Added a command to encode a password

saro0h · saro0h · commit 68b50d1ab78e · 2014-12-03T01:07:31.000+01:00
diff --git a/src/Symfony/Bundle/SecurityBundle/Command/UserPasswordEncoderCommand.php b/src/Symfony/Bundle/SecurityBundle/Command/UserPasswordEncoderCommand.php
@@ -0,0 +1,150 @@
+<?php
+
+/*
+ * This file is part of the Symfony package.
+ *
+ * (c) Fabien Potencier <fabien@symfony.com>
+ *
+ * For the full copyright and license information, please view the LICENSE
+ * file that was distributed with this source code.
+ */
+
+namespace Symfony\Bundle\SecurityBundle\Command;
+
+use Symfony\Bundle\FrameworkBundle\Command\ContainerAwareCommand;
+use Symfony\Component\Console\Input\InputInterface;
+use Symfony\Component\Console\Output\OutputInterface;
+use Symfony\Component\Console\Question\Question;
+use Symfony\Component\Console\Input\InputOption;
+use Symfony\Component\Console\Helper\Table;
+
+/**
+ * Encode a user's password
+ *
+ * @author Sarah Khalil <mkhalil.sarah@gmail.com>
+ */
+class UserPasswordEncoderCommand extends ContainerAwareCommand
+{
+    /**
+     * {@inheritdoc}
+     */
+    protected function configure()
+    {
+        $this
+            ->setName('security:encode-password')
+            ->setDescription('Encode a password.')
+            ->addOption('show-password', null, InputOption::VALUE_NONE, 'Show raw password.')
+            ->setHelp(<<<EOF
+The <info>%command.name%</info> command allows to encode a password using encoders
+that are configured in the application security.yml file.
+
+EOF
+            )
+        ;
+    }
+
+    /**
+     * {@inheritdoc}
+     */
+    protected function execute(InputInterface $input, OutputInterface $output)
+    {
+        $passwordQuestion = $this->createPasswordQuestion($input, $output);
+        $saltQuestion = $this->createSaltQuestion($input, $output);
+        $userClassQuestion = $this->createUserClassQuestion($input, $output);
+
+        $helper = $this->getHelper('question');
+        $password = $helper->ask($input, $output, $passwordQuestion);
+        $salt = $helper->ask($input, $output, $saltQuestion);
+        $output->writeln("\n <info>Encoders are configured by user type in the security.yml file.</info>");
+        $userClass = $helper->ask($input, $output, $userClassQuestion);
+
+        $encoder = $this->getContainer()->get('security.encoder_factory')->getEncoder($userClass);
+        $encodedPassword = $encoder->encodePassword($password, $salt);
+
+        $table = new Table($output);
+        $table
+            ->setHeaders(array('Key', 'Value'))
+            ->addRow(array('Raw password', $input->getOption('show-password') ? $password : str_repeat('*', mb_strlen($password))))
+            ->addRow(array('Salt', $salt))
+            ->addRow(array('Encoded password', $encodedPassword))
+        ;
+
+        $table->render();
+    }
+
+    /**
+     * Create the password question to ask the user for the password to be encoded.
+     *
+     * @param InputInterface  $input
+     * @param OutputInterface $output
+     *
+     * @return Question
+     */
+    private function createPasswordQuestion(InputInterface $input, OutputInterface $output)
+    {
+        $passwordQuestion = new Question('<question>Type the password you want to encode please:</question> ');
+
+        $passwordQuestion->setValidator(function ($value) {
+            if (trim($value) == '') {
+                throw new \Exception('The password must not be empty.');
+            }
+
+            return $value;
+        });
+        $passwordQuestion->setHidden(true);
+        $passwordQuestion->setMaxAttempts(20);
+
+        return $passwordQuestion;
+    }
+
+    /**
+     * Create the question that asks for the salt to perform the encoding.
+     * If there is no provided salt, a random one is automatically generated.
+     *
+     * @param InputInterface  $input
+     * @param OutputInterface $output
+     *
+     * @return Question
+     */
+    private function createSaltQuestion(InputInterface $input, OutputInterface $output)
+    {
+        $saltQuestion = new Question('<question>Provide a salt (if none, a salt will be generated):</question> ');
+
+        $saltQuestion->setValidator(function ($value) use ($output) {
+            if (trim($value) == '') {
+                $value = hash('sha512', $this->getContainer()->get('security.secure_random')->nextBytes(30));
+
+                $output->writeln("\n<comment>The salt has been generated: </comment>".$value);
+                $output->writeln(sprintf("<comment>Make sure that your salt storage field fits this salt length: %s chars.</comment>\n", strlen($value)));
+            }
+
+            return $value;
+        });
+
+        return $saltQuestion;
+    }
+
+    /**
+     * Create the question that asks for the configured user class.
+     *
+     * @param InputInterface  $input
+     * @param OutputInterface $output
+     *
+     * @return Question
+     */
+    private function createUserClassQuestion(InputInterface $input, OutputInterface $output)
+    {
+        $userClassQuestion = new Question('<question>Provide your configured user class:</question> ');
+        $userClassQuestion->setAutocompleterValues(array('Symfony\Component\Security\Core\User\User'));
+        $userClassQuestion->setValidator(function ($value) use ($output) {
+            if (trim($value) == '') {
+                $value = 'Symfony\Component\Security\Core\User\User';
+                $output->writeln('<info>You did not provide any user class.</info> <comment>The user class used is: Symfony\Component\Security\Core\User\User</comment>');
+            }
+
+            return $value;
+        });
+
+        return $userClassQuestion;
+    }
+}
