add support symfony 6

Author: huyta888

composer.json

@@ -17,7 +17,7 @@
     "php": ">=8.0",
     "php-istio/jwt-payload-extractor": "^v1.1.1",
     "symfony/psr7-pack": "^1.0",
-    "symfony/security-bundle": "^5.3"
+    "symfony/security-bundle": "^5.3||^6.0"
   },
   "autoload": {
     "psr-4": {
@@ -30,9 +30,9 @@
     }
   },
   "require-dev": {
-    "symfony/browser-kit": "^5.3",
-    "symfony/console": "^5.3",
-    "symfony/framework-bundle": "^5.3",
-    "symfony/phpunit-bridge": "^5.3"
+    "symfony/browser-kit": "^5.3||^6.0",
+    "symfony/console": "^5.3||^6.0",
+    "symfony/framework-bundle": "^5.3||^6.0",
+    "symfony/phpunit-bridge": "^5.3||^6.0"
   }
 }

src/Authenticator/Authenticator.php

@@ -19,7 +19,7 @@
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 use Symfony\Component\Security\Http\Authenticator\AbstractAuthenticator;
 use Symfony\Component\Security\Http\Authenticator\Passport\Badge\UserBadge;
-use Symfony\Component\Security\Http\Authenticator\Passport\PassportInterface;
+use Symfony\Component\Security\Http\Authenticator\Passport\Passport;
 use Symfony\Component\Security\Http\Authenticator\Passport\SelfValidatingPassport;
 use Symfony\Component\Security\Http\EntryPoint\AuthenticationEntryPointInterface;
 
@@ -56,7 +56,7 @@ public function supports(Request $request): ?bool
         return false;
     }
 
-    public function authenticate(Request $request): PassportInterface
+    public function authenticate(Request $request): Passport
     {
         [$userIdentifierClaim, $payload] = $request->attributes->get('_user_identifier_claim_and_payload');
         $request->attributes->remove('_user_identifier_claim_and_payload');
@@ -88,17 +88,17 @@ public function onAuthenticationFailure(Request $request, AuthenticationExceptio
         throw $exception;
     }
 
-    public function createAuthenticatedToken(PassportInterface $passport, string $firewallName): TokenInterface
+    public function createToken(Passport $passport, string $firewallName): TokenInterface
     {
         /** @var SelfValidatingPassport $passport */
         $payload = $passport->getAttribute('_payload');
-        $token = parent::createAuthenticatedToken($passport, $firewallName);
+        $token = parent::createToken($passport, $firewallName);
         $token->setAttribute('jwt_payload', $payload);
 
         return $token;
     }
 
-    public function start(Request $request, AuthenticationException $authException = null)
+    public function start(Request $request, AuthenticationException $authException = null): Response
     {
         return new Response('Istio JWT in request\'s missing or invalid.', Response::HTTP_UNAUTHORIZED);
     }

src/DependencyInjection/Security/AuthenticatorFactory.php

@@ -12,7 +12,6 @@
 
 use Istio\Symfony\JWTAuthentication\Authenticator\UserIdentifierClaimMapping;
 use Symfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\AuthenticatorFactoryInterface;
-use Symfony\Bundle\SecurityBundle\DependencyInjection\Security\Factory\SecurityFactoryInterface;
 use Symfony\Component\Config\Definition\Builder\NodeDefinition;
 use Symfony\Component\Config\Definition\Exception\InvalidConfigurationException;
 use Symfony\Component\DependencyInjection\Argument\IteratorArgument;
@@ -21,39 +20,34 @@
 use Symfony\Component\DependencyInjection\Definition;
 use Symfony\Component\DependencyInjection\Reference;
 
-final class AuthenticatorFactory implements SecurityFactoryInterface, AuthenticatorFactoryInterface
+final class AuthenticatorFactory implements AuthenticatorFactoryInterface
 {
+    public const PRIORITY = -40;
+
     public function createAuthenticator(
         ContainerBuilder $container,
         string $firewallName,
         array $config,
         string $userProviderId
-    ) {
+    ): string|array {
         $authenticator = sprintf('security.authenticator.istio_jwt_authenticator.%s', $firewallName);
         $definition = new ChildDefinition('istio.jwt_authentication.authenticator');
-        $definition->replaceArgument(0, $this->createUserIdentifierClaimMappings($container, $authenticator, $config['rules']));
+        $definition->replaceArgument(
+            0,
+            $this->createUserIdentifierClaimMappings($container, $authenticator, $config['rules'])
+        );
         $definition->replaceArgument(1, new Reference($userProviderId));
         $container->setDefinition($authenticator, $definition);
 
         return $authenticator;
     }
 
-    public function create(
-        ContainerBuilder $container,
-        string $id,
-        array $config,
-        string $userProviderId,
-        ?string $defaultEntryPointId
-    ) {
-        throw new \LogicException('Istio JWT Authentication is not supported when "security.enable_authenticator_manager" is not set to true.');
-    }
-
     public function getPosition()
     {
         return 'pre_auth';
     }
 
-    public function getKey()
+    public function getKey(): string
     {
         return 'istio_jwt_authenticator';
     }
@@ -194,4 +188,9 @@ private function createPayloadExtractor(
 
         return new Reference($id);
     }
+
+    public function getPriority(): int
+    {
+        return self::PRIORITY;
+    }
 }

src/JWTAuthenticationBundle.php

@@ -25,6 +25,6 @@ public function build(ContainerBuilder $container)
         /** @var SecurityExtension $extension */
         $extension = $container->getExtension('security');
         $extension->addUserProviderFactory(new StatelessUserProviderFactory());
-        $extension->addSecurityListenerFactory(new AuthenticatorFactory());
+        $extension->addAuthenticatorFactory(new AuthenticatorFactory());
     }
 }

src/User/JWTPayloadAwareUserProviderInterface.php

@@ -10,9 +10,10 @@
 
 namespace Istio\Symfony\JWTAuthentication\User;
 
+use Symfony\Component\Security\Core\User\UserInterface;
 use Symfony\Component\Security\Core\User\UserProviderInterface;
 
 interface JWTPayloadAwareUserProviderInterface extends UserProviderInterface
 {
-    public function loadUserByIdentifier(string $identifier, array $payload = null);
+    public function loadUserByIdentifier(string $identifier, array $payload = null): UserInterface;
 }

src/User/StatelessUserProvider.php

@@ -21,7 +21,7 @@ public function __construct(private string $statelessUserClass)
         }
     }
 
-    public function loadUserByIdentifier(string $identifier, array $payload = null)
+    public function loadUserByIdentifier(string $identifier, array $payload = null): UserInterface
     {
         if (null === $payload) {
             throw new \LogicException(sprintf('`$payload` must be set when use %s!', self::class));
@@ -37,12 +37,12 @@ public function loadUserByIdentifier(string $identifier, array $payload = null)
         return $cache[$key];
     }
 
-    public function refreshUser(UserInterface $user)
+    public function refreshUser(UserInterface $user): UserInterface
     {
         return $user;
     }
 
-    public function supportsClass(string $class)
+    public function supportsClass(string $class): bool
     {
         return is_a($class, StatelessUserInterface::class, true);
     }

tests/Fixtures/StatelessUser.php

@@ -24,7 +24,7 @@ public static function fromPayload(array $payload): static
         return $instance;
     }
 
-    public function getRoles()
+    public function getRoles(): array
     {
         return [];
     }
@@ -49,7 +49,7 @@ public function getUsername()
         // TODO: Implement getUsername() method.
     }
 
-    public function getUserIdentifier()
+    public function getUserIdentifier(): string
     {
         // TODO: Implement getUsername() method.
     }

tests/TestKernel.php

@@ -27,7 +27,7 @@
 
 class TestKernel extends Kernel implements CompilerPassInterface
 {
-    public function registerBundles()
+    public function registerBundles(): array
     {
         return [
             new FrameworkBundle(),
@@ -128,15 +128,15 @@ function (ContainerBuilder $container) {
     /**
      * {@inheritdoc}
      */
-    public function getCacheDir()
+    public function getCacheDir(): string
     {
         return sprintf('%s/tests/.kernel/cache', $this->getProjectDir());
     }
 
     /**
      * {@inheritdoc}
      */
-    public function getLogDir()
+    public function getLogDir(): string
     {
         return sprintf('%s/tests/.kernel/logs', $this->getProjectDir());
     }

tests/Unit/Authenticator/AuthenticatorTest.php

@@ -96,13 +96,13 @@ public function testAuthenticateWithJWTPayloadAwareUserProvider(Request $request
      * @dataProvider validRequests
      * @depends      testAuthenticate
      */
-    public function testCreateAuthenticatedToken(Request $request)
+    public function testCreateToken(Request $request)
     {
         $authenticator = $this->createAuthenticatorWithInMemoryUserProvider(['valid' => []]);
         $authenticator->supports($request);
         $payload = $request->attributes->get('_user_identifier_claim_and_payload')[1];
         $passport = $authenticator->authenticate($request);
-        $token = $authenticator->createAuthenticatedToken($passport, 'test');
+        $token = $authenticator->createToken($passport, 'test');
 
         $this->assertTrue($token->hasAttribute('jwt_payload'));
         $this->assertSame($payload, $token->getAttribute('jwt_payload'));

tests/Unit/DepdendencyInjection/Security/AuthenticatorFactoryTest.php

@@ -15,7 +15,6 @@
 use Symfony\Component\Config\Definition\Builder\ArrayNodeDefinition;
 use Symfony\Component\Config\Definition\Exception\InvalidConfigurationException;
 use Symfony\Component\DependencyInjection\Argument\IteratorArgument;
-use Symfony\Component\DependencyInjection\ContainerBuilder;
 use Symfony\Component\DependencyInjection\Reference;
 
 class AuthenticatorFactoryTest extends TestCase
@@ -56,14 +55,6 @@ public function testAddInvalidConfiguration(array $inputConfig)
         $node->finalize($normalizedConfig);
     }
 
-    public function testExceptionWhenCallCreate()
-    {
-        $this->expectException(\LogicException::class);
-
-        $factory = new AuthenticatorFactory();
-        $factory->create(new ContainerBuilder(), 'test', [], 'test', 'test');
-    }
-
     public function testCreateAuthenticator()
     {
         $config = [