException $e) {
            throw new UnauthorizedException('Invalid login or password', $request->getPathInfo());
        } catch (AccessDeniedException $e) {
            throw new UnauthorizedException($e->getMessage(), $request->getPathInfo());
        }
    }

Usage Example

Beispiel #1

Datei anzeigen

Datei: User.php Projekt: ezsystems/ezpublish-kernel

 /**
  * Creates a new session based on the credentials provided as POST parameters.
  *
  * @throws \eZ\Publish\Core\Base\Exceptions\UnauthorizedException If the login or password are incorrect or invalid CSRF
  *
  * @return Values\UserSession|Values\Conflict
  *
  * @deprecated Deprecated since 6.5. Use SessionController::refreshSessionAction().
  */
 public function createSession(Request $request)
 {
     @trigger_error(E_USER_DEPRECATED, 'The session actions from the User controller are deprecated since 6.5. Use the SessionController instead.');
     return $this->sessionController->createSessionAction($request);
 }

SessionController

__construct

checkCsrfToken

createSessionAction

deleteSessionAction

getCsrfToken

hasStoredCsrfToken

refreshSessionAction