cosmonova-rnd/auth

Simple OAuth 2 library for Symfony projects

Maintainers

Details

github.com/CosmonovaRnD/Auth

Source

Issues

Installs: 8

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 2

Forks: 0

Open Issues: 0

0.7.2 2018-01-15 13:17 UTC

Requires

MIT 171f72d17161c002a2032730ac409f73dcf9ef47

  • Aleksandr Besedin <bs.woop@cosmonova.net>

This package is not auto-updated.

Last update: 2024-04-28 02:48:07 UTC

README

At this time, library allow to auth using JWT with OAuth2 Authorization Code flow.

Installation

Install package using composer

composer req cosmonova-rnd/auth

Basic configuration

  1. Enable session handler in your application
framework:
    session:
        handler_id: ~
  1. Configure DB connection, then add new entity manager auth to your application config
doctrine:
    orm:
        entity_managers:
            auth:
                connection: default ## may be your custom connection
                default_repository_class: 'CosmonovaRnD\Auth\Repository\UserRepository'
                mappings:
                    Auth:
                        is_bundle: false
                        type: annotation
                        dir: '%kernel.project_dir%/vendor/cosmonova-rnd/auth/src/Entity'
                        prefix: 'CosmonovaRnD\Auth\Entity'
                        alias: Auth
  1. Configure encoder and provider in security section
security:
    encoders:
        CosmonovaRnD\Auth\Entity\User:
            algorithm: plaintext
    providers:
        auth_provider:
            id: CosmonovaRnD\Auth\Security\UserProvider

Configuration of authentication through OAuth2 service (authorization_code flow)

  1. Configure your main firewall to use package provider and set login form config like bellow
security:
    firewalls:
        main:
            ### If you want to use OAuth2 Access Code authentication flow
            provider: auth_provider
            anonymous: ~
            logout: ~
            form_login:
                login_path: auth
                check_path: auth
  1. Add access control rules
access_control:
    - { path: ^/auth, roles: IS_AUTHENTICATED_ANONYMOUSLY }
    - { path: ^/, roles: IS_AUTHENTICATED_FULLY }

Configuration for checking authentication using JSON Web Token

In this case we use Authorization: Bearer <MY JWT> header

  1. Configure any provider (such like a memory)
security:
    providers:
        in_memory: { memory: ~ }
  1. Then add to your main firewall this provider and guard authenticator
security:
    firewalls:
        main:
            provider: in_memory
            guard:
                authenticators:
                    - CosmonovaRnD\Auth\Security\Authenticator\JwtAuthenticator
            stateless: true
  1. Also configure your access rules if needed
access_control:
    - { path: ^/, roles: IS_AUTHENTICATED_FULLY }

@ Cosmonova | Research & Development